Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/911AB75ADA4911EFA9C843A7762E951A.roa
File: 911AB75ADA4911EFA9C843A7762E951A.roa (raw, json)
Hash identifier: VilTN75k/Fi9DBRI9sXB/H+7SHz+cxc2iN/EZSnpwFA=
Subject key identifier: FD:BF:68:D0:A9:23:76:4E:42:92:09:F0:D5:75:E5:E3:00:33:89:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014650
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/911AB75ADA4911EFA9C843A7762E951A.roa
Signing time: Fri 24 Jan 2025 11:51:37 +0000
ROA not before: Fri 24 Jan 2025 11:51:34 +0000
ROA not after: Wed 05 Mar 2025 11:51:34 +0000
asID: 202656
IP address blocks: 154.222.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83536 (0x14650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:51:34 2025 GMT
Not After : Mar 5 11:51:34 2025 GMT
Subject: CN=67937ec9-7798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:46:d0:30:9c:99:90:96:96:c5:f6:17:a2:cc:
e1:eb:9e:85:61:ed:45:cc:1d:76:01:8b:37:22:fd:
1c:6b:f9:ea:e1:59:bd:e4:34:30:7e:83:32:98:65:
d5:ea:e2:c6:98:02:8e:02:5a:d3:e7:9d:dd:3e:6e:
ca:6a:c8:27:a8:b9:04:d0:c2:34:c5:09:7e:a3:67:
ab:12:bc:d2:40:53:39:59:25:34:15:6b:d8:36:59:
db:bd:40:e1:14:cc:22:19:1c:ee:c9:76:00:74:77:
1a:44:55:33:c6:c5:0d:37:ee:4d:a5:00:c4:5b:01:
1a:1c:e9:68:0c:19:55:a0:34:f0:fa:36:5d:28:63:
09:d7:00:4d:0a:64:f3:e8:2f:cf:35:a9:11:78:88:
52:a6:84:3c:9a:d2:8a:74:74:84:39:4d:dd:b1:69:
65:e9:40:6d:3b:13:23:db:5f:1d:93:76:68:79:06:
e6:d9:f1:45:d9:c6:f0:dd:98:c5:b8:42:2c:ce:80:
25:2b:ea:a2:b5:ee:35:a6:d4:f9:b2:ad:de:3b:1b:
f6:0a:ae:f2:95:19:b1:89:a3:25:49:04:bf:93:b5:
60:f2:f4:48:d7:ab:8f:4e:6d:94:8a:24:c1:d8:64:
b1:fc:78:08:0b:71:46:5c:7c:fb:ea:3f:1e:c9:1a:
d0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:BF:68:D0:A9:23:76:4E:42:92:09:F0:D5:75:E5:E3:00:33:89:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/911AB75ADA4911EFA9C843A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.202.0/24
Signature Algorithm: sha256WithRSAEncryption
16:8e:0b:0b:00:29:57:42:28:f4:3e:f8:ea:f9:51:ec:38:b4:
95:11:23:8b:4d:a4:8e:d6:2a:3f:e3:33:d6:86:4a:63:c2:71:
3c:f9:b8:0a:49:3a:d9:d1:ec:fe:d6:a1:5c:73:24:98:ff:0b:
2b:ba:77:3d:29:25:fb:9e:75:4c:78:dc:37:57:cf:51:ad:d5:
54:1c:b9:52:50:74:6b:92:7c:1d:32:ab:32:a9:80:14:a0:49:
12:42:dc:7c:43:95:c9:3f:84:6e:44:1f:fc:eb:47:35:9a:a6:
77:42:37:58:43:f1:48:40:24:b0:50:49:bf:60:d0:de:c8:23:
17:2b:3f:48:ac:8f:ee:08:32:bf:74:96:fd:f3:e7:dc:5f:f6:
62:20:b9:35:57:b3:ce:90:35:99:15:a1:06:30:4f:a5:db:94:
34:c9:a6:b8:f2:eb:fe:77:d4:b8:27:bc:4f:3e:93:b8:df:ea:
bb:97:a6:51:56:51:2d:00:ec:84:62:f6:8f:cc:47:87:f7:60:
22:15:02:c9:3c:82:a7:7a:6b:13:56:15:da:7a:88:52:2c:de:
f2:51:66:a0:df:13:a5:f6:b2:bb:30:8d:a1:b1:0f:db:cb:92:
4e:11:55:f5:9c:8f:32:5d:d3:c8:66:0b:f7:c2:f3:59:57:24:
8a:b9:e9:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:50:35 2025 by rpki-client