Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/806FDCEECCCC11EF94285664762E951A.roa
File: 806FDCEECCCC11EF94285664762E951A.roa (raw, json)
Hash identifier: z8F59pcA3Qb4JnvAb+43QFC+3eaQn+BqBPTcJefEYcs=
Subject key identifier: 8A:28:8B:CF:87:E1:00:9A:6A:6B:A3:22:8B:8B:79:DE:2D:05:C7:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01366B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/806FDCEECCCC11EF94285664762E951A.roa
Signing time: Tue 07 Jan 2025 07:53:37 +0000
ROA not before: Tue 07 Jan 2025 07:53:34 +0000
ROA not after: Thu 13 Feb 2025 07:53:34 +0000
asID: 203020
IP address blocks: 154.202.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79467 (0x1366b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 7 07:53:34 2025 GMT
Not After : Feb 13 07:53:34 2025 GMT
Subject: CN=677cdd81-0607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:a7:cc:ec:6b:5f:d6:aa:9b:10:6a:e1:2f:f9:
18:99:91:a1:0e:39:0d:72:43:f6:04:78:9a:76:a3:
40:71:b1:ad:ff:ee:8a:d6:34:5a:92:9f:7b:72:72:
53:8f:5a:a8:71:1e:1f:bd:30:dd:a4:7b:ec:49:a3:
17:ea:7a:61:af:2e:d5:4b:5b:32:9a:fc:da:e7:81:
49:31:78:12:21:a1:25:64:93:f3:c9:0a:26:28:42:
60:e9:a0:bc:06:34:3c:02:c8:89:99:4e:e1:1d:27:
78:14:13:19:8d:fd:d8:41:a0:b3:94:c9:7e:f2:c1:
3b:fd:61:6c:36:df:62:45:67:9b:c8:ca:f0:94:18:
23:14:be:cd:26:9d:7b:85:74:a2:b2:f6:3e:89:cb:
1a:c6:40:6b:65:eb:b7:97:80:22:09:39:ff:a1:63:
49:f7:2d:a8:1e:7e:81:a0:53:45:4e:be:54:53:d7:
06:0f:53:df:88:5a:0b:82:ed:12:3f:64:ea:9c:a2:
31:74:31:87:91:f7:30:f1:26:b5:3e:4b:bd:62:1f:
58:75:26:b6:fa:77:87:07:ee:04:48:05:21:d4:85:
35:2a:a5:89:14:34:66:13:10:c2:a5:30:02:a7:c5:
53:66:f9:99:73:3f:1f:e0:68:e7:fa:84:1c:ef:97:
d1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:28:8B:CF:87:E1:00:9A:6A:6B:A3:22:8B:8B:79:DE:2D:05:C7:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/806FDCEECCCC11EF94285664762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.91.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:64:4b:8b:de:56:6f:28:df:e7:98:32:40:b0:cf:ba:84:8f:
91:2b:1b:d4:7a:d2:69:47:a4:bb:3c:e2:09:e7:ff:4c:14:fe:
31:4d:46:20:96:62:83:d1:7b:9d:bb:d9:39:6c:14:d6:f0:a2:
ea:5c:50:75:05:8c:fc:26:28:64:f0:dc:57:cd:40:3f:f9:36:
ff:6c:b8:f7:bb:43:89:57:d4:9b:25:cd:8e:db:d3:13:37:27:
7b:0b:a0:18:06:3c:85:04:71:ba:0d:cb:68:95:ee:41:0c:6f:
cf:9b:ae:87:34:ac:80:1d:c7:fd:f9:b5:4a:24:2c:4e:2e:b5:
70:fa:9e:70:a5:f3:ad:17:74:d0:28:40:21:67:c7:c1:9b:73:
9f:e0:97:32:a5:f1:04:cb:eb:00:e9:6c:6b:0b:10:a5:97:fe:
55:65:7a:a5:f7:b2:ec:aa:9e:c9:99:40:02:28:6f:1f:94:9a:
65:33:0e:07:55:77:c0:9d:b2:80:37:41:5c:a8:d7:c0:7e:9f:
fe:af:09:cd:0f:ed:60:78:96:45:81:8b:c4:6b:8b:1d:c3:55:
79:e1:d8:e7:c8:c3:b8:15:56:98:95:89:be:a9:ff:1e:e7:81:
93:4a:b6:da:59:5a:5d:6a:53:1b:84:bb:85:70:22:61:dd:a2:
86:1e:90:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:09:21 2025 by rpki-client