Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEF034DEDA3611EF896784A7762E951A.roa
File: AEF034DEDA3611EF896784A7762E951A.roa (raw, json)
Hash identifier: di/6gFWDZzrlgjyAKhVaBDqXCoh1+ZxnVzf6Miun/20=
Subject key identifier: DD:EE:C9:D5:10:4B:DA:8B:E1:0F:69:5F:CA:9C:A1:E6:37:31:5A:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014500
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEF034DEDA3611EF896784A7762E951A.roa
Signing time: Fri 24 Jan 2025 09:36:27 +0000
ROA not before: Fri 24 Jan 2025 09:36:23 +0000
ROA not after: Fri 28 Feb 2025 09:36:23 +0000
asID: 62240
IP address blocks: 154.195.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83200 (0x14500)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 09:36:23 2025 GMT
Not After : Feb 28 09:36:23 2025 GMT
Subject: CN=67935f1b-ee7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0d:64:ec:45:10:73:0e:b8:1e:8f:c7:0b:35:
7d:2d:76:d4:0e:1a:03:ec:59:b3:cc:34:e7:69:1f:
c3:96:8d:9a:05:4d:5d:b3:ed:58:d1:75:db:cb:a3:
53:2a:ed:67:60:21:5b:00:90:c3:0e:fe:10:de:01:
b2:c1:23:c6:fc:d4:82:87:97:43:37:30:66:52:0d:
70:a4:51:85:62:eb:2a:b5:03:b4:70:98:15:03:68:
0a:c2:ed:f4:fa:d7:db:6a:ba:1a:e0:80:a1:aa:21:
a0:b2:cf:05:37:e2:1e:b3:bd:65:0a:c9:96:71:aa:
6b:07:4d:d9:53:20:36:87:01:2a:46:80:3d:43:ad:
24:38:38:61:71:85:e6:11:44:00:bf:8c:4e:84:8e:
d2:5c:51:a4:2d:d2:18:5a:a2:b9:fd:68:2f:77:e1:
15:99:2a:9c:4f:a3:05:2a:8a:14:ce:ed:93:4f:55:
4f:a7:49:8c:35:10:47:ff:c1:58:9c:b1:aa:fa:ff:
57:39:45:c4:36:49:26:5e:51:ad:a8:63:25:7f:9e:
f0:1e:38:a6:b0:74:57:60:80:93:a2:46:06:e3:db:
f6:9b:a8:9e:4e:90:4a:3f:22:75:29:38:9c:a2:95:
8d:45:aa:2f:67:de:db:27:87:7c:01:ca:95:7d:a9:
3c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:EE:C9:D5:10:4B:DA:8B:E1:0F:69:5F:CA:9C:A1:E6:37:31:5A:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AEF034DEDA3611EF896784A7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.101.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a4:78:5e:0f:2f:01:45:87:cf:88:89:67:c8:3d:fd:a5:2d:
2f:55:51:1c:f3:27:34:ab:8a:9d:09:1d:87:80:16:d2:cb:8f:
3f:70:2e:c6:64:21:f3:12:c1:33:f1:48:70:8d:fb:28:03:97:
ce:3e:ca:eb:23:8c:c5:39:c6:d7:71:04:50:d6:63:f5:2d:a7:
42:37:b9:3a:b3:10:f1:e2:de:d6:22:bd:9e:f4:d8:08:6a:32:
c9:27:0f:d6:b2:42:98:87:a8:67:98:1b:00:2c:08:41:18:c2:
cc:51:e1:c5:9b:1c:88:87:c3:33:ff:52:41:01:0e:3b:5c:0c:
1a:66:69:45:4c:df:c3:d3:97:af:e5:d9:7f:95:27:8a:84:2f:
e7:e7:86:bc:07:dc:15:53:05:d1:aa:fa:c9:60:ae:6c:c7:41:
53:bf:64:d7:7e:db:df:ae:42:df:cb:b7:10:96:9b:59:a7:53:
50:35:d2:3a:a1:6d:16:34:b3:b7:63:f8:69:c1:b0:cc:9e:e1:
7c:e3:ba:23:d0:a5:76:39:c5:8a:89:35:91:5e:87:5f:12:56:
38:77:83:70:26:a1:39:05:f4:04:9e:3a:30:1b:be:ec:28:ec:
70:61:1e:55:de:34:2e:e8:76:71:7a:df:39:19:04:33:3b:61:
1d:f5:8c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:02:21 2025 by rpki-client