Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/788AE270DFFB11EFA16E8393762E951A.roa
File: 788AE270DFFB11EFA16E8393762E951A.roa (raw, json)
Hash identifier: 1wxXp5h6dy1iG+e/fP8oWiLnhAUFFBOuV06FlhRAPXU=
Subject key identifier: E0:48:C5:C3:2C:7B:17:BB:0C:60:E8:D7:97:AD:30:7C:8F:45:F3:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014E35
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/788AE270DFFB11EFA16E8393762E951A.roa
Signing time: Fri 31 Jan 2025 17:47:42 +0000
ROA not before: Fri 31 Jan 2025 17:47:39 +0000
ROA not after: Fri 07 Feb 2025 17:47:39 +0000
asID: 328608
IP address blocks: 154.83.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85557 (0x14e35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 17:47:39 2025 GMT
Not After : Feb 7 17:47:39 2025 GMT
Subject: CN=679d0cbe-d95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:83:98:8b:0e:62:15:17:36:b7:88:65:5a:1f:
48:f9:44:f2:12:05:bc:93:a0:9e:5e:7d:d9:0a:fa:
5a:c5:aa:60:0a:56:03:ce:fc:05:62:4d:82:05:35:
c2:44:51:bb:24:90:cb:93:47:83:c1:cd:c7:da:74:
c6:d8:fc:ea:62:40:b5:02:37:21:31:7c:90:66:dc:
00:f3:52:3b:7e:61:0f:9e:7d:64:7e:c9:be:90:0d:
9d:c3:68:b0:de:04:80:97:2d:3f:03:56:4a:22:7c:
e9:64:7d:1e:d9:67:ee:71:29:e7:df:6e:28:c8:44:
65:0c:75:48:c7:aa:fc:2c:d9:23:33:34:e0:1a:42:
d0:01:ef:6b:16:6e:1d:da:e7:9c:4d:34:5e:8c:e0:
6f:08:4d:27:80:7d:b2:b2:2f:14:c7:55:50:e8:fc:
f2:e8:37:b3:ef:a1:7b:16:09:5a:dc:e3:8b:da:db:
e2:b2:5a:23:97:52:08:2c:da:8c:67:59:ae:70:a1:
1c:6f:ea:ef:ef:89:2a:d4:93:db:ca:73:a0:ce:82:
02:c6:30:bb:46:d1:27:9b:6c:1d:67:a4:de:d0:99:
98:ba:d2:3c:c1:13:bb:18:47:49:01:a4:8d:d4:1b:
25:9b:3f:92:70:bd:37:ba:63:d4:f8:a1:27:2f:98:
fc:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:48:C5:C3:2C:7B:17:BB:0C:60:E8:D7:97:AD:30:7C:8F:45:F3:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/788AE270DFFB11EFA16E8393762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.240.0/22
Signature Algorithm: sha256WithRSAEncryption
4a:bc:35:16:d1:78:ea:2a:2f:03:d1:c6:1d:2b:f6:7c:be:15:
8f:b2:0f:57:1e:56:2a:68:1a:18:b5:9c:ab:50:07:55:ea:50:
3c:00:12:0a:10:21:b7:72:96:28:b8:3a:8a:eb:48:7f:13:07:
76:19:a3:d4:2c:c4:ba:91:6e:b7:d1:c5:55:86:0d:58:e6:bf:
b3:69:d0:c3:ee:b0:98:09:51:38:2b:6d:a3:07:e8:fa:16:d9:
8c:a3:22:d5:c9:db:f0:9f:db:81:4d:da:dd:d2:7e:ea:50:38:
94:70:31:20:6b:2a:de:dc:ce:62:11:e8:fd:e8:1e:9d:ce:39:
1d:24:18:32:f4:1e:8d:ca:d1:86:cd:87:69:dc:e4:c0:5d:9b:
6c:a5:8c:0e:2d:05:68:09:00:97:1b:db:be:a9:69:c9:a0:00:
31:36:c3:3b:ea:f9:a3:0a:f4:40:16:64:75:5b:14:d4:54:cf:
d6:5b:f5:94:81:6c:b8:ed:f5:7b:18:b6:92:3c:97:c3:72:c7:
0c:86:7e:cc:90:82:55:6b:ab:c0:1c:e6:01:f8:6e:bc:2f:6f:
98:28:d5:40:af:d8:f0:cd:0a:99:45:eb:d0:5b:c0:91:cb:e9:
ff:9f:14:f3:b9:91:d1:b6:12:5f:66:3e:35:54:6e:88:77:46:
62:d5:c1:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 02:13:20 2025 by rpki-client