Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CFE1F36DA3111EF9FB8D384762E951A.roa
File: 7CFE1F36DA3111EF9FB8D384762E951A.roa (raw, json)
Hash identifier: +TdprYXQ1uZpSuran1YodIkZt3TXOv1Z6B3R4Q0WsDA=
Subject key identifier: ED:8E:DC:42:37:F7:82:67:20:19:0B:F9:F6:ED:7D:33:D0:3D:87:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0144AB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CFE1F36DA3111EF9FB8D384762E951A.roa
Signing time: Fri 24 Jan 2025 08:59:16 +0000
ROA not before: Fri 24 Jan 2025 08:59:12 +0000
ROA not after: Thu 13 Mar 2025 08:59:12 +0000
asID: 63139
IP address blocks: 154.203.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83115 (0x144ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 08:59:12 2025 GMT
Not After : Mar 13 08:59:12 2025 GMT
Subject: CN=67935664-4e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4e:ec:7b:5d:a2:0b:d3:67:29:49:60:ab:86:
a3:7d:e9:c2:fa:91:42:cd:3d:1f:dc:28:6e:fd:91:
c2:99:5d:f0:ec:8c:22:a6:c9:20:8a:53:c3:75:76:
9b:d1:f5:94:11:fe:d5:fb:e4:b4:82:7b:5b:d7:b3:
2b:e5:bb:61:93:0b:2b:26:23:28:16:6d:1a:70:62:
9b:db:7d:8d:9e:ea:01:83:2d:90:cf:d3:2e:8d:69:
f6:b0:2f:b6:07:b7:ea:8c:ae:7b:c6:4c:22:36:6e:
11:6f:ca:0d:af:37:13:17:7f:5f:97:7e:00:fe:a4:
12:da:bd:65:26:0f:1c:8d:6d:fa:56:c3:e5:73:9f:
72:c6:da:d5:15:33:32:60:5d:e8:2b:f7:6d:18:28:
d9:e0:3d:c4:44:37:cf:d3:ac:c7:58:28:e6:c7:e6:
56:cb:39:58:77:4a:8d:94:c6:69:f2:c4:5e:e9:e5:
ea:2e:00:29:f8:df:c3:fd:07:90:c7:22:26:6a:50:
f9:c2:50:bd:b6:6c:59:8d:13:86:00:fe:25:b6:14:
17:3e:b2:40:23:dc:ae:ac:ff:82:30:db:76:1d:00:
94:e0:61:ee:1b:6f:86:ed:fc:e3:99:13:94:24:10:
1a:0e:fd:b4:56:98:f0:1d:c4:a4:dd:9b:ba:26:2a:
90:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:8E:DC:42:37:F7:82:67:20:19:0B:F9:F6:ED:7D:33:D0:3D:87:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CFE1F36DA3111EF9FB8D384762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.180.0/24
Signature Algorithm: sha256WithRSAEncryption
89:99:96:b0:9a:d7:31:82:45:4d:27:dc:f1:b0:a2:9a:e6:a2:
a2:e3:fd:28:b9:a1:fc:83:6d:7a:52:82:a4:62:91:eb:db:c1:
89:53:b3:22:dc:13:cf:13:c4:0b:d8:6b:e6:65:81:e9:11:61:
0d:a4:d9:1f:ff:00:0b:10:f9:b7:27:bc:04:31:8d:b1:e8:8b:
c3:97:10:e1:35:d8:b7:75:e4:07:42:36:15:c1:73:12:7a:1a:
62:8d:31:76:0d:2b:0e:bf:5a:3f:3f:58:d0:bb:e2:05:99:4c:
f6:6f:a0:cb:c9:f9:70:5d:4f:1a:90:06:cd:65:f9:bd:42:45:
6b:70:b8:7e:ed:4f:d1:07:7e:52:53:18:28:85:9c:9f:80:f6:
4a:5d:ed:ba:b7:7a:02:73:3f:9d:b6:ba:19:4d:5f:24:b0:1b:
1b:e2:aa:4f:c3:15:1a:bb:b3:af:a0:6b:24:55:84:4d:7d:a5:
97:93:7a:dd:7d:5f:a9:f7:26:e7:49:ad:12:6f:b5:9c:0a:14:
42:7b:f7:eb:58:f6:96:bf:d8:55:1d:3d:40:4c:15:ff:7f:0d:
5b:d3:cf:df:37:b6:c3:1b:8b:85:35:ce:1a:a3:47:0c:43:91:
60:0b:6c:57:d8:fe:66:f3:22:66:55:2e:3c:31:bf:72:6c:b4:
9b:a3:6c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 20:37:54 2025 by rpki-client