Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0EF3CA6DA5A11EF945C359C762E951A.roa
File: C0EF3CA6DA5A11EF945C359C762E951A.roa (raw, json)
Hash identifier: o32QgkzxC+3+Pnw5VB4C04B1jaIx5BvRDQ0ZW2aD5zk=
Subject key identifier: 53:FE:3D:4B:29:5E:8F:F3:92:31:4E:8D:B5:FB:D3:AB:75:C8:A7:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0147C5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0EF3CA6DA5A11EF945C359C762E951A.roa
Signing time: Fri 24 Jan 2025 13:54:39 +0000
ROA not before: Fri 24 Jan 2025 13:54:35 +0000
ROA not after: Sat 01 Mar 2025 13:54:35 +0000
asID: 44559
IP address blocks: 154.81.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83909 (0x147c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 13:54:35 2025 GMT
Not After : Mar 1 13:54:35 2025 GMT
Subject: CN=67939b9f-2fa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b3:f5:7c:6a:40:4f:3d:d9:91:2a:b0:a6:a3:
e8:a6:94:c4:19:87:e7:50:0c:5d:21:bf:9d:8b:02:
65:2a:70:e7:28:02:37:cc:bf:51:59:20:e7:c7:67:
49:ed:eb:67:c1:ea:3b:f9:98:84:d0:b7:67:76:aa:
95:4a:da:49:3f:9d:5b:13:f8:4a:63:d4:77:c3:bf:
d4:2a:7c:0d:e0:ba:29:6c:2c:bd:2a:c3:11:8b:39:
34:d7:e6:7c:4f:93:6e:c3:bd:74:99:06:e3:9e:16:
a4:90:ce:75:6a:38:ba:be:aa:71:99:6c:bb:3d:e7:
e7:21:6a:3f:5d:d3:45:74:1a:ee:7b:f3:d4:b2:4b:
17:23:25:96:dc:d5:38:0a:1d:12:20:01:dc:03:99:
77:44:dc:0d:a9:7d:a2:1c:f0:97:64:1c:cd:b4:57:
9d:23:a1:c5:ae:9e:aa:17:7e:82:8a:ff:2f:cc:a7:
4b:48:20:e9:b6:32:1d:53:02:d0:7d:46:79:d8:87:
67:b7:4b:39:76:2d:40:f3:5d:cb:0d:c1:d4:fc:ae:
c2:2f:bc:5b:a0:4d:38:e7:26:07:a5:b4:4e:b0:d6:
23:5b:7a:73:94:3a:19:27:63:c9:5e:fb:ab:61:9b:
7d:1d:67:fa:dd:a9:5b:9f:bb:ce:21:ac:18:30:07:
e5:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FE:3D:4B:29:5E:8F:F3:92:31:4E:8D:B5:FB:D3:AB:75:C8:A7:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C0EF3CA6DA5A11EF945C359C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.195.0/24
Signature Algorithm: sha256WithRSAEncryption
34:03:a6:eb:c2:52:2e:5a:c1:66:ff:8b:9c:ba:9e:ac:ac:9d:
53:5b:fd:1e:bb:bc:61:4e:7d:4f:f9:69:b3:f8:f7:5c:c1:82:
e1:1d:34:66:8f:a8:23:96:43:d0:7a:ce:bc:b3:ff:77:94:27:
5e:a9:01:af:3f:a3:f7:32:d5:a5:b0:eb:3b:39:9c:e0:32:d9:
b5:34:ea:ab:c8:26:2f:5a:a6:85:3c:a1:df:c3:65:3b:97:cc:
d5:5d:2f:82:07:ce:9f:16:36:70:ea:cb:61:51:ba:4d:e1:81:
25:6e:f0:c1:5e:af:cf:3d:3d:d6:c6:a8:17:f3:2b:ad:7a:ee:
5c:fd:3e:91:62:35:f2:f0:19:34:df:2f:71:65:b6:4d:96:3c:
ad:77:1d:1c:84:f0:e5:2f:44:8f:ad:c0:47:b9:6f:f9:7d:b5:
f6:d3:4a:7b:20:6b:94:54:51:1a:ec:e7:33:26:bc:b4:47:97:
0c:84:3e:4b:80:6a:ae:f9:cf:38:33:43:cd:4e:43:62:06:fc:
a2:7a:04:7d:fa:b0:15:51:b7:46:0e:fe:02:5a:fc:00:73:aa:
c1:00:87:0d:68:a1:af:97:ec:cb:06:ac:ac:4d:56:5c:8c:8e:
8e:de:41:bd:c0:66:71:e0:ef:9f:f8:44:1d:38:9a:8a:4e:b2:
e1:60:2b:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 09:58:46 2025 by rpki-client