Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8329512CDFF011EFBE0B9F49762E951A.roa
File: 8329512CDFF011EFBE0B9F49762E951A.roa (raw, json)
Hash identifier: Yekgf9dIHCyOBwS/3fK4hZVdSnVWW5Z7QZv+y9cmNyI=
Subject key identifier: 54:F2:EC:14:CC:D9:13:D9:B5:74:3D:2E:72:71:01:49:34:6C:AC:0D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014E23
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8329512CDFF011EFBE0B9F49762E951A.roa
Signing time: Fri 31 Jan 2025 16:29:16 +0000
ROA not before: Fri 31 Jan 2025 16:29:12 +0000
ROA not after: Sat 08 Feb 2025 16:29:12 +0000
asID: 135600
IP address blocks: 154.196.232.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85539 (0x14e23)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 16:29:12 2025 GMT
Not After : Feb 8 16:29:12 2025 GMT
Subject: CN=679cfa5c-fdcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5e:3e:c3:19:55:d1:c2:fb:12:89:a1:2e:a2:
64:2c:84:54:00:f1:76:43:2d:19:59:72:0b:97:9c:
d5:32:e0:87:2c:bc:1d:b2:f7:62:0e:77:0c:d7:12:
4f:cb:d8:2e:59:52:93:12:59:20:4e:a3:8d:fa:75:
13:4a:93:b1:57:a5:bc:ed:3f:17:09:9e:02:d8:8c:
21:04:ae:8f:7d:4b:e0:53:e7:4c:67:a6:d7:ca:30:
da:23:1c:c2:9b:57:1f:c3:e2:06:11:ce:84:69:d0:
90:46:39:a2:ec:18:8b:21:3c:e1:f3:9b:cd:62:d0:
a8:9a:4f:cb:15:0d:81:a4:fc:aa:8b:22:fe:37:f3:
5d:cd:c0:a0:43:b4:b5:c8:90:61:03:93:73:b5:0e:
1a:b8:24:f6:42:b7:af:55:ab:ff:18:79:7a:98:6a:
04:c4:d7:b8:5c:de:2f:ce:da:53:ef:ed:c2:fd:f7:
60:93:f8:62:bf:6f:75:69:ee:31:f8:3d:fb:e2:e6:
f9:bd:3d:75:85:ab:f6:6f:05:e1:d1:9a:29:0b:39:
0e:26:87:cd:93:6b:12:93:89:19:16:30:21:0a:06:
55:15:d7:4a:89:f6:67:66:8e:78:b1:fe:14:ad:10:
50:4c:75:33:82:95:12:c3:72:54:c1:17:a5:b8:0d:
94:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F2:EC:14:CC:D9:13:D9:B5:74:3D:2E:72:71:01:49:34:6C:AC:0D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8329512CDFF011EFBE0B9F49762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.232.0/22
Signature Algorithm: sha256WithRSAEncryption
90:6a:b4:c7:6a:c7:a5:46:40:14:02:9a:73:24:35:e5:2c:53:
ef:62:81:7f:da:9b:5f:15:f0:ef:b6:7f:8c:7b:1c:2e:ce:fb:
e5:1b:63:05:05:5a:89:e1:e9:b6:b8:da:64:03:8c:48:2c:8d:
a2:1c:63:ea:0c:54:18:c7:0b:60:d1:9e:ce:13:c0:58:01:2f:
00:5d:c7:d6:0d:e1:5c:56:c2:5e:3a:85:d6:39:b6:71:ce:d5:
d3:20:c2:d2:7a:80:28:83:c0:2d:57:fc:db:48:da:04:a0:39:
3d:61:e9:06:26:b0:9b:ab:07:d7:67:dc:f3:02:41:89:c4:e1:
6f:9b:b0:2c:b7:bf:c6:a6:72:1c:29:2f:49:70:8a:1e:17:a1:
2c:98:78:ce:07:71:88:c8:29:fb:b2:7f:09:17:09:50:72:e6:
15:9b:20:f2:80:16:ec:e2:3d:f3:31:50:be:21:d2:d0:be:15:
8e:a2:8e:1f:e8:6e:58:53:93:3f:e8:e0:8b:27:03:21:6d:ba:
13:27:92:5d:1f:2b:04:b5:fb:c7:93:59:7f:c9:e6:53:cb:46:
37:e2:bb:e4:65:3a:ad:74:7a:fc:61:47:0b:bb:6f:a1:45:7f:
03:c4:43:e3:3c:9c:be:df:07:eb:a8:82:72:dc:93:29:aa:bd:
bb:62:60:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 20:35:20 2025 by rpki-client