Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78B8B6BECF2F11EFBBDF69A2762E951A.roa
File: 78B8B6BECF2F11EFBBDF69A2762E951A.roa (raw, json)
Hash identifier: 74swySu6+3lS0f6I0lT1L8bpch4eCR+IxImyDzD8oMo=
Subject key identifier: CB:AD:AE:6D:76:A9:73:C2:EB:0F:7C:79:1A:96:A3:C1:39:88:D7:18
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0139BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78B8B6BECF2F11EFBBDF69A2762E951A.roa
Signing time: Fri 10 Jan 2025 08:47:07 +0000
ROA not before: Fri 10 Jan 2025 08:47:03 +0000
ROA not after: Sat 22 Mar 2025 08:47:03 +0000
asID: 142286
IP address blocks: 154.89.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80317 (0x139bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 10 08:47:03 2025 GMT
Not After : Mar 22 08:47:03 2025 GMT
Subject: CN=6780de8b-6ea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bc:6e:05:f4:ba:50:37:4a:43:42:54:28:a9:
bf:ad:85:c5:fa:5c:4b:1c:05:ea:ff:6e:af:df:87:
c2:9a:6a:ed:e1:c0:a5:27:5b:2b:03:d0:46:2c:5b:
38:92:ab:13:e8:97:f3:4a:3b:35:5f:c7:5f:db:67:
6b:62:47:20:31:1d:06:27:65:78:02:33:34:07:96:
50:ba:70:2b:c8:98:13:75:ed:48:13:18:aa:3f:00:
3b:ea:87:e3:01:b8:9b:71:c7:40:02:1e:09:73:f9:
29:27:92:ff:cc:0e:f9:8e:3f:a5:28:ff:cf:df:98:
ab:fa:ab:78:3b:34:e5:01:d5:2e:4c:6a:80:84:47:
cd:72:fe:ff:03:ef:6d:72:22:e4:62:c9:a6:d6:f5:
31:30:28:b5:e1:71:36:e2:37:12:97:3c:63:09:62:
5a:aa:94:f1:20:f3:78:a3:b1:9b:cd:26:de:f0:d8:
95:3b:6a:d2:6e:f2:d3:aa:ce:c3:d7:89:6d:fe:2f:
1d:84:54:27:97:c0:ef:a8:b5:2c:fb:f5:db:1f:ef:
36:34:d3:28:93:ff:66:40:70:d6:8b:b2:bb:9f:16:
54:5c:d3:c9:78:9f:c5:c7:bc:27:f5:f4:b9:b8:a9:
5e:32:86:a6:dd:91:bd:e2:1a:58:87:bb:98:1c:67:
31:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AD:AE:6D:76:A9:73:C2:EB:0F:7C:79:1A:96:A3:C1:39:88:D7:18
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78B8B6BECF2F11EFBBDF69A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
55:d8:81:b0:75:f4:d7:bd:06:77:d1:06:2f:b7:b4:19:60:24:
b1:21:a9:9f:b6:4b:bc:b9:e9:d9:dd:81:19:a5:b0:f4:09:cc:
5b:a6:10:e6:64:98:29:33:eb:81:e8:f3:b2:f9:ca:6d:63:42:
67:a4:87:cc:63:01:0a:61:9b:ea:5c:aa:41:60:26:53:71:e8:
7e:1c:dd:4e:72:3c:93:49:6b:1c:dd:0c:c7:5f:8d:ad:0e:e1:
73:43:88:b6:c9:2c:4b:76:df:ad:c2:1e:7b:10:68:b2:ca:8d:
fe:1c:c5:9b:c2:c1:ef:b3:94:27:97:d8:1e:37:e7:c3:02:b9:
bd:9f:c0:71:a7:a1:97:30:76:26:ef:3a:08:c8:62:24:28:a6:
ce:c5:a8:a9:c5:d9:29:66:69:7f:c5:34:3a:18:7f:57:60:c4:
15:2d:8a:f4:80:83:e8:7c:65:5a:4b:b7:b0:a6:49:63:53:2f:
f5:19:dc:bf:9e:ed:4c:fa:71:1f:8f:6f:93:16:36:f5:61:8d:
85:87:4f:42:82:86:7e:11:73:1e:4f:84:01:87:69:21:63:b5:
e3:26:ad:45:74:ec:98:c1:2a:36:a8:11:e8:bd:6f:73:d4:dc:
52:c8:0b:2b:b0:13:ff:45:54:0a:1d:e2:3c:e3:9a:4f:d5:c3:
46:af:31:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:59:03 2025 by rpki-client