Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB29D9BCDB1811EFA5DF4DA2762E951A.roa
File: AB29D9BCDB1811EFA5DF4DA2762E951A.roa (raw, json)
Hash identifier: 9TY4e9XyqUCEhuGSWrVq6OQPgI52iEFQht6Nrv7mU/8=
Subject key identifier: 84:76:78:46:2E:88:33:7F:D9:3E:F5:9E:79:9A:00:C4:90:DF:AA:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01494A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB29D9BCDB1811EFA5DF4DA2762E951A.roa
Signing time: Sat 25 Jan 2025 12:34:07 +0000
ROA not before: Sat 25 Jan 2025 12:34:03 +0000
ROA not after: Mon 03 Mar 2025 12:34:03 +0000
asID: 202656
IP address blocks: 154.219.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84298 (0x1494a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 12:34:03 2025 GMT
Not After : Mar 3 12:34:03 2025 GMT
Subject: CN=6794da3f-5805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:0a:04:46:af:87:4d:93:fb:dc:f0:13:58:
d3:0a:c6:73:4e:80:59:d1:91:60:c9:11:90:f6:34:
bd:31:45:2d:dc:5b:78:a2:0b:08:d0:73:4d:21:fa:
3c:1f:5c:5a:cc:f0:b3:43:09:ce:a7:87:bb:2a:6e:
c4:c1:4c:2d:93:22:7a:85:ce:d5:21:d3:e9:04:75:
51:a6:8a:7a:cd:f9:5c:41:54:43:48:15:6f:2f:0e:
8c:ca:18:8c:7d:af:af:b8:e1:9c:95:a5:8d:06:ac:
48:80:a3:74:3f:03:0b:e3:21:ad:3d:24:ce:3f:a7:
79:c8:71:ba:ab:34:b7:d2:aa:d0:7a:2a:a8:e6:05:
c6:04:ea:bb:64:8f:83:a6:f0:8b:54:c3:02:02:6d:
94:48:06:96:3b:4d:44:40:48:ed:d4:82:9c:52:72:
12:93:6c:de:d2:53:34:97:50:ab:eb:fb:b9:e3:9e:
99:eb:06:19:c0:f2:3d:40:4e:f7:41:2e:74:3d:24:
f5:ea:ae:7b:58:02:fc:51:9e:93:ee:38:7c:a4:be:
e5:60:84:3c:06:78:6a:09:36:56:80:77:9c:7a:20:
12:0a:da:05:4c:6b:d7:3f:09:c9:32:6c:ba:a7:b6:
f8:e3:bc:3c:60:8c:47:fa:00:f7:c2:27:27:a6:87:
f4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:76:78:46:2E:88:33:7F:D9:3E:F5:9E:79:9A:00:C4:90:DF:AA:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AB29D9BCDB1811EFA5DF4DA2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.207.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:fb:02:10:42:2c:6b:b1:aa:50:da:32:f1:16:25:5d:5d:ed:
46:d8:b7:50:67:9a:44:ba:04:f8:64:59:69:1e:26:01:f8:39:
f6:2e:39:8b:de:76:03:d0:28:74:71:6c:87:52:68:98:7f:8b:
46:e5:67:cf:33:37:b7:b5:42:6c:02:0d:67:b3:e8:49:8d:14:
b3:c3:10:da:24:a5:b4:40:5a:82:3d:d9:0c:4f:c1:4c:a5:bb:
06:be:65:ed:4d:c2:28:74:a1:60:e7:69:2c:8f:49:26:c3:9b:
73:95:35:86:19:74:72:98:16:13:5f:63:e3:dd:29:45:e4:20:
01:94:38:a7:cc:07:b0:2e:a4:24:a1:9b:3b:51:6f:03:c3:a9:
87:3e:d9:c9:b9:2f:8b:1e:80:d7:df:8a:2a:3e:19:27:7b:4e:
7e:33:0a:4b:ba:de:8c:f1:99:12:db:3b:b8:0e:5f:f4:c4:31:
0d:4a:b7:4e:d6:16:26:d0:7e:d9:9b:32:77:2b:cd:dc:13:9c:
e5:ce:3b:a6:d0:03:0c:77:a9:41:19:00:9b:4c:56:ab:8f:eb:
97:3d:e4:4e:8e:81:39:64:73:26:51:24:0d:a6:f9:9c:9b:fe:
ab:83:59:9b:ea:6b:01:e3:36:48:f9:51:46:ea:56:3d:5e:5a:
04:8c:32:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:57:40 2025 by rpki-client