Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A779D696C9C511EFB1F58DAF762E951A.roa
File: A779D696C9C511EFB1F58DAF762E951A.roa (raw, json)
Hash identifier: a2R78QZcdGkWYBZOo/Brpbb5WXp07ETDLOFrMIuxt90=
Subject key identifier: F9:04:ED:65:23:D9:88:20:71:48:DA:FF:2E:B9:36:0A:13:43:D5:77
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0134A0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A779D696C9C511EFB1F58DAF762E951A.roa
Signing time: Fri 03 Jan 2025 11:27:03 +0000
ROA not before: Fri 03 Jan 2025 11:26:59 +0000
ROA not after: Tue 04 Feb 2025 11:26:59 +0000
asID: 203020
IP address blocks: 154.206.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79008 (0x134a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 3 11:26:59 2025 GMT
Not After : Feb 4 11:26:59 2025 GMT
Subject: CN=6777c987-a0bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:f4:6c:19:60:c9:41:3c:e1:f4:d4:e4:77:bf:
34:78:e5:63:44:44:70:12:c8:05:9a:f9:ab:9e:fd:
3d:d6:07:94:c7:79:f9:f6:4a:89:cf:f5:6b:fc:d4:
fc:50:4e:f9:95:bf:c8:a8:a7:99:9c:99:b1:1b:f0:
40:41:ae:dc:43:e5:92:a5:92:26:9e:66:b5:d1:e5:
b7:03:36:e9:9d:cd:36:42:2b:87:a0:3b:ff:9e:83:
78:81:97:4d:2d:1c:41:82:ef:c5:dd:50:ee:e9:21:
a2:e0:e0:1c:e4:f8:fc:ee:bc:59:ef:43:27:62:a2:
c5:f6:f6:e5:03:98:e2:53:64:2e:86:f5:43:ba:ef:
82:ff:ff:18:35:77:7f:47:ec:da:7b:86:b9:2e:e8:
f6:16:1c:13:88:84:04:0c:dc:0c:07:82:1a:c7:5b:
c5:66:26:5f:32:ce:df:69:de:2b:b9:79:53:db:d9:
c5:82:65:d0:a3:7f:9f:80:b0:7f:da:ca:24:6c:42:
ee:75:11:61:17:ac:0e:42:a2:19:7c:2b:75:13:38:
69:21:6d:7f:5c:9f:28:d7:24:cb:54:c1:26:b0:41:
30:7e:12:31:29:41:7a:7a:39:27:bf:32:10:ed:bf:
69:4e:da:a5:b1:7f:90:35:66:57:fe:90:bd:9c:b7:
4d:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:04:ED:65:23:D9:88:20:71:48:DA:FF:2E:B9:36:0A:13:43:D5:77
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A779D696C9C511EFB1F58DAF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.13.0/24
Signature Algorithm: sha256WithRSAEncryption
63:89:44:1d:fc:b9:b9:7f:fc:eb:4a:a3:02:19:d9:9c:c6:37:
f0:d6:36:53:b4:a4:2d:60:9e:fa:8f:4b:63:e5:c9:02:c2:61:
15:d7:ac:1b:1a:a0:66:71:f6:d6:20:98:a8:92:6e:7f:be:f7:
5c:fb:b4:a6:da:d3:17:46:c5:63:c2:36:5a:be:32:1c:cc:2c:
57:a2:21:b1:6a:10:4c:01:27:bd:75:51:2f:8c:f6:be:ee:a5:
0f:e3:94:7d:cd:75:b1:93:25:8b:d2:e9:af:46:b7:fc:99:ab:
43:c4:57:ec:da:b1:5e:dc:2f:1c:74:2d:8e:89:0c:80:d1:32:
79:bd:70:03:c3:86:97:d3:fb:f0:1b:d9:f9:8a:db:82:ad:48:
a0:c5:d8:82:b9:e5:ca:3e:88:83:1a:2e:a6:1c:f8:0f:9c:3a:
dc:37:43:d7:f2:af:68:53:29:3a:49:03:eb:49:27:4e:2e:a3:
c9:7e:ac:bf:85:82:16:56:2b:74:73:c0:02:b5:e1:89:fa:51:
5b:fe:bc:d0:48:a3:09:00:65:73:b1:f5:6f:8d:ef:6b:de:49:
17:9c:dc:e3:d8:98:3a:37:e9:44:bf:7a:dd:29:94:0a:46:fa:
88:7e:b9:7a:a9:f0:02:dc:0c:4c:a2:b4:bd:4f:ee:a3:f4:2a:
6b:a4:12:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:48:52 2025 by rpki-client