Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DFD9942DB2211EF80837464762E951A.roa
File: 7DFD9942DB2211EF80837464762E951A.roa (raw, json)
Hash identifier: Jb4aiRLKB+umZSvjzmhwrghjsKGzq/6quF5/exb0dSE=
Subject key identifier: 53:64:72:D0:B2:58:30:5F:60:F1:59:3D:4C:E9:29:D8:28:15:41:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0149A0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DFD9942DB2211EF80837464762E951A.roa
Signing time: Sat 25 Jan 2025 13:44:26 +0000
ROA not before: Sat 25 Jan 2025 13:44:23 +0000
ROA not after: Tue 04 Feb 2025 13:44:23 +0000
asID: 395793
IP address blocks: 154.193.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84384 (0x149a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 13:44:23 2025 GMT
Not After : Feb 4 13:44:23 2025 GMT
Subject: CN=6794eaba-1a68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d9:cc:7b:15:05:0c:19:1d:07:d5:1a:67:18:
23:e7:48:0e:27:ab:91:6d:bb:1b:21:2e:ac:1d:70:
a2:23:c7:4a:24:a7:66:82:3c:81:bc:a6:90:93:c7:
17:62:88:f0:ac:02:c9:82:82:3f:14:0d:c9:88:2a:
94:c9:82:f5:b3:49:0d:e2:0e:94:d1:14:92:b1:ca:
bb:64:9d:0b:8b:85:82:31:f2:09:fe:3e:79:99:36:
cc:88:16:b5:8c:49:af:52:e8:79:0a:07:0b:ad:a9:
cd:b7:80:b1:5d:9d:85:3d:3a:6f:b2:e2:86:17:d5:
78:82:d3:c3:0b:bb:47:cb:0d:2d:b4:be:d5:8c:49:
2d:d9:ce:ff:ea:ea:5c:84:e4:8d:3e:54:6c:ee:72:
a1:d8:eb:5a:aa:cd:23:e7:07:98:d6:76:1f:a1:fe:
2a:6f:2a:ed:1e:f9:63:50:15:5b:3a:11:b8:15:da:
6e:58:f0:50:31:44:5c:05:6f:84:cd:ce:f8:06:59:
4c:88:c1:dc:c9:5c:76:5c:05:27:c7:fd:e1:f9:7b:
ce:90:eb:16:a0:b3:f7:39:80:e4:4b:6e:a3:b5:95:
f7:42:1e:10:cf:89:e7:9d:6d:71:e2:c7:26:97:cb:
a6:07:2e:58:43:20:ce:99:f8:5a:74:d3:7a:37:5b:
56:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:64:72:D0:B2:58:30:5F:60:F1:59:3D:4C:E9:29:D8:28:15:41:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7DFD9942DB2211EF80837464762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.99.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:aa:35:df:d1:f5:be:44:38:02:2c:00:a7:39:ef:bf:2c:12:
dd:73:01:10:b9:37:f8:58:b5:14:2f:d0:c2:d2:fb:db:74:cc:
d3:0c:96:f1:60:c8:b2:74:81:c1:92:8e:cf:06:8e:41:78:d6:
be:78:16:80:44:d9:5e:97:af:70:47:d8:9f:64:e8:ea:46:45:
ea:3e:4a:24:4e:cc:51:08:91:4d:df:09:e6:cc:f8:ed:3d:13:
54:a9:e9:d4:5c:fa:ca:ff:74:a7:6e:8f:58:09:67:1d:3a:77:
72:20:45:ba:4c:e2:e5:e3:ce:e3:04:de:f3:dd:a6:88:fc:29:
19:77:cd:37:9e:79:4b:ad:e4:32:f7:bf:20:49:33:43:a4:1f:
c3:d7:1e:77:7a:5d:36:40:11:c8:75:15:f8:6b:26:00:a2:36:
38:bc:8a:06:a4:ea:d9:7c:62:80:aa:bb:29:ab:37:e0:9a:07:
41:47:b7:a3:e7:65:9c:03:c4:f7:ca:66:84:a2:98:1a:25:dd:
5c:d1:3a:3b:35:92:58:c2:bd:27:ab:69:d5:5b:ec:90:da:86:
de:27:7a:55:b8:26:4c:76:b7:d0:d6:eb:39:fe:b5:42:a9:38:
fb:e8:ef:06:58:69:9e:32:29:d4:3b:6d:db:c5:b9:8e:d6:05:
b1:2e:a7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 02:33:35 2025 by rpki-client