Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/824C1550D9C911EFB9C0B0BA762E951A.roa
File: 824C1550D9C911EFB9C0B0BA762E951A.roa (raw, json)
Hash identifier: Rk2zbMsfFepHudFuITf7z4tlv7Q05HqtrzKfsjrIr8w=
Subject key identifier: 82:00:DD:0A:9D:1D:47:FD:07:D8:5A:7F:1C:BE:BC:97:96:B2:60:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142D8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/824C1550D9C911EFB9C0B0BA762E951A.roa
Signing time: Thu 23 Jan 2025 20:34:57 +0000
ROA not before: Fri 24 Jan 2025 20:34:53 +0000
ROA not after: Fri 28 Feb 2025 20:34:53 +0000
asID: 62240
IP address blocks: 154.196.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82648 (0x142d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 20:34:53 2025 GMT
Not After : Feb 28 20:34:53 2025 GMT
Subject: CN=6792a7f1-c677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a9:10:5e:4e:c1:b9:29:3a:38:4f:99:0b:55:
dd:8b:aa:bb:7b:f1:0e:3c:ff:ea:b6:1e:a2:58:80:
07:d7:2e:77:20:36:32:55:c3:6d:2c:ac:0c:42:25:
21:9c:b5:a2:f9:27:ed:7c:bb:80:d2:74:f0:bc:85:
b6:59:3b:71:ff:60:f4:cf:f0:10:5f:d3:a9:3d:78:
49:39:34:6a:b7:3c:b0:7a:96:e7:48:d2:e7:fa:54:
f7:cc:ee:9b:17:55:89:65:d7:93:a2:02:fa:39:ca:
5f:9f:ba:44:cb:bd:2c:12:77:5c:33:09:15:15:7c:
6d:fc:2e:8d:a7:1a:84:46:1c:a2:87:9d:de:ff:38:
ee:f6:1f:f2:3c:7f:5b:43:90:1d:39:e9:af:ae:ce:
28:66:68:0e:cb:b9:97:8b:aa:0a:b2:60:81:76:4c:
e0:e5:4a:60:ec:12:6c:c7:c0:95:93:68:28:8a:de:
b6:71:8f:e0:8b:b4:06:7e:e5:e4:52:c0:fa:ae:60:
5f:90:af:a3:f7:01:20:ed:50:22:87:39:8b:ee:d9:
36:72:b5:aa:9e:7c:62:c0:63:7c:9e:88:6d:5c:48:
12:15:46:7e:ef:2d:7e:fa:68:e6:9d:fc:35:a6:e8:
60:bc:af:75:24:4c:27:eb:47:06:ce:31:6d:73:cd:
44:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:00:DD:0A:9D:1D:47:FD:07:D8:5A:7F:1C:BE:BC:97:96:B2:60:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/824C1550D9C911EFB9C0B0BA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.56.0/24
Signature Algorithm: sha256WithRSAEncryption
58:bc:8e:21:be:74:51:2f:6f:55:e6:b0:5b:6a:09:0a:aa:43:
6c:07:00:a4:b6:1e:e1:22:35:ac:64:93:78:6e:16:e9:75:d5:
cc:02:8b:8e:d4:7e:28:3e:91:c2:44:89:1d:39:5d:08:0e:45:
6c:d5:04:3e:05:0a:b8:38:26:c7:f0:13:d5:78:ea:54:1b:90:
9e:27:e6:4c:ff:c9:5d:af:c9:2c:38:4f:18:08:ec:b6:00:cb:
e0:86:46:6c:c5:4f:ed:fd:50:50:88:d4:fd:50:fa:c7:88:cf:
eb:ec:44:63:6d:72:f3:7e:52:d1:ab:73:d5:40:2f:f5:a7:1a:
ba:a3:28:a5:0c:5f:29:3c:0c:6f:a4:12:0b:d7:b3:22:2d:b6:
68:8d:13:38:99:84:f5:4c:9a:5b:29:0e:50:80:ac:a8:5f:3c:
30:ac:f9:8b:8a:83:96:45:9c:78:15:cc:7a:88:9f:f0:ea:90:
c6:91:ee:38:1c:3b:f7:58:7a:56:dd:74:bf:0f:9e:6c:bc:06:
62:a8:b2:c2:ad:b7:44:e3:11:f9:9e:6c:58:c5:95:a6:aa:75:
76:a8:d6:c4:a4:2e:b1:d5:5b:cf:33:d6:43:1e:72:66:56:49:
10:59:48:c9:cb:75:ef:8c:b7:3d:20:f5:cd:ab:aa:72:c5:ca:
26:2f:70:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:48:33 2025 by rpki-client