Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BEE0214D95D11EF87C66270762E951A.roa
File: 9BEE0214D95D11EF87C66270762E951A.roa (raw, json)
Hash identifier: 0U0UVZAwWwb1esazCkOw0ilLjDwPlIyZv7pxoGc1vZY=
Subject key identifier: 72:9C:D0:70:C2:97:0A:11:55:B2:F2:7C:24:4D:C0:5E:8A:D4:97:72
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01404F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BEE0214D95D11EF87C66270762E951A.roa
Signing time: Thu 23 Jan 2025 07:42:34 +0000
ROA not before: Thu 23 Jan 2025 07:42:30 +0000
ROA not after: Sat 08 Feb 2025 07:42:30 +0000
asID: 18229
IP address blocks: 154.210.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81999 (0x1404f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 07:42:30 2025 GMT
Not After : Feb 8 07:42:30 2025 GMT
Subject: CN=6791f2ea-06f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6b:2b:32:ee:fe:df:38:4d:0a:c4:5d:29:aa:
07:06:03:ba:d1:06:1e:a1:2c:76:69:2c:f0:93:5d:
17:55:c5:d9:f8:12:d3:ac:1f:1d:aa:7d:df:3d:27:
f5:51:6c:94:12:79:40:3f:3c:aa:12:02:07:99:09:
48:4c:0f:b6:06:15:f6:c9:e5:b7:ab:e9:0d:2d:15:
da:15:ec:16:5d:86:2d:6e:d3:a6:02:0b:e6:82:93:
64:8f:08:ad:46:a6:ce:95:b6:7e:b5:0d:72:3e:3e:
7d:10:69:a5:5a:f0:80:72:4a:32:45:ed:c1:8e:a2:
54:c8:68:24:86:81:72:bd:0d:2d:57:29:4d:b2:cb:
9a:9f:63:c9:9c:5f:1b:54:46:f2:44:9c:c2:76:26:
08:4a:ea:38:60:c1:46:ec:06:77:fc:7e:bc:bb:04:
9d:1a:30:b4:13:04:b7:1d:d2:c0:41:35:99:4c:89:
1c:d0:ad:6b:3a:b9:1d:4f:49:c9:29:bd:24:08:5f:
4c:bb:fb:98:d9:9e:e7:a6:2d:61:bb:2b:fa:9e:82:
8a:46:94:81:74:67:e4:69:7f:74:7a:bc:f3:01:85:
76:8c:97:85:9a:f0:ab:3a:a5:ef:16:e4:4f:ad:7b:
4a:9d:1e:04:90:b6:00:97:43:43:3c:37:57:3b:b8:
01:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9C:D0:70:C2:97:0A:11:55:B2:F2:7C:24:4D:C0:5E:8A:D4:97:72
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9BEE0214D95D11EF87C66270762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.168.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:eb:ef:ae:31:26:aa:24:7e:6b:be:0b:0b:ca:e8:4c:28:4f:
7c:3a:05:95:e3:90:fd:15:96:3c:08:cb:4f:e9:a3:16:c6:a2:
2c:94:85:14:2b:92:2a:ac:41:2d:4a:d9:22:ca:2f:34:3c:4c:
ef:c7:32:09:c0:04:f8:8d:e2:c3:c5:3d:95:05:31:c6:6c:6f:
20:e8:d2:80:f1:fd:9e:27:fe:13:24:45:c1:ac:b4:fc:08:9f:
da:35:b6:de:92:de:3f:4e:23:c8:ab:f3:6e:cc:51:fd:e7:97:
c0:42:58:6a:da:7a:6a:3f:2c:29:76:c4:3d:b9:4d:c6:e1:c9:
9b:e9:e6:67:38:0d:c6:9f:f0:d8:c7:61:f0:cc:a1:ea:af:3d:
b0:fd:6a:4d:09:47:2c:29:82:65:9c:c0:23:3a:1b:a9:d8:63:
76:41:6d:01:81:90:1b:49:5d:7d:96:5e:7c:51:00:48:8c:42:
4a:a0:5c:90:c5:4f:64:f7:f2:1e:37:32:76:cd:2c:2f:c3:93:
7b:54:04:13:96:39:62:0e:65:d6:62:3c:0c:7a:f8:c4:38:09:
e6:f7:f1:24:9e:b7:e5:a7:ae:0d:29:77:5b:07:ce:91:29:a6:
8e:36:b8:4b:33:72:42:b2:b1:d2:f6:f1:f0:32:94:b7:a0:15:
f8:b1:ea:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:45:41 2025 by rpki-client