Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B155B740DFE411EFB27BA378762E951A.roa
File: B155B740DFE411EFB27BA378762E951A.roa (raw, json)
Hash identifier: pBJcYdhHyugUB/NJ3BOevNvVdgBXK6ap/pdZCc8sDy0=
Subject key identifier: 58:DD:4D:1B:96:1B:97:45:CF:5F:67:68:21:3E:67:87:65:0D:E3:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014DD4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B155B740DFE411EFB27BA378762E951A.roa
Signing time: Fri 31 Jan 2025 15:04:39 +0000
ROA not before: Fri 31 Jan 2025 15:04:35 +0000
ROA not after: Tue 04 Feb 2025 15:04:35 +0000
asID: 5065
IP address blocks: 154.84.136.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85460 (0x14dd4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 15:04:35 2025 GMT
Not After : Feb 4 15:04:35 2025 GMT
Subject: CN=679ce687-f03f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ed:5b:c9:9b:78:59:32:3c:ce:fe:7b:25:65:
3e:59:d8:e3:b3:56:3a:17:84:48:ee:49:41:ac:6e:
d8:f4:eb:d5:01:47:c9:94:5e:90:61:85:c3:d9:a2:
3b:93:bf:40:8f:12:aa:6b:c0:c3:50:90:ab:c5:b4:
74:4e:04:2d:da:70:d2:a0:f7:19:44:01:10:89:bb:
66:b6:f1:3b:0f:42:95:52:72:c9:55:70:73:78:1a:
4f:c7:02:9a:74:11:bf:1b:47:7b:5e:5e:ee:42:52:
6c:d1:15:07:17:08:a4:03:11:a9:17:6f:16:1b:62:
94:33:51:f6:36:a1:bc:33:e1:50:fb:af:15:e7:5f:
8d:95:25:19:f8:94:2c:54:19:15:b7:ad:2a:92:ed:
1b:ca:07:2b:d8:a4:48:9a:87:07:9a:f7:e9:66:a4:
d4:6c:18:66:58:81:47:d0:ef:b9:0d:00:9e:a8:7d:
74:1b:3f:91:bc:13:0a:cd:a5:a7:d2:16:e9:8f:51:
fa:2b:af:f0:b3:06:e5:34:f7:66:58:18:f2:62:0e:
52:51:25:8e:55:08:a1:e5:1f:fa:c4:a1:8e:a9:44:
43:34:2a:6f:fd:80:95:77:d4:d7:fb:f2:1e:eb:99:
be:97:dd:d2:0c:32:dd:3b:bb:38:9d:6d:1d:23:f1:
69:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:DD:4D:1B:96:1B:97:45:CF:5F:67:68:21:3E:67:87:65:0D:E3:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B155B740DFE411EFB27BA378762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.136.0/21
Signature Algorithm: sha256WithRSAEncryption
1f:ea:1c:89:29:31:e5:07:dd:f1:c0:65:c3:d4:6a:50:93:83:
1b:be:e4:4d:42:45:35:82:fd:9e:62:1c:24:61:2e:37:c0:dd:
84:0c:05:9a:db:db:6f:3d:e5:f1:a8:b6:9d:04:94:e4:99:c7:
33:4a:ff:a1:f7:2f:fc:76:8d:9c:e9:57:1c:24:a9:1d:dc:2b:
2b:6c:02:54:f6:32:15:55:b3:5c:d7:84:b1:8e:11:74:89:24:
69:f3:38:60:19:85:52:f0:03:9b:6e:f4:86:f3:2d:6d:43:cf:
e8:27:34:a6:a1:b4:9f:c5:a8:18:2c:93:fe:2f:42:29:8c:f0:
aa:6d:a8:82:f3:db:44:6c:f1:d5:fb:c5:37:b2:59:e5:07:96:
b8:74:49:61:37:34:e4:b6:49:6c:34:1e:76:bb:d6:12:3d:d1:
bc:c6:97:8a:37:d6:bf:51:32:8f:a9:18:12:db:b7:af:0c:4c:
b9:e2:24:9b:db:d4:79:f8:b3:0f:2c:5c:1d:3b:e6:e9:71:63:
ca:02:9b:68:f3:bd:99:5f:48:d8:c4:e0:d6:3b:be:50:68:35:
6e:f2:9e:35:ba:5f:c3:2f:3e:a7:ba:3a:ec:18:82:ea:e3:7f:
84:03:b7:88:79:32:90:87:36:47:84:01:3b:00:5b:da:4c:4a:
ae:de:6e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:48:35 2025 by rpki-client