Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC3AF9D8CD9011EFA9E8E64F762E951A.roa
File: BC3AF9D8CD9011EFA9E8E64F762E951A.roa (raw, json)
Hash identifier: w6/RfZrrS4hBAw42i++3w+XxXV9H1qZk0MUVvysgP9g=
Subject key identifier: 80:AC:75:40:00:37:EB:C7:75:48:60:3E:14:61:15:E2:F1:E8:AF:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013690
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC3AF9D8CD9011EFA9E8E64F762E951A.roa
Signing time: Wed 08 Jan 2025 07:18:19 +0000
ROA not before: Wed 08 Jan 2025 07:18:15 +0000
ROA not after: Tue 11 Feb 2025 07:18:15 +0000
asID: 395793
IP address blocks: 154.202.107.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79504 (0x13690)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 8 07:18:15 2025 GMT
Not After : Feb 11 07:18:15 2025 GMT
Subject: CN=677e26bb-884d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b6:ec:d8:25:64:b1:a4:c2:a3:6f:df:2b:44:
6a:de:69:6b:90:2d:75:86:c1:c2:db:51:d9:2a:1f:
bd:0c:7f:14:87:ca:e0:f5:14:31:eb:b7:10:63:8b:
7e:ac:ba:d0:d4:49:1c:dc:6a:4e:ad:40:51:5e:97:
5f:47:9a:a8:3f:56:2c:fc:b8:66:7b:90:96:18:9a:
b9:f8:0a:d3:4d:70:a2:87:f0:a0:cf:93:74:14:c1:
8c:0f:82:fc:1a:f6:6e:d0:4f:d2:26:94:6c:10:25:
ed:08:d3:27:f1:53:3e:39:69:9f:68:f2:47:cd:2f:
bb:36:e4:4b:6e:c9:10:85:18:c8:88:f9:2b:53:a2:
9a:0e:68:5f:54:73:ca:10:59:11:d2:31:9c:51:96:
c2:de:0f:5a:d9:32:79:b7:4e:3e:2b:65:9f:45:17:
23:eb:e8:72:ef:77:60:c4:34:87:38:f4:f5:eb:40:
6f:71:44:6e:5f:ec:94:5b:bd:f9:1a:55:ca:7d:33:
53:27:d7:ca:97:d2:55:61:dd:8a:7d:61:51:1a:01:
e6:e5:16:ad:b9:c8:c5:60:dd:cf:40:66:eb:3c:f6:
6a:7d:5e:a8:d7:68:a0:c5:81:14:d8:17:a7:e5:5d:
27:22:3f:02:99:53:9f:44:bf:b1:4d:aa:b1:1b:dc:
88:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:AC:75:40:00:37:EB:C7:75:48:60:3E:14:61:15:E2:F1:E8:AF:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BC3AF9D8CD9011EFA9E8E64F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.107.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:c2:e7:12:e8:b2:dd:b5:20:e4:0c:2c:43:b9:e6:6a:a9:fc:
ae:3a:88:38:cb:d6:ab:5d:98:1f:8a:f9:71:2c:bf:85:0e:a1:
ad:fc:01:8a:fc:63:76:90:a6:01:b5:ba:8c:f3:39:59:e3:54:
1e:ed:97:ff:a7:85:51:0b:a3:bd:6a:37:91:12:f5:3e:0b:39:
e6:c3:24:70:24:b0:b7:97:41:1b:47:76:7f:e2:8b:c0:81:e2:
22:ef:f2:f0:98:f4:62:77:cb:37:c7:b5:63:65:38:62:e0:f9:
b4:b2:a1:0e:4e:f1:7e:c4:39:0e:d7:e1:a7:4f:ac:3f:22:31:
f8:c4:56:60:ca:1f:d1:0d:25:ab:8b:d3:7f:fb:b1:d2:ff:84:
7d:ff:37:ad:f4:7d:06:b2:39:79:37:07:05:59:bc:af:4d:9f:
20:fb:3d:f7:db:8e:35:59:aa:37:44:10:fc:29:cc:da:d1:60:
66:10:f6:c5:76:95:70:71:01:f7:c2:2a:53:ba:f2:b3:44:00:
c4:92:a5:c4:21:dc:d2:39:66:6a:60:e1:4e:c5:ed:72:0f:d5:
31:82:1c:03:eb:9e:14:77:71:1b:fd:17:8c:f4:50:9e:28:fc:
b5:3d:e7:46:91:3b:e2:67:17:f4:70:b6:0c:4f:88:3d:95:78:
24:d5:a3:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:16:00 2025 by rpki-client