Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B325B3A6DE2511EF845B2BB9762E951A.roa
File: B325B3A6DE2511EF845B2BB9762E951A.roa (raw, json)
Hash identifier: 2tdeCn21lBKa72571MZMRzLyXeotv33gtAgk3kcnluM=
Subject key identifier: CB:96:02:47:CD:88:EF:3E:F6:3A:8D:46:63:9A:4E:4A:87:3E:B1:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D72
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B325B3A6DE2511EF845B2BB9762E951A.roa
Signing time: Wed 29 Jan 2025 09:44:57 +0000
ROA not before: Wed 29 Jan 2025 09:44:53 +0000
ROA not after: Fri 28 Feb 2025 09:44:53 +0000
asID: 395793
IP address blocks: 154.193.105.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85362 (0x14d72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 09:44:53 2025 GMT
Not After : Feb 28 09:44:53 2025 GMT
Subject: CN=6799f899-22c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cb:27:2f:76:a3:d7:0a:27:69:c4:07:f3:26:
88:98:77:e5:a1:ef:0b:e7:9c:4d:c2:9e:df:5c:eb:
b8:a9:ba:16:3f:3a:a6:cf:d5:d2:99:80:34:04:29:
7e:eb:d8:dc:bb:b0:03:fc:12:45:4a:c2:39:ab:80:
d9:20:db:23:8d:0e:ae:33:ab:e8:ab:17:2e:61:41:
4a:31:72:89:fb:b1:88:f3:02:f8:05:cf:32:68:ff:
c3:6f:59:2b:ce:46:cc:e3:bd:0e:d1:80:9d:b4:b3:
d1:0a:46:54:4e:f7:91:04:43:0d:25:ff:ac:0b:7e:
ba:62:f0:2e:da:b4:a2:6e:55:84:6a:74:eb:87:00:
a9:fd:e8:a5:a4:20:68:f7:aa:cf:6c:52:15:2a:68:
ed:b2:27:7e:0e:8a:01:03:a8:3a:a3:62:b3:d2:7a:
dc:bc:07:57:93:b7:d7:0c:66:66:07:96:27:6c:b5:
66:c6:1a:68:ce:3b:13:c6:c7:be:4b:12:29:30:cb:
f4:c9:67:67:10:f0:f7:18:69:da:63:1b:66:b6:2c:
de:13:c6:17:d0:92:ba:5b:84:89:18:c1:28:32:60:
a2:2e:6c:9b:12:73:50:32:87:f9:c5:82:b5:18:b8:
af:ca:d7:99:1e:2d:6c:55:25:f6:f4:7a:2e:46:32:
64:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:96:02:47:CD:88:EF:3E:F6:3A:8D:46:63:9A:4E:4A:87:3E:B1:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B325B3A6DE2511EF845B2BB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.105.0/24
Signature Algorithm: sha256WithRSAEncryption
62:81:13:e0:7e:6f:07:6f:db:6f:a1:87:58:11:3c:b0:fe:1f:
ce:f9:14:54:6a:71:2e:67:f9:fb:49:fb:32:27:35:2c:09:ab:
c4:0e:32:ee:64:e9:73:24:16:3d:aa:da:dd:27:23:29:78:d7:
63:cf:a4:d7:b1:45:3e:bb:f8:3c:01:b5:e0:96:26:60:67:6b:
1e:57:69:04:3f:80:60:1d:57:7e:0f:38:49:e4:dc:85:d6:cd:
72:18:36:78:2d:14:d6:d3:b2:1c:b2:cb:dd:51:82:3a:0e:f5:
54:49:ac:09:2d:f3:45:0a:aa:46:30:74:b8:d3:1d:23:b3:f7:
78:e3:20:e2:3b:16:a9:db:5f:bd:2f:74:c5:2d:55:2f:dc:da:
10:f4:97:d5:30:ea:c0:02:92:6f:89:53:47:0d:c0:f1:80:c4:
0d:24:03:00:b0:0c:3c:4c:9a:6e:79:e1:3d:95:ae:66:1d:d8:
fc:a4:4f:87:55:58:f8:4f:ad:b9:8c:ad:cf:5f:03:0f:17:fd:
85:cd:be:12:b4:91:b3:e4:2d:b5:44:91:67:1e:dd:58:25:7b:
85:46:1d:a3:f4:fd:44:5b:ec:47:f6:81:bc:5e:b7:6e:60:32:
76:b5:f3:45:82:62:8e:a8:da:34:f6:45:56:df:84:8f:21:08:
b4:c3:a4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 21:48:20 2025 by rpki-client