Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7747B4A0CAD511EFACC90762762E951A.roa
File: 7747B4A0CAD511EFACC90762762E951A.roa (raw, json)
Hash identifier: FDgsobdNV5cJgHo6ie8muUY33rGXoVCqf6hgPl72sOQ=
Subject key identifier: 0D:EE:2B:C6:3A:87:E5:CD:9C:89:E8:A5:AC:E0:37:49:C5:7F:79:ED
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013531
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7747B4A0CAD511EFACC90762762E951A.roa
Signing time: Sat 04 Jan 2025 19:52:45 +0000
ROA not before: Sun 05 Jan 2025 19:52:41 +0000
ROA not after: Sat 08 Feb 2025 19:52:41 +0000
asID: 203020
IP address blocks: 154.217.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79153 (0x13531)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 5 19:52:41 2025 GMT
Not After : Feb 8 19:52:41 2025 GMT
Subject: CN=6779918d-317b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0a:53:47:97:fe:ed:28:9d:13:07:86:4f:2f:
a6:2e:12:70:b7:81:c4:1b:62:c2:15:fc:d9:f9:fc:
20:43:80:b8:90:cb:6d:7b:95:20:db:ac:5b:bd:51:
b3:68:44:f5:ac:28:80:bf:60:d4:93:0e:1c:ff:ad:
76:f7:45:29:c9:7b:c1:c0:c4:25:2e:f6:84:ee:00:
9b:ff:26:92:b1:1e:57:53:51:ce:10:72:26:52:99:
ac:9d:7f:ef:64:fd:78:a4:78:10:ff:98:08:49:14:
37:9e:2a:2a:12:9d:b3:c4:7b:19:36:58:c7:67:3b:
f0:72:fc:86:f9:a3:3a:66:21:57:0d:3c:d1:85:c6:
4a:c4:10:f7:cb:21:c2:df:2c:f0:b9:4d:43:9e:be:
16:99:4d:14:85:5d:d7:be:81:14:d0:5e:12:14:43:
8f:a8:38:d2:13:23:2b:c5:51:be:d8:11:dd:a0:02:
2f:2a:a2:03:a4:4c:84:0b:14:1a:5c:0c:09:cf:ab:
81:3c:bf:dd:e3:28:a6:f0:fe:4e:bb:85:5b:12:ad:
ad:dd:16:b7:80:2c:db:ed:b9:e8:2a:3a:b9:fe:ea:
a7:02:7c:e2:23:53:84:95:11:c6:31:c3:83:45:16:
f5:63:e8:63:b9:f2:ca:b5:be:07:0e:59:4b:20:c9:
34:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EE:2B:C6:3A:87:E5:CD:9C:89:E8:A5:AC:E0:37:49:C5:7F:79:ED
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7747B4A0CAD511EFACC90762762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.32.0/19
Signature Algorithm: sha256WithRSAEncryption
a9:83:f7:48:36:2b:4f:3c:98:2a:a1:33:b1:85:d5:80:3d:32:
d0:4a:33:77:e4:9f:37:60:e9:47:38:04:8a:7a:e6:82:35:78:
48:74:7a:4d:bf:89:8f:0c:97:1e:20:e1:da:cb:6a:d0:3b:4e:
e7:c1:de:a2:5b:09:66:c6:8c:c2:df:c3:1f:ce:50:21:b4:6d:
56:6c:e5:99:61:27:40:94:44:90:21:c1:00:b5:5a:f9:4c:0f:
4b:03:02:d7:95:ba:73:f2:93:cd:92:49:d8:c6:5c:7a:c5:07:
28:5d:b2:ad:ee:42:be:1c:b7:90:28:aa:cb:51:ed:8d:5d:d3:
a6:50:a8:fe:90:71:9c:96:d0:e5:f1:18:1f:a5:46:b6:d1:8a:
b7:4e:66:d2:c0:fa:fa:4b:2f:ef:19:7e:e6:d0:0b:f8:a0:e0:
b4:b7:08:32:eb:c7:65:23:90:58:d1:14:70:2f:21:a4:86:41:
99:e5:90:e9:84:ca:71:f0:94:47:ea:08:10:69:72:80:a0:34:
01:7f:5a:84:b8:2f:8f:91:dd:42:c6:7e:15:a9:88:32:3a:97:
5b:52:18:a0:ce:bc:b8:e4:d4:af:e8:9d:76:74:cb:c7:81:99:
01:c9:b6:6e:cb:c7:5e:e6:30:fa:2d:f1:3e:68:a2:a9:11:cc:
bd:82:de:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:09:07 2025 by rpki-client