Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88AF6D5EDA3F11EF99CB5663762E951A.roa
File: 88AF6D5EDA3F11EF99CB5663762E951A.roa (raw, json)
Hash identifier: lYlPAJfyOfPHpuNZKOk4VdHMbioyYMZkWwRDUewxKSY=
Subject key identifier: 82:A2:52:E7:A2:5C:29:FC:73:FA:90:3B:B5:B4:E9:42:19:BD:9D:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145A6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88AF6D5EDA3F11EF99CB5663762E951A.roa
Signing time: Fri 24 Jan 2025 10:39:48 +0000
ROA not before: Fri 24 Jan 2025 10:39:45 +0000
ROA not after: Fri 28 Feb 2025 10:39:45 +0000
asID: 62240
IP address blocks: 154.196.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83366 (0x145a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 10:39:45 2025 GMT
Not After : Feb 28 10:39:45 2025 GMT
Subject: CN=67936df4-fffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:3b:a6:c2:84:56:9d:59:05:db:7f:f0:4a:3e:
69:8b:fc:87:01:e2:dd:59:99:da:93:6a:1b:06:58:
33:2e:34:e0:2b:7b:b9:fc:02:5a:03:65:35:33:f3:
52:5d:75:f0:6a:7e:9a:bf:d8:12:3b:2d:5f:01:a8:
a3:26:3c:73:25:2d:30:65:7c:e2:d6:bb:27:66:45:
1f:0c:97:e4:1b:0e:a3:f5:07:17:a0:9f:f5:dc:4e:
99:38:c0:1a:96:ad:36:a9:3e:e5:9d:8b:f5:76:63:
6d:15:62:67:24:9c:ed:8e:a1:bc:34:26:cf:c2:04:
1b:14:4a:b4:dc:8c:c6:20:4f:d6:c9:cf:4a:66:92:
fc:a5:d0:4e:b0:76:37:b8:04:5c:41:07:fd:b1:d4:
a7:10:da:8f:70:40:ef:ed:2d:7d:ba:24:e2:e9:10:
00:c0:3c:e8:ad:b2:4f:5f:2b:df:ca:d0:74:bc:25:
e9:99:41:8b:a2:88:1b:e6:f1:e7:4d:67:ba:cb:95:
dc:5d:53:95:ed:28:66:cc:ca:35:69:90:11:c4:3e:
95:8b:1f:40:1f:65:d0:85:f7:69:4f:63:ba:07:a3:
97:1e:5c:e2:07:12:dc:79:47:4e:98:30:e6:d8:65:
19:4b:e3:bf:87:03:50:73:08:85:1c:5d:67:fc:b5:
29:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A2:52:E7:A2:5C:29:FC:73:FA:90:3B:B5:B4:E9:42:19:BD:9D:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/88AF6D5EDA3F11EF99CB5663762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.61.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:fd:25:dd:a6:7c:67:9c:83:95:74:6b:5b:ef:24:f6:34:17:
14:0d:9d:9c:6a:60:86:79:2f:62:9b:16:0e:3e:b9:a9:5f:0f:
fe:0d:82:e0:15:73:20:cd:71:ed:23:f5:80:51:d5:a4:de:dd:
7f:9e:dc:95:4a:cf:54:ea:f6:af:29:a2:31:a4:86:e0:59:51:
6e:a3:9a:f6:5b:76:0d:04:b6:99:e4:bd:78:43:b5:40:58:43:
39:72:af:45:3f:18:7f:3b:9d:13:43:6c:07:a4:1c:cb:6e:d1:
6f:51:e7:10:06:69:34:40:24:21:54:ec:47:af:e9:2c:b3:d1:
9f:dd:24:e4:d8:7d:98:ff:52:dd:64:7a:2a:82:35:37:3c:2b:
ff:6b:d0:73:06:56:5c:a0:34:91:14:90:52:bf:6e:2f:3a:4c:
56:82:09:0f:52:da:03:d1:c0:0f:a0:82:2f:b1:57:22:79:87:
59:5a:35:e2:f2:7a:1c:35:bb:80:c2:d8:27:7e:96:3a:45:ea:
e4:c9:6b:fb:76:2d:17:d8:34:53:3e:b7:f2:64:ee:c7:91:d8:
9d:a7:34:2e:52:7c:d7:47:b1:35:8d:16:0d:cb:3f:ff:16:de:
f7:11:40:be:36:8c:5e:ac:7a:a0:72:62:d8:bb:12:66:9d:90:
f8:e0:be:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:21:55 2025 by rpki-client