Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA205044DA3411EFBAF2CE99762E951A.roa
File: AA205044DA3411EFBAF2CE99762E951A.roa (raw, json)
Hash identifier: onghyK/bZuw49sCq1d58611KSKzFqcK1wZ6k3ihM2CU=
Subject key identifier: F2:9F:77:D8:B1:20:87:E1:A0:94:5E:3D:9D:65:C8:A6:32:88:7F:B9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0144E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA205044DA3411EFBAF2CE99762E951A.roa
Signing time: Fri 24 Jan 2025 09:22:00 +0000
ROA not before: Fri 24 Jan 2025 09:21:56 +0000
ROA not after: Fri 28 Feb 2025 09:21:56 +0000
asID: 62240
IP address blocks: 154.195.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83169 (0x144e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 09:21:56 2025 GMT
Not After : Feb 28 09:21:56 2025 GMT
Subject: CN=67935bb8-7118
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:d7:33:28:c7:75:36:09:27:7f:d7:43:1c:
26:b6:08:a2:57:2b:62:be:92:49:77:1f:99:5b:5c:
fe:e7:d4:57:9a:74:74:13:1a:bb:28:7e:03:61:01:
b4:35:90:6b:e1:14:15:a1:70:38:81:14:60:06:be:
65:48:4d:a5:9e:de:62:a8:94:ba:e0:6e:12:69:12:
a1:ad:e1:fd:0f:ef:c8:5a:0f:de:25:e8:83:18:6b:
6d:83:77:bc:9d:3b:c4:44:f0:c7:f4:05:25:6f:e1:
56:f4:ff:b5:5d:a9:b2:78:f2:b2:a0:a8:97:54:2d:
e8:9c:d1:22:e5:98:35:65:a7:58:57:8e:48:3b:2c:
94:33:31:dc:78:32:93:ef:b1:98:c2:4a:d7:31:88:
2d:c8:47:80:87:88:00:e1:63:6b:34:83:87:64:74:
6f:db:c1:ad:93:ab:50:5e:d0:b2:b3:02:9c:8b:c0:
78:72:b7:57:ec:66:82:70:59:7c:11:5b:ba:5a:93:
2a:de:7e:d4:a2:bb:b6:3c:f9:04:da:42:de:72:a0:
22:27:12:ca:54:bd:ac:4f:20:b4:fb:fe:a3:ec:35:
61:25:e8:05:82:41:c3:53:b7:62:61:0a:8e:50:1a:
49:d5:8d:74:34:06:df:3a:ec:4f:7e:60:07:0c:e7:
56:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9F:77:D8:B1:20:87:E1:A0:94:5E:3D:9D:65:C8:A6:32:88:7F:B9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AA205044DA3411EFBAF2CE99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.173.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:fd:1d:90:7c:e9:fe:20:99:9a:3e:33:65:e8:88:63:0e:4a:
4b:a0:8c:48:1d:4a:34:ed:d1:be:46:44:be:54:dd:b6:e8:ac:
f9:62:74:84:57:8c:3c:8e:ed:d3:eb:8f:e4:cc:fb:96:dc:f9:
a4:fb:61:6c:d2:9c:b6:29:b0:85:e1:ee:bd:42:58:00:f7:12:
9f:f1:83:29:0e:98:5c:17:fa:14:7b:56:89:f2:6b:d4:31:cf:
94:13:fd:bb:f8:cc:47:91:52:d5:84:f8:8c:e0:3b:f8:c2:67:
7b:01:26:e4:e0:8d:a0:a3:36:bf:c0:e5:ff:cf:2e:bb:61:34:
da:cb:4b:91:c5:df:d9:71:fd:0a:ea:16:53:d2:53:7d:5a:8b:
f6:be:bf:da:c5:ca:32:25:42:23:4a:7b:55:25:de:cd:90:3b:
c4:d6:4b:39:f5:2d:39:c8:50:7e:72:a4:28:6c:77:11:c0:21:
10:e7:c5:fe:6e:ef:bc:b2:10:27:28:45:10:c6:df:6d:04:57:
e7:2c:45:cd:80:dd:48:55:36:73:16:44:f9:20:4d:de:a0:e7:
da:18:c9:4e:09:9c:42:2a:73:77:9c:a7:70:ea:58:ce:11:a7:
c5:f0:b7:cc:10:9c:69:60:a8:3c:b3:44:f7:ba:eb:14:dd:f1:
5d:9e:ce:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:13:18 2025 by rpki-client