Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9288F566CCC511EFB29E23B7762E951A.roa
File: 9288F566CCC511EFB29E23B7762E951A.roa (raw, json)
Hash identifier: bRzbMsZz1wVucHmbM4kDokX3Lt2qZVygvMKWlWaZCH4=
Subject key identifier: 14:F7:34:21:A7:75:75:25:28:81:17:6C:85:39:E3:91:90:FC:5E:AA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01363F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9288F566CCC511EFB29E23B7762E951A.roa
Signing time: Tue 07 Jan 2025 07:04:01 +0000
ROA not before: Tue 07 Jan 2025 07:03:57 +0000
ROA not after: Wed 12 Feb 2025 07:03:57 +0000
asID: 397630
IP address blocks: 154.201.35.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79423 (0x1363f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 7 07:03:57 2025 GMT
Not After : Feb 12 07:03:57 2025 GMT
Subject: CN=677cd1e1-797e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cc:e5:25:30:79:27:21:42:cb:fc:eb:36:28:
a7:66:d8:34:04:56:7b:8e:f0:b9:b5:8f:fb:46:f6:
6a:8f:57:65:07:32:2a:30:85:ae:37:27:09:79:f7:
14:25:0d:17:cc:2f:74:e0:7a:e3:25:66:26:8d:c9:
09:d1:81:02:3b:c9:98:bf:e5:81:cf:09:54:2b:9a:
d6:b6:ad:07:ad:2f:76:74:cc:c1:fc:27:0e:f4:b4:
6a:23:9a:fb:b2:bf:60:6f:6e:d4:02:46:97:77:77:
d8:1c:9e:e2:73:17:ca:b1:0a:02:6b:d1:3f:02:2d:
6b:e5:08:d7:cd:d9:53:ab:6d:e9:95:4d:f3:67:97:
70:95:70:bf:95:98:28:d1:35:b6:53:a2:8e:bc:fe:
60:6a:35:e2:d8:f8:17:45:58:2a:8f:0f:fc:37:3f:
7b:32:c1:f4:29:4e:73:97:d1:ba:8c:ae:3a:a0:48:
28:a7:3b:42:f5:99:e0:56:76:5b:48:99:e7:34:8d:
3c:00:4d:d2:a1:c8:20:8c:00:85:c6:69:ab:9a:17:
cf:c7:72:de:ec:9d:45:09:09:6e:b4:db:5e:6d:87:
02:84:bd:cc:98:99:ad:28:e9:af:4e:de:87:ff:fb:
31:ff:47:04:00:56:81:41:84:b4:af:86:e4:b3:f8:
50:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:F7:34:21:A7:75:75:25:28:81:17:6C:85:39:E3:91:90:FC:5E:AA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9288F566CCC511EFB29E23B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.35.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:72:94:33:72:8b:0a:9a:6c:6f:6e:36:66:37:c8:9d:a4:08:
81:98:c7:86:3e:5b:33:89:8b:82:45:d7:b5:d1:77:ce:a7:28:
79:ce:3c:d9:ed:b3:a7:7e:43:3b:d0:83:af:5b:27:df:d9:fe:
b8:0b:7d:50:6e:37:bc:e4:e0:be:1f:f9:71:6c:d7:d0:5e:f1:
63:d1:ba:54:42:a4:ed:28:96:a5:a2:4a:0a:d8:00:a5:97:9a:
da:88:9a:78:08:83:dc:d6:84:dc:67:74:3b:28:f5:e1:87:c7:
eb:15:83:4c:d4:d4:ca:26:8d:39:1f:19:c3:14:4a:28:4e:f6:
8d:b5:49:1f:f5:e2:c6:ba:36:0d:ed:97:23:b1:4b:96:82:4f:
81:63:3b:c9:27:bc:11:7a:b9:11:dc:9a:c6:1a:51:65:bb:10:
be:64:45:cf:14:42:0f:fb:d6:ea:2a:a8:e1:d6:80:0a:c3:04:
be:58:0e:0c:53:8e:0a:ad:f7:b0:ec:99:09:68:e3:b9:f6:b6:
14:67:bd:23:4c:83:a4:b0:74:86:9b:98:fa:61:85:0d:62:89:
07:67:0b:16:5f:17:b2:ad:9a:32:5b:62:7c:5a:ae:ec:98:b5:
0f:3b:7e:33:cf:41:fb:e3:7a:84:8b:9e:d0:e8:24:6c:d1:5e:
a1:3a:8d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:24:57 2025 by rpki-client