Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4C7F298DA0911EFB26E9F7C762E951A.roa
File: B4C7F298DA0911EFB26E9F7C762E951A.roa (raw, json)
Hash identifier: BH7UQP+asLPpgJA8ZiJC7xlVxNo1w+W6sJVQDu7H4IY=
Subject key identifier: 9F:90:23:14:CA:97:43:63:BA:BE:92:5A:D5:61:F4:5A:BF:66:3E:42
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0143BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4C7F298DA0911EFB26E9F7C762E951A.roa
Signing time: Fri 24 Jan 2025 04:14:30 +0000
ROA not before: Fri 24 Jan 2025 04:14:26 +0000
ROA not after: Sat 01 Mar 2025 04:14:26 +0000
asID: 44559
IP address blocks: 154.81.52.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82874 (0x143ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 04:14:26 2025 GMT
Not After : Mar 1 04:14:26 2025 GMT
Subject: CN=679313a5-2fc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1e:f5:40:17:2d:32:d7:7c:ee:47:ac:20:34:
d2:1f:af:0a:85:7c:4d:8d:6c:80:4d:e6:3e:b9:e8:
ce:c6:5f:e3:b9:50:2a:f7:5c:6d:93:02:66:27:0a:
ae:38:63:e5:a2:0a:9a:55:2a:c6:26:c1:f2:39:2c:
57:35:ab:e4:be:d4:e2:1f:f8:98:e1:0f:00:16:44:
41:39:d3:3c:e9:35:96:dd:52:d8:2f:47:c4:8b:f1:
a4:a1:ef:3d:d7:24:26:6d:d9:b0:49:5f:b0:57:6a:
12:f5:63:f9:31:f7:52:1e:08:3f:2b:7a:fc:a3:9c:
02:b1:85:55:2b:11:74:3b:a9:35:77:f1:4b:c7:84:
29:82:3f:ec:cc:41:38:99:69:65:c4:f8:b1:70:eb:
fd:94:89:9c:4f:37:d4:18:a5:f4:11:e6:f3:ff:c8:
df:85:2b:60:44:28:b1:62:70:8a:6d:a0:47:2d:96:
1c:bc:7d:46:46:2e:67:b4:ef:94:bb:0a:96:bd:ad:
e4:7d:21:53:9b:3d:5a:ca:ef:7b:8f:60:c7:ff:21:
3f:51:2e:58:c0:a9:ca:61:a1:8a:2c:0b:ee:9f:8d:
d3:f9:93:b1:2e:c5:68:ce:66:5d:51:c6:30:de:42:
2a:a8:dd:ca:58:72:bb:2f:47:4a:bd:6b:8c:79:9b:
39:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:90:23:14:CA:97:43:63:BA:BE:92:5A:D5:61:F4:5A:BF:66:3E:42
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B4C7F298DA0911EFB26E9F7C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.52.0/24
Signature Algorithm: sha256WithRSAEncryption
72:94:b2:d7:cc:db:10:77:b0:a0:fb:ae:f2:9a:95:c5:18:db:
dd:62:05:fe:42:2e:9b:f5:ba:43:82:8d:6e:7a:91:7e:ed:8e:
f2:e2:87:01:6e:e4:bf:4a:ea:a8:2c:9b:8f:61:32:e2:b5:ab:
80:0e:71:38:8d:0c:87:96:d4:c0:8e:44:fa:6e:d5:57:22:3f:
09:96:6f:ef:c5:a7:fb:b0:c3:c2:df:02:71:73:ad:82:a6:60:
ed:ba:a8:1e:15:da:0f:d9:02:e3:1c:1f:11:7e:28:74:e1:bd:
c6:e8:a4:c4:5d:20:c6:52:ca:70:86:08:8a:62:e1:8e:a6:da:
e7:bf:64:f8:cc:34:ad:00:79:5d:26:49:05:f4:70:90:0d:b1:
9f:67:e3:70:65:16:8b:21:78:64:f9:12:98:63:17:45:ed:b4:
86:8a:d4:ce:44:3f:73:4f:ad:ba:d1:1a:c2:6c:cc:4d:59:91:
35:dc:54:e3:58:b8:8a:2a:7d:f8:74:bf:5f:5b:6b:56:c0:9f:
c9:36:4c:28:d5:8e:27:63:50:6d:5d:96:2b:2e:98:05:6c:44:
c8:81:29:c7:50:34:22:15:b4:69:28:05:25:66:ce:1d:e2:13:
fb:e7:cb:08:ef:ef:d0:e4:b5:c0:39:53:eb:27:65:34:17:6c:
ed:70:53:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:00:38 2025 by rpki-client