Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88930AFADA4A11EFB42F1BAE762E951A.roa
File: 88930AFADA4A11EFB42F1BAE762E951A.roa (raw, json)
Hash identifier: TqgO8vJcbflwlmXdGaTW6CvQ3Y9wKwlJXZAwQNKVJnI=
Subject key identifier: 52:62:3B:6A:24:68:6F:3E:27:4F:23:C4:B1:D5:D9:A8:4D:84:37:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014663
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88930AFADA4A11EFB42F1BAE762E951A.roa
Signing time: Fri 24 Jan 2025 11:58:33 +0000
ROA not before: Fri 24 Jan 2025 11:58:28 +0000
ROA not after: Wed 05 Mar 2025 11:58:28 +0000
asID: 202656
IP address blocks: 154.222.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83555 (0x14663)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:58:28 2025 GMT
Not After : Mar 5 11:58:28 2025 GMT
Subject: CN=67938069-11ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:45:60:13:2b:d5:7b:0d:a7:29:78:d5:11:42:
0c:76:83:c1:7b:95:ba:e0:fe:1d:2f:8f:59:aa:3e:
c0:68:43:77:c3:15:62:88:fa:67:49:f5:1d:24:6b:
80:ca:70:2c:ab:eb:5a:10:16:6d:b0:05:ea:15:22:
fd:29:a3:d4:94:ee:f7:00:f2:d7:27:71:af:66:fc:
ca:be:43:1b:be:3f:67:4f:c4:5b:da:b9:e8:16:9b:
40:ed:41:4e:03:51:f5:7c:6f:ce:4e:45:80:cf:5c:
ac:dd:68:c3:2f:71:c2:1b:46:d3:80:b2:59:39:e1:
2b:ce:11:1e:19:82:2b:48:87:d0:ef:fb:16:ef:60:
52:a7:38:dc:b8:e5:fe:cf:c6:3b:9f:26:31:78:b5:
b9:2f:8c:30:e6:46:cd:61:73:d1:6b:55:eb:ab:5b:
4c:74:04:9d:fb:62:28:30:3b:53:18:07:25:3b:4b:
e7:52:93:6a:e4:01:83:02:a1:30:19:b9:cc:bb:01:
b3:95:71:81:e0:b6:97:50:a1:49:f4:df:27:2c:d9:
fb:6f:8c:db:95:b1:da:83:20:69:6d:72:87:9d:dd:
78:e7:4e:dd:47:4b:9e:69:9e:65:a5:13:47:7f:42:
1d:d7:5a:a6:4d:3b:83:a2:2c:09:1d:6f:f4:74:a5:
ac:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:62:3B:6A:24:68:6F:3E:27:4F:23:C4:B1:D5:D9:A8:4D:84:37:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88930AFADA4A11EFB42F1BAE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.205.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:7d:a4:3b:e3:7f:7a:59:73:d6:e8:f0:63:46:2a:b4:19:18:
62:63:bc:bd:36:a4:31:b6:c4:3b:6a:2e:04:f8:98:09:38:0a:
f1:02:82:f7:e4:6c:c3:67:c4:5d:fe:71:67:06:1b:d4:8b:97:
d6:e0:90:9b:7f:79:48:bf:38:0a:9d:a5:70:2a:99:6d:8f:75:
45:f5:ed:92:18:36:df:36:4d:48:42:20:c4:df:5e:81:a1:7d:
46:a8:6c:c1:24:dc:4e:4f:c0:e5:1d:14:2c:02:26:5c:89:fc:
4e:b9:5e:e6:7f:64:0f:4c:ce:00:7b:bb:5b:d7:68:7e:7c:01:
b1:52:34:09:00:b5:82:35:bb:01:f2:8c:22:82:64:d2:2a:c6:
48:29:3d:40:c4:df:40:b7:c0:14:6d:e2:10:a9:fe:45:6b:03:
8b:fa:b2:02:ff:df:5b:cc:80:5f:47:c2:87:75:1a:f5:43:21:
df:d1:d8:fb:43:05:dd:c7:05:72:59:76:d9:17:db:db:2d:9e:
1a:13:2f:41:dc:02:fb:0e:26:f8:df:16:3b:31:6d:7e:fa:f7:
62:ef:cd:0b:e0:0f:66:db:5c:5a:4d:49:b2:ac:28:70:d6:9d:
ff:8b:67:b3:fd:93:7d:4a:be:0c:6b:f2:85:46:61:f3:5d:45:
6e:e2:7a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:45:50 2025 by rpki-client