Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B41F63A2DE2911EF9ABB4B56762E951A.roa
File: B41F63A2DE2911EF9ABB4B56762E951A.roa (raw, json)
Hash identifier: l2RS373itUQkhxdnmCoCvsI4NRYEYICdp862cT5D45Y=
Subject key identifier: 8E:C3:78:4E:55:62:E0:9C:37:C9:D6:A0:E6:EB:81:10:20:3A:E1:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D8E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B41F63A2DE2911EF9ABB4B56762E951A.roa
Signing time: Wed 29 Jan 2025 10:13:37 +0000
ROA not before: Wed 29 Jan 2025 10:13:32 +0000
ROA not after: Wed 05 Mar 2025 10:13:32 +0000
asID: 203020
IP address blocks: 154.207.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85390 (0x14d8e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 10:13:32 2025 GMT
Not After : Mar 5 10:13:32 2025 GMT
Subject: CN=6799ff51-9a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:4a:01:80:50:d3:cd:5d:35:70:65:a9:e9:db:
07:40:ba:79:10:35:2d:08:38:d7:6a:1e:2f:9b:fd:
ea:8d:0b:a7:40:90:07:ee:e5:0e:f5:05:57:30:55:
02:0b:a3:91:29:cf:6b:b0:8a:73:85:5a:b0:d7:23:
2c:e5:40:48:95:80:d7:3d:a0:a5:07:d3:81:cf:08:
05:8a:f5:3c:fe:4d:12:6d:cd:dd:10:97:2c:72:9e:
90:3f:66:4e:f8:64:a2:0f:3e:17:8d:1a:90:a7:49:
b0:d6:37:8d:9d:f6:ab:40:7d:6e:bd:5e:32:89:45:
b5:42:ef:cd:55:9e:fa:3c:29:aa:a4:41:8a:98:99:
4b:fd:68:b2:38:85:92:55:c0:1e:dc:59:6a:98:79:
58:f2:2c:97:05:c1:c4:10:39:30:30:dd:3f:39:d9:
28:91:4d:ba:a0:d2:35:27:9e:dd:c2:c8:b6:69:a3:
d2:71:1c:6e:1d:d5:51:b2:9c:db:39:51:2a:7b:36:
56:25:68:c7:06:cb:32:87:df:2a:c8:07:ff:e8:a7:
29:16:dc:56:f0:2f:3d:04:1d:27:bd:93:62:35:92:
ad:4f:7b:e1:ce:63:12:2b:3b:43:2d:92:9e:28:b3:
f3:dd:58:f3:48:4b:5f:9c:72:ed:0e:4a:fc:35:47:
7d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:C3:78:4E:55:62:E0:9C:37:C9:D6:A0:E6:EB:81:10:20:3A:E1:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B41F63A2DE2911EF9ABB4B56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.124.0/23
Signature Algorithm: sha256WithRSAEncryption
af:ee:7f:d9:6c:d4:76:4e:1f:11:5f:70:88:e4:74:39:e6:ca:
92:5c:66:67:7d:bf:22:4c:52:2b:42:c3:97:e8:e1:09:fa:42:
49:23:f2:64:bc:6f:67:1c:0c:7a:c0:4d:46:1a:59:67:d5:a4:
ea:58:81:6a:15:82:20:b7:c4:a9:8a:62:c1:d5:c8:2d:07:a1:
a3:e6:14:b6:02:b7:9a:d0:0a:47:28:0e:1b:b3:2f:a3:85:32:
21:eb:bb:00:74:4c:ec:1b:1b:b1:0e:9b:22:24:41:b4:85:de:
ec:82:cd:f5:01:21:9d:74:8a:24:61:fc:a0:fc:e0:43:08:f8:
cf:87:cf:9b:2c:61:ed:7c:57:2d:75:cc:b0:8a:21:8d:f7:bf:
70:55:a2:3b:9e:6d:4f:79:52:3b:dd:eb:07:f2:f1:17:5a:76:
4c:b6:91:c3:16:2b:d9:97:85:14:88:98:19:f5:d8:57:a3:98:
ee:46:a2:f1:37:02:6b:72:03:5c:1e:db:5c:01:7a:fd:09:cf:
c1:c6:96:02:6f:b5:fb:10:f2:68:ce:b6:bb:37:e9:e1:9c:1f:
47:49:93:cb:51:c1:93:11:47:89:d3:4f:47:ce:fe:95:05:25:
9e:fe:4d:5b:24:7b:ec:22:f5:9c:21:9b:3c:85:8c:ee:28:d9:
d3:e0:94:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 21:53:03 2025 by rpki-client