Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A24BEDC0DC9011EFB5276A8A762E951A.roa
File: A24BEDC0DC9011EFB5276A8A762E951A.roa (raw, json)
Hash identifier: Y1oKwp/PD/SAJ7DVIgMpojWmZpuTYC84z4FRbfPIdGw=
Subject key identifier: DC:92:F4:C4:7D:F3:96:03:BA:BC:2A:8C:10:D0:1D:CA:29:59:2C:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B85
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A24BEDC0DC9011EFB5276A8A762E951A.roa
Signing time: Mon 27 Jan 2025 09:25:23 +0000
ROA not before: Mon 27 Jan 2025 09:25:19 +0000
ROA not after: Sat 08 Feb 2025 09:25:19 +0000
asID: 5065
IP address blocks: 154.83.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84869 (0x14b85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 09:25:19 2025 GMT
Not After : Feb 8 09:25:19 2025 GMT
Subject: CN=67975103-40fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:98:40:63:cf:da:a3:0c:28:c1:5d:d3:da:43:
6b:70:bf:62:46:15:4d:c1:2c:d3:ad:ce:f0:b2:8f:
42:47:d9:48:55:95:d5:9f:48:43:32:10:70:b4:51:
b9:d7:3f:ba:f4:fa:be:61:8c:0c:5a:9d:95:07:a3:
0f:11:a4:4a:4a:00:fa:c3:87:ab:dd:f0:56:76:cd:
11:30:14:33:b2:0a:c5:01:39:98:84:95:d1:da:4f:
aa:14:8a:33:8b:dc:52:db:92:38:44:8d:db:74:b8:
e7:17:f2:10:6d:42:22:2b:9b:96:06:a2:bb:96:83:
f1:47:d9:12:42:e3:e8:fe:b9:8e:3b:69:62:fd:2c:
f1:09:80:04:85:1a:b6:49:05:fa:50:9a:ec:b8:d1:
0c:46:e6:96:48:bc:4b:c6:e3:59:eb:7c:a8:44:f3:
da:46:76:22:3d:73:22:ee:e4:cc:6d:78:bb:b6:ef:
b9:26:36:95:1c:85:74:e9:68:4b:f1:7e:57:15:a1:
84:72:f2:87:86:18:fb:39:5e:3f:9a:63:49:15:03:
f7:0a:b1:cc:53:de:ac:57:97:df:5e:2e:8a:25:a6:
3f:35:81:96:6b:06:85:52:16:ad:18:e9:09:d8:30:
84:ba:67:e4:55:29:1a:16:36:79:87:20:15:ac:d4:
bf:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:92:F4:C4:7D:F3:96:03:BA:BC:2A:8C:10:D0:1D:CA:29:59:2C:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A24BEDC0DC9011EFB5276A8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.206.0/24
Signature Algorithm: sha256WithRSAEncryption
47:b3:71:39:a6:67:06:7e:5a:9b:98:9f:f3:67:56:f3:60:8e:
38:22:d1:a6:d5:41:94:2f:9b:e8:a7:c6:73:49:17:a5:bd:4b:
b1:b5:48:bf:d8:cc:3f:c2:e0:1f:a0:29:db:21:8d:65:fc:53:
07:fe:f8:5b:a7:24:d3:c8:00:c6:78:b1:a2:22:18:e9:71:49:
15:a6:e3:d3:60:32:9e:9e:97:5a:84:45:c6:cb:0e:51:bc:ed:
27:39:68:e1:7e:93:8b:23:64:9d:0e:4b:85:15:44:5c:cc:e5:
09:b1:ac:b5:c3:a7:cb:74:73:e5:c6:5b:5b:fa:84:b3:3d:00:
97:3a:49:91:ea:ac:81:1f:0e:16:dd:75:8e:75:a8:a4:15:1f:
cb:07:84:99:96:b3:b8:81:89:19:9a:bb:b2:88:75:a5:9b:20:
72:3e:3d:ff:80:9b:2c:5f:0e:2e:67:37:f9:87:6b:17:a1:9f:
51:1c:c4:fc:7a:87:d4:e6:9a:de:c7:27:98:34:a4:b7:8d:bb:
70:b4:f8:76:5b:b4:11:94:5e:9b:e9:44:1c:95:24:cc:8b:6a:
42:81:15:98:60:c1:8a:9d:d0:8b:3c:01:63:0a:45:da:cb:2a:
b6:ae:ae:16:c4:31:32:52:8c:3a:5e:0a:48:8a:d9:68:72:98:
16:fb:02:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:31:45 2025 by rpki-client