Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B364E442D4FF11EFBC2B0AA9762E951A.roa
File: B364E442D4FF11EFBC2B0AA9762E951A.roa (raw, json)
Hash identifier: PhuuXLJDLQFS+qnWLyi6JfChwlGDoNJMHl7gc/KtRSU=
Subject key identifier: 5D:57:68:46:01:2D:EE:26:A5:97:D0:CC:A9:FE:11:25:33:AE:FD:81
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D1F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B364E442D4FF11EFBC2B0AA9762E951A.roa
Signing time: Fri 17 Jan 2025 18:20:16 +0000
ROA not before: Fri 17 Jan 2025 18:20:13 +0000
ROA not after: Fri 31 Jan 2025 18:20:13 +0000
asID: 39600
IP address blocks: 154.207.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81183 (0x13d1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 18:20:13 2025 GMT
Not After : Jan 31 18:20:13 2025 GMT
Subject: CN=678a9f60-9fd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:1c:35:d3:21:e1:6c:ff:a8:b4:11:58:b5:14:
12:4e:1c:25:ec:c6:b3:a2:03:b1:9c:4a:f9:92:00:
45:f2:72:a3:68:42:90:fb:8c:06:7f:ec:9e:28:36:
01:4b:19:00:cc:10:c1:02:fd:74:be:fc:87:fa:f8:
e8:33:a3:08:a7:85:70:a2:88:7c:52:18:91:fe:54:
27:ed:ce:d2:80:85:8f:02:32:01:6c:70:01:5b:c5:
6e:e1:cc:da:7c:43:e0:3d:d4:4d:a4:65:5b:9b:e0:
91:ac:10:47:c1:a0:2f:d0:ea:b7:cf:9d:ae:66:c5:
c2:ab:8d:54:92:32:3c:63:ed:92:58:04:55:9d:33:
08:d6:9d:40:b5:e7:5c:43:3e:68:d0:3d:1b:98:20:
83:c2:bc:ce:ca:92:47:e2:2a:76:15:1a:e5:ff:01:
4e:ea:68:7a:fa:e9:ff:a9:1d:29:81:67:a3:ec:84:
19:61:98:13:57:c6:bd:ac:30:df:a5:f8:5b:f9:54:
ab:4c:b5:03:bb:b3:38:e6:53:23:a8:54:9f:8c:fc:
bb:2a:ad:64:11:c2:10:fd:66:bf:5e:23:9a:f3:9e:
c5:1a:ec:06:a8:7d:11:25:6a:b6:35:f6:0d:af:46:
08:2d:bd:db:cd:f7:5f:c9:0b:7f:0a:38:24:7b:c4:
be:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:57:68:46:01:2D:EE:26:A5:97:D0:CC:A9:FE:11:25:33:AE:FD:81
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B364E442D4FF11EFBC2B0AA9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.232.0/21
Signature Algorithm: sha256WithRSAEncryption
84:80:ad:83:2e:e0:58:15:80:a5:4b:54:62:d9:8b:ce:e3:46:
05:55:94:00:1a:d1:06:bb:d5:5e:0d:eb:69:f9:62:d9:03:d7:
cb:00:98:f0:69:b8:34:43:2a:99:66:ad:ee:e7:7d:bc:92:2c:
00:8d:b5:51:1f:a6:26:fd:a1:72:9b:1c:1d:ed:bb:19:42:83:
c9:58:f4:b8:3f:29:09:2a:ee:5e:70:a4:d2:9e:2c:c6:c8:8d:
d6:87:09:20:14:e9:67:ec:35:dd:7e:b4:ad:dc:e6:e1:e9:1f:
54:10:55:12:5a:26:51:56:7c:ad:73:17:f4:f4:76:ab:0a:9a:
f2:05:69:7e:a5:33:70:4e:0e:43:f7:b9:0d:e8:02:76:20:d2:
80:92:25:4c:07:4c:67:db:83:65:96:ea:33:42:1b:4c:b1:11:
82:40:78:de:e7:4b:1c:aa:98:d9:3a:b4:4c:4b:58:9e:e1:2d:
b6:78:e0:32:c9:46:78:c2:d1:bc:42:16:c5:cb:d8:18:5c:fa:
a9:4c:3a:d4:81:88:35:3b:fe:4b:44:cf:1d:a9:fb:34:cd:55:
12:42:f3:0c:a1:79:bd:08:f3:6e:7c:6f:1f:dd:c0:a0:35:3c:
08:04:dc:16:79:63:53:e7:30:25:0b:81:07:1b:0c:c8:3d:04:
03:1a:61:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:48:36 2025 by rpki-client