Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B72C7FAEBED911EF98D53153762E951A.roa
File: B72C7FAEBED911EF98D53153762E951A.roa (raw, json)
Hash identifier: uWqkgC2UwhZx9aSnILd2W2JYJAXau+61dkLdjNGgJjU=
Subject key identifier: 66:8E:2E:8F:89:ED:34:F0:95:41:F6:41:02:81:95:88:26:59:AE:27
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011D16
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B72C7FAEBED911EF98D53153762E951A.roa
Signing time: Fri 20 Dec 2024 13:52:56 +0000
ROA not before: Fri 20 Dec 2024 13:52:53 +0000
ROA not after: Sun 02 Feb 2025 13:52:53 +0000
asID: 48031
IP address blocks: 154.222.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72982 (0x11d16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 20 13:52:53 2024 GMT
Not After : Feb 2 13:52:53 2025 GMT
Subject: CN=676576b8-18fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:26:c2:cc:47:ed:89:20:aa:a0:6f:f5:5c:5b:
f7:23:8c:7a:b5:e0:b6:a0:d4:0a:9d:f8:ac:71:39:
cb:3a:b5:bb:08:21:63:c1:32:a3:ad:d5:53:4a:7a:
e2:fa:cf:35:f2:1f:59:6a:56:3a:28:63:96:99:f3:
34:2f:b2:0d:47:f6:bc:3d:5a:ec:7f:5b:b4:90:9b:
74:71:06:46:d9:97:bd:75:8b:b9:6f:5a:4d:7c:3a:
fb:b8:af:17:f6:a7:ec:ed:c5:6b:3e:0e:ce:c6:a2:
db:2f:bf:74:8d:1e:8c:0e:c7:1f:ec:a2:e1:05:0c:
b4:3b:21:22:df:14:8a:1c:31:ea:7a:8c:f2:c9:c9:
8e:57:55:f5:b0:f0:85:f3:0d:ce:82:66:58:c1:d6:
27:df:46:35:4e:4c:95:a6:ac:10:12:bd:9a:18:5d:
89:86:d8:8c:dc:7b:b8:8c:41:a9:f4:71:12:cb:1a:
2b:be:08:7a:cf:ef:87:f3:87:e5:da:e6:de:83:ef:
ad:c4:2c:09:5a:3d:a7:34:ca:72:59:5b:a8:e3:e2:
e2:e8:e2:ab:37:3c:a8:a6:6f:6d:4b:2f:a5:1e:fa:
f5:23:82:72:4a:c1:ec:66:d5:21:3f:ef:21:75:14:
44:9b:6f:1f:e8:ae:74:36:92:a2:44:4e:cb:6c:df:
0b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:8E:2E:8F:89:ED:34:F0:95:41:F6:41:02:81:95:88:26:59:AE:27
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B72C7FAEBED911EF98D53153762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.207.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:4f:0b:45:33:ef:64:d2:f7:b3:ac:63:83:ae:1a:4f:1d:18:
69:29:51:15:fb:9a:03:e2:4d:b0:e7:50:9c:d4:09:4d:61:de:
57:85:3d:8d:f4:f1:0f:b4:6c:55:07:ff:55:b5:8c:86:a2:ae:
64:80:af:eb:fb:1e:ca:30:da:98:46:a9:f3:ed:14:a1:ab:23:
2b:b3:67:92:49:6a:49:1c:ee:e0:07:8a:eb:bb:59:86:4f:de:
f2:c3:63:44:06:30:38:ad:6f:08:31:1e:bc:b6:16:39:e2:18:
c9:fb:9c:8e:0d:8f:4d:76:1e:a8:3f:88:81:a2:81:e8:ca:00:
de:6a:5c:6f:10:d3:99:47:58:3b:ba:37:84:2c:4a:23:aa:bb:
27:ca:5e:2d:b1:94:11:d0:0b:2c:f0:cf:1e:13:78:e0:eb:1c:
25:7c:51:18:b7:cf:cc:b2:90:b3:22:d3:96:d1:42:ce:8c:f2:
9c:82:3a:3a:20:2f:24:da:7c:3a:49:05:8b:d6:3c:96:4e:9e:
02:54:c3:ee:4c:2f:23:82:14:8c:69:e8:0d:ff:d4:a5:b1:6a:
7a:37:c2:22:72:4b:66:8e:dc:47:32:13:71:c8:f4:72:e0:51:
54:4e:f6:b9:30:0d:4f:ca:4d:5b:e8:d1:75:58:54:7d:47:3a:
ab:c0:fd:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:58:37 2025 by rpki-client