Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65ACF4CB17211EF8B228872762E951A.roa
File: A65ACF4CB17211EF8B228872762E951A.roa (raw, json)
Hash identifier: M+E2bMG9gW2sp8AR7RseO3GBEmvZ7LsUSLhEg+u9bSk=
Subject key identifier: 18:B1:D7:6C:F4:A0:89:E1:D4:43:2A:82:CF:43:FF:19:AF:BC:76:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01171C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65ACF4CB17211EF8B228872762E951A.roa
Signing time: Tue 03 Dec 2024 12:32:25 +0000
ROA not before: Tue 03 Dec 2024 12:32:21 +0000
ROA not after: Wed 26 Feb 2025 12:32:21 +0000
asID: 135377
IP address blocks: 154.197.56.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71452 (0x1171c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 3 12:32:21 2024 GMT
Not After : Feb 26 12:32:21 2025 GMT
Subject: CN=674efa59-3942
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2e:54:2f:05:3c:ff:27:76:a3:eb:c8:d6:f7:
34:aa:e5:63:15:a8:66:16:12:91:dc:5f:6c:f0:28:
30:4d:0d:02:ae:65:dd:8a:4c:ae:07:bc:13:21:78:
3b:c5:ef:a0:dd:ce:38:3b:46:8c:ed:d6:68:6b:a2:
16:95:67:e5:37:2f:7a:01:77:99:a1:10:62:b3:e9:
7d:20:a8:21:7a:eb:94:ee:d2:2a:63:d6:9b:27:09:
c4:40:2d:af:71:83:67:99:77:25:fa:4a:4c:6a:56:
33:b6:72:2c:3e:e9:57:3d:46:f6:bd:d0:d0:3c:da:
44:48:5c:cc:a2:f7:98:7e:ac:94:9a:9d:28:a9:f5:
07:f4:be:27:a5:e6:f7:b9:05:91:50:0e:40:05:c2:
c1:2f:01:25:50:9d:ef:62:a6:fc:65:da:62:46:32:
e4:76:86:71:1a:01:28:ea:ff:58:f0:db:9c:85:bf:
24:ca:4b:7c:f5:00:95:24:18:28:e0:d2:7f:85:e5:
10:4b:f2:9f:6c:5b:68:c1:13:30:f9:ed:40:37:69:
ea:d9:85:46:76:44:95:0e:45:03:05:49:bf:f2:6d:
c9:3d:66:8a:de:b9:56:f6:46:2e:a5:a9:05:f3:24:
39:88:29:24:07:1e:4e:73:81:32:76:46:f0:75:62:
0c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B1:D7:6C:F4:A0:89:E1:D4:43:2A:82:CF:43:FF:19:AF:BC:76:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A65ACF4CB17211EF8B228872762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.56.0/23
Signature Algorithm: sha256WithRSAEncryption
41:dd:e7:2b:59:e2:f7:16:5b:a3:53:59:26:83:cd:d4:31:6b:
a7:7a:b6:d8:ca:fe:e1:31:43:f8:a0:b8:e5:ff:7b:88:f4:d7:
bd:97:b6:1d:42:54:70:70:1d:95:50:32:82:c7:02:87:e8:40:
e6:34:87:48:30:60:1b:0b:c0:7a:62:e6:e0:c1:2c:01:f0:63:
57:6a:3d:97:aa:e9:99:8c:4f:62:da:e3:a2:b2:b0:83:be:e6:
27:13:c7:3c:e9:ec:8a:9c:aa:b3:38:c8:72:4c:79:59:bb:fc:
f1:67:2a:5c:cf:23:da:b3:b9:76:68:2b:65:9e:a6:68:17:02:
f7:05:38:72:11:65:92:77:e0:b6:95:3a:d7:6d:16:51:a4:be:
13:6c:7c:5d:b6:7f:70:8e:b8:be:ee:9d:a4:fa:4b:10:d0:e1:
fd:c1:ce:0f:44:32:84:25:19:4d:25:65:51:cf:5e:d4:1b:ea:
90:e9:cf:f1:8b:44:af:b7:a6:31:f3:a2:2a:3e:65:be:46:ae:
fa:a3:65:6d:24:96:91:50:8d:be:a1:a5:ba:ea:a1:61:0b:17:
e1:a0:1e:d8:25:30:12:bf:2b:f6:fb:c0:7d:0a:94:4a:1a:a1:
06:97:c7:b0:fb:c6:59:b9:f1:a6:84:ac:ec:80:66:3b:4b:16:
bb:1f:ac:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:20:12 2025 by rpki-client