Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1B8A1B2C2A511EFB918DD61762E951A.roa
File: C1B8A1B2C2A511EFB918DD61762E951A.roa (raw, json)
Hash identifier: yG94Fz0Y58k0fwCGs85Tf7/YTTxvFNy/e/Pi212oWRM=
Subject key identifier: 4A:9F:0A:4F:25:A7:4B:CB:77:C2:A0:7C:B6:47:86:C9:90:30:90:CE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01255C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1B8A1B2C2A511EFB918DD61762E951A.roa
Signing time: Wed 25 Dec 2024 09:51:05 +0000
ROA not before: Wed 25 Dec 2024 09:51:01 +0000
ROA not after: Sat 15 Feb 2025 09:51:01 +0000
asID: 138915
IP address blocks: 154.206.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75100 (0x1255c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 09:51:01 2024 GMT
Not After : Feb 15 09:51:01 2025 GMT
Subject: CN=676bd589-1384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:eb:64:ac:c1:4d:2f:e5:83:1a:82:60:d4:0c:
5c:b4:bf:98:dd:6b:3d:5e:5c:08:31:53:f8:42:58:
0b:45:e9:e7:e8:1a:e4:fd:55:c1:de:a3:50:31:a7:
08:c9:34:ff:8e:d1:25:a2:b7:1e:d4:10:1d:16:49:
ba:27:d3:ba:1d:42:0d:53:08:21:4b:c8:19:04:86:
a5:de:0e:d1:b6:e8:93:a8:71:17:9f:84:f3:27:40:
59:73:c1:0a:83:ce:c8:d7:c7:e8:59:38:c7:a8:df:
db:c7:fa:4d:99:91:a1:a9:a9:68:5e:7b:72:20:58:
df:19:fd:40:d0:52:75:0c:18:8e:9f:8d:d5:a4:22:
d3:10:af:92:b3:cb:0f:03:4b:c8:3d:a5:ef:fb:c1:
25:78:63:7d:83:5d:b5:ee:9c:7e:6f:17:7f:6f:3e:
54:70:82:aa:ea:9c:c3:1c:08:af:9d:8c:7a:31:11:
f6:f6:c4:1a:d1:d5:01:3b:44:60:84:c5:cf:71:d8:
f8:d5:25:20:72:06:7f:ca:0d:20:61:43:5a:a4:40:
c5:86:10:db:37:a6:31:41:3e:7a:68:47:70:0f:3f:
ed:22:2d:ea:9d:c9:23:d8:43:ab:25:b5:67:44:c4:
e1:04:4a:56:13:9b:15:5c:ce:5f:11:00:d3:5b:9a:
c4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:9F:0A:4F:25:A7:4B:CB:77:C2:A0:7C:B6:47:86:C9:90:30:90:CE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C1B8A1B2C2A511EFB918DD61762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.112.0/21
Signature Algorithm: sha256WithRSAEncryption
8d:ab:7a:3b:54:38:73:aa:76:97:b5:ba:c9:b6:a4:68:56:3c:
eb:6f:e1:9e:81:f5:9e:27:35:2b:c6:ba:fc:45:74:6b:ff:f7:
72:1e:dc:e6:b7:b0:90:4d:ba:e7:9d:37:03:09:44:a0:5c:58:
d3:da:c0:1b:01:b1:6b:d0:10:c7:a7:80:f0:06:63:21:bc:8c:
fd:e3:ff:79:33:12:29:06:99:77:4e:07:5b:6a:d4:5c:5b:16:
b2:78:6c:20:67:3b:9b:e8:3d:89:dc:7a:ed:f5:9d:12:8d:11:
68:04:7e:92:50:83:f1:4b:aa:b5:b4:37:1c:88:08:05:33:fa:
10:2c:6c:4a:43:a0:fc:cd:1e:ad:ba:5b:fe:6a:41:63:c4:9b:
4e:70:f0:b0:07:99:39:27:08:8f:5d:35:91:fc:42:7d:09:4e:
36:4c:ad:d6:37:c8:33:e7:4f:e9:4e:f2:e1:62:aa:4d:d9:30:
f8:de:3e:00:c1:8a:7b:bf:b6:3e:65:e9:0e:c0:db:12:cf:27:
66:34:fd:c8:63:bf:5c:ca:c7:38:4f:2f:7c:63:32:13:22:5f:
f5:d5:fd:bc:d3:af:da:d8:ae:69:d5:63:2a:ca:4c:7d:53:12:
2b:c5:29:13:d4:1c:45:a9:0c:e4:47:47:be:73:19:22:05:e5:
bd:7f:ec:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:33:56 2025 by rpki-client