Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B75DD094DC8F11EF9B685985762E951A.roa
File: B75DD094DC8F11EF9B685985762E951A.roa (raw, json)
Hash identifier: RP9ZGu/MWUcHqp3LQB+et2LYg0mbYFwqVkpJZYYQQ78=
Subject key identifier: 9D:C7:66:0B:00:8F:6D:AB:FB:21:1D:C0:10:69:9E:4B:12:60:2A:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B7F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B75DD094DC8F11EF9B685985762E951A.roa
Signing time: Mon 27 Jan 2025 09:18:49 +0000
ROA not before: Mon 27 Jan 2025 09:18:45 +0000
ROA not after: Sat 08 Feb 2025 09:18:45 +0000
asID: 5065
IP address blocks: 154.83.225.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84863 (0x14b7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 09:18:45 2025 GMT
Not After : Feb 8 09:18:45 2025 GMT
Subject: CN=67974f79-72ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:82:b0:c7:0d:e9:15:c8:a8:3d:ed:bb:0b:74:
b9:be:4f:a6:83:76:0e:02:90:1e:07:6f:50:e1:66:
ec:3a:8e:f6:ed:91:25:1e:eb:ea:e2:ca:8c:5c:89:
31:85:42:63:c1:e7:2e:d4:1b:42:22:69:59:e3:9d:
68:4f:17:9e:21:9f:2c:76:ea:78:df:8b:3c:c7:42:
1b:2e:1a:ab:c3:74:28:d8:93:42:cf:cc:b8:bc:54:
fe:f9:3c:54:6f:df:f8:10:e4:70:ab:59:8c:53:6e:
97:42:97:ed:f3:fd:09:b1:4f:eb:bb:e9:11:f3:5e:
6f:67:64:14:48:ff:b8:f3:ec:8f:3c:50:b6:7b:47:
73:04:d1:0a:0c:a3:32:69:c8:70:2a:17:40:6c:05:
c3:f8:0d:80:f6:ff:bc:82:cc:6d:93:6e:8f:50:35:
ea:77:9e:8d:6b:fd:3a:bf:4b:4b:25:5f:b2:35:03:
71:29:44:b6:dc:62:f9:22:43:a3:89:be:70:d2:29:
71:c1:f6:dc:b2:cf:27:aa:7b:f3:dd:43:e6:14:6e:
c1:e4:38:f6:cf:e2:8b:10:90:d6:e1:0e:95:cb:e8:
37:82:27:16:0a:de:15:bc:ef:36:f4:8d:3f:b7:72:
92:5b:32:71:a5:4c:fc:cb:ac:0a:fc:20:88:db:34:
04:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C7:66:0B:00:8F:6D:AB:FB:21:1D:C0:10:69:9E:4B:12:60:2A:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B75DD094DC8F11EF9B685985762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.225.0/24
Signature Algorithm: sha256WithRSAEncryption
55:d7:de:3d:59:44:ff:3f:38:b7:29:d0:5d:24:8f:1a:5d:ab:
a2:13:0b:53:8d:1e:8e:96:39:d3:55:d6:36:c6:8e:0c:8b:33:
2c:f7:7e:ae:28:38:c0:12:81:ff:d2:31:fc:51:15:24:97:27:
f4:c1:48:1c:c4:b5:8d:05:51:8b:cc:ab:d0:59:f1:58:ca:1e:
19:00:c7:d9:5e:c5:09:e8:e8:8e:e9:4c:38:0e:a5:c0:90:c0:
fc:99:5a:9f:c3:24:5a:e0:33:4a:ee:7c:f9:ae:23:4d:c4:20:
ea:ec:97:71:d4:84:39:5d:3a:b6:7c:e3:6e:8c:ce:48:ab:73:
49:be:96:c0:0c:0c:bd:dc:e3:44:56:12:2a:af:2c:63:ea:3d:
35:be:fa:1a:78:a7:fe:15:d5:41:86:f3:3d:70:1d:61:ad:4b:
9c:b0:6d:3a:ed:30:6e:c7:c9:05:c3:43:fc:4c:fe:20:a0:b9:
73:13:86:3e:e3:d7:86:46:83:56:26:86:ef:59:41:59:19:65:
a3:86:dd:7f:f9:ff:c1:3b:fe:c2:4b:03:fd:c9:fc:6e:17:59:
64:7d:38:de:74:6d:ca:2d:58:34:2b:8e:10:16:bd:15:f2:a1:
8c:33:de:c0:da:2a:d1:34:2e:91:97:40:56:43:9e:16:48:fe:
92:1b:63:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:55:17 2025 by rpki-client