Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A6D798EDA4D11EFA57C8542762E951A.roa
File: 8A6D798EDA4D11EFA57C8542762E951A.roa (raw, json)
Hash identifier: lBLFS8Tc/eVWT3fRQ/hLzUsCxWcnsNvo7aVUqcseTNU=
Subject key identifier: 12:31:9B:2F:90:6C:44:9B:7C:6B:51:27:B2:02:39:8C:3E:16:18:37
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0146AA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A6D798EDA4D11EFA57C8542762E951A.roa
Signing time: Fri 24 Jan 2025 12:20:04 +0000
ROA not before: Fri 24 Jan 2025 12:20:01 +0000
ROA not after: Sat 08 Feb 2025 12:20:01 +0000
asID: 18229
IP address blocks: 154.210.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83626 (0x146aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 12:20:01 2025 GMT
Not After : Feb 8 12:20:01 2025 GMT
Subject: CN=67938574-3b3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:cd:62:61:ca:33:2b:6c:86:5b:56:36:fb:a4:
52:94:1d:54:b1:a4:90:04:14:ac:9c:0b:91:85:10:
b5:72:b8:a1:64:40:0e:52:73:0a:ba:fd:5f:25:2c:
27:c1:a2:e6:56:d4:fe:52:47:84:45:e2:33:3b:33:
d4:00:7a:97:19:18:27:1c:15:1e:78:21:1b:25:00:
29:8e:4f:25:8b:f6:21:c5:2c:f1:c9:a9:f4:e3:85:
a4:dc:1f:a8:94:60:7a:c3:6b:d1:23:2f:d9:36:a0:
7c:fb:c9:28:72:49:a8:b0:59:74:4d:df:ad:84:61:
19:43:01:55:c1:3f:a0:13:0e:f5:ec:de:2d:11:02:
ab:3c:42:7e:e3:a5:5f:fa:1d:52:3e:ba:6e:1f:6f:
af:ab:c0:63:18:d3:3c:ed:b3:67:f1:04:f9:e5:6a:
ac:95:8b:79:69:c2:c6:2e:4e:2d:54:83:a8:f8:4c:
64:43:27:e0:39:8c:51:5c:21:db:18:43:4e:f9:af:
18:93:56:f6:2b:dd:8e:f7:7c:97:1f:59:d4:4e:dd:
b2:e5:eb:cf:24:45:da:5d:04:24:c9:d0:71:b9:7e:
ac:74:06:16:1c:8d:77:c0:95:20:b3:5c:ae:a5:e1:
e7:c0:d2:9b:c0:e7:94:7f:1e:e8:fc:e3:f1:68:e8:
7f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:31:9B:2F:90:6C:44:9B:7C:6B:51:27:B2:02:39:8C:3E:16:18:37
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8A6D798EDA4D11EFA57C8542762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.155.0/24
Signature Algorithm: sha256WithRSAEncryption
23:63:4b:16:68:be:8a:1b:66:c6:09:5c:4c:70:b9:33:53:43:
22:fb:f6:40:a2:8d:43:6f:71:2e:38:c7:2d:8b:29:83:43:5e:
54:a0:92:15:95:3d:d2:f9:55:b9:fe:a1:3b:9c:e0:4b:56:64:
c4:26:f9:5c:00:f2:47:65:ff:d7:c7:ab:b8:dd:e5:c4:32:c7:
48:b8:dd:d0:bb:87:1f:84:e1:8e:cb:28:2d:e5:06:63:a0:0a:
63:83:c9:7a:bf:13:6d:49:ce:bf:5a:fe:fd:5d:43:a2:d5:b5:
d6:e8:e9:30:72:f2:f6:0d:41:17:67:36:ec:0a:5d:9b:69:5e:
34:ed:1a:eb:12:20:24:7e:ba:6a:66:28:11:9f:91:c4:ac:70:
f9:77:09:f8:2a:fa:32:1c:30:4d:2c:5e:1b:19:53:48:2f:3b:
7d:04:f7:63:e6:89:25:18:7c:a3:a3:8d:ea:3c:fa:30:66:20:
e9:45:57:48:8e:16:ab:e0:d5:87:cb:75:47:a1:0d:f6:d3:3c:
67:d5:35:85:e6:ef:b5:cd:26:a4:b4:fa:98:d4:54:5a:85:02:
99:25:be:ff:39:0d:2b:9a:d5:2f:1a:ca:1d:d8:2a:a3:a9:95:
ed:4b:8e:13:01:d7:75:e9:24:4e:d6:a3:d7:2c:d6:ed:9e:1a:
2f:72:99:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:46:11 2025 by rpki-client