Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A15BD91EDAF811EFA054EB4C762E951A.roa
File: A15BD91EDAF811EFA054EB4C762E951A.roa (raw, json)
Hash identifier: h++psiS4BpIzoZK83kLK4mGbMlleU9GnsOZgTesd3jk=
Subject key identifier: 0E:3F:88:76:68:D8:E7:1E:5F:A8:89:59:8B:AF:B8:A2:C7:FC:77:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014905
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A15BD91EDAF811EFA054EB4C762E951A.roa
Signing time: Sat 25 Jan 2025 08:44:47 +0000
ROA not before: Sat 25 Jan 2025 08:44:43 +0000
ROA not after: Sun 30 Mar 2025 08:44:43 +0000
asID: 63139
IP address blocks: 154.94.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84229 (0x14905)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 08:44:43 2025 GMT
Not After : Mar 30 08:44:43 2025 GMT
Subject: CN=6794a47e-eb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:11:f8:8d:ee:91:66:b2:d3:e0:58:c1:4b:41:
67:43:54:ef:9b:a7:1d:b8:69:dc:c4:d0:7f:a3:0a:
d0:ba:91:9f:74:03:06:2a:b7:c1:b2:f8:86:b9:e9:
84:b1:45:bf:cb:d1:57:cb:c2:b6:53:3a:f7:21:29:
96:bd:f3:10:ae:12:3f:da:f8:d0:ec:36:fc:ca:f8:
ce:67:a3:37:1f:bd:4c:4a:80:22:87:13:7a:f7:2e:
6e:b4:e2:0a:89:65:bb:db:f5:e9:63:a5:51:e7:c0:
c7:ff:95:89:aa:ff:ee:62:06:1c:17:4a:ba:de:b0:
24:4f:ae:f4:08:55:5a:06:6a:48:fb:b4:a2:5e:c9:
75:09:1e:03:01:e1:9d:15:dc:5d:9f:73:16:43:18:
bc:8e:13:60:6c:30:e8:b6:94:be:83:f8:e3:0d:ee:
78:bf:a5:01:b4:3f:4a:1d:79:d3:76:dd:c4:36:8e:
6b:4d:a3:d4:f8:99:38:5f:8f:27:85:b8:7a:f0:a2:
f5:c2:e1:52:44:e9:65:ba:b3:ee:3e:1a:4d:f2:9f:
d4:a2:4d:36:97:e4:7a:61:7c:eb:58:6b:02:ad:b8:
8f:2f:87:86:14:ce:7f:ca:86:4a:bd:1a:9b:c7:10:
16:72:a2:90:22:1e:97:e2:41:80:e7:15:e0:86:3b:
9b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:3F:88:76:68:D8:E7:1E:5F:A8:89:59:8B:AF:B8:A2:C7:FC:77:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A15BD91EDAF811EFA054EB4C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.109.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:1a:f7:84:f0:fa:d4:82:a1:3d:bd:b9:1b:2e:da:ac:c0:d1:
00:5f:e4:4a:9a:b5:9f:9f:cf:2e:3d:b4:31:52:7e:e0:d3:df:
ef:11:f1:70:aa:93:22:5a:82:73:02:02:7d:54:f5:75:ce:65:
54:0a:cb:a5:56:68:f9:f6:dc:5a:75:67:01:3d:84:6e:bf:be:
d4:c7:b6:09:d7:b4:50:9c:78:42:df:6f:79:87:9f:11:8a:82:
d3:78:d8:49:f1:bc:d8:3d:97:2a:83:f0:95:3e:12:8a:4b:76:
92:e4:95:0d:0f:d1:4c:d8:5d:c4:89:05:b8:8b:78:05:f7:61:
ea:d1:96:96:ce:7a:4f:fc:52:ae:43:ac:4a:63:65:b1:20:9a:
e0:9b:79:26:fd:04:78:d3:17:33:c1:ec:73:e6:17:15:f1:ba:
61:4e:09:bb:98:6d:e9:05:05:ef:f2:17:a1:96:1a:7c:b5:e4:
bc:b5:35:c8:fd:f9:05:e2:03:bd:33:73:c0:64:29:b2:04:1c:
58:f5:1b:a0:c5:7e:ae:f1:cf:32:61:b0:e1:ea:28:46:47:b0:
27:8c:81:34:f5:09:d4:42:ad:89:e5:76:ca:ad:e5:6f:f4:cf:
03:ca:7f:95:95:4d:22:4f:13:01:48:1b:a5:69:dd:d7:7c:b0:
c0:69:34:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:21:13 2025 by rpki-client