Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C47F13F6DA4A11EF861899AE762E951A.roa
File: C47F13F6DA4A11EF861899AE762E951A.roa (raw, json)
Hash identifier: Zhlz4kUXML8DdmooG9320VI6xGq0tJqPFxVkYGbS1TA=
Subject key identifier: 85:EB:EB:C2:C6:F5:4D:BD:2D:5B:00:A4:CC:BA:7A:27:61:45:BF:C6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014667
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C47F13F6DA4A11EF861899AE762E951A.roa
Signing time: Fri 24 Jan 2025 12:00:13 +0000
ROA not before: Fri 24 Jan 2025 12:00:09 +0000
ROA not after: Sat 08 Feb 2025 12:00:09 +0000
asID: 18229
IP address blocks: 154.210.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83559 (0x14667)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 12:00:09 2025 GMT
Not After : Feb 8 12:00:09 2025 GMT
Subject: CN=679380cd-5659
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:34:78:7d:eb:42:3d:f9:18:08:cc:32:fc:8e:
25:d5:1e:e7:a9:48:12:23:1d:1f:0e:78:2b:0b:1a:
ef:4c:23:0f:71:50:a8:71:25:5d:c8:51:b2:16:e2:
2f:2a:ad:17:6d:1f:20:f0:4f:a5:2a:c9:24:5d:97:
01:53:18:16:d9:60:96:6f:86:39:6f:ec:fa:17:22:
03:1a:fe:13:34:3c:96:d1:77:f0:63:4b:97:00:08:
27:bc:49:9f:35:f2:1c:f3:6d:9a:e6:bc:c0:27:51:
fb:fc:de:0c:e7:91:63:48:aa:17:b5:b9:fc:b6:87:
93:ad:16:2e:fb:33:ed:7e:13:31:b3:b1:7a:1c:5b:
d7:1d:38:21:ff:70:2a:d7:5d:a4:27:a5:d8:aa:26:
05:93:28:0b:74:e3:a4:00:51:c7:67:1c:bc:ce:cd:
cd:6a:3c:bf:64:86:2e:32:dc:7a:b0:c2:bf:af:6c:
72:af:20:16:e0:24:f3:6e:33:9f:c5:44:a1:2f:55:
91:78:38:be:ac:34:d9:8e:00:f7:4c:82:c4:78:5b:
8a:3c:75:3b:e5:65:40:a1:b3:ee:f7:44:d3:27:71:
89:be:38:43:d5:3a:7f:ba:8c:77:a1:fe:85:ad:f4:
83:a1:c5:98:16:16:9d:5e:28:06:6c:ec:37:bd:73:
61:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:EB:EB:C2:C6:F5:4D:BD:2D:5B:00:A4:CC:BA:7A:27:61:45:BF:C6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C47F13F6DA4A11EF861899AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.185.0/24
Signature Algorithm: sha256WithRSAEncryption
08:11:50:de:a1:0c:46:16:dc:de:a3:59:f5:dd:fa:28:32:ca:
0a:17:2d:49:b9:37:9d:0b:5a:a2:5c:12:32:81:10:0e:48:16:
d7:13:4b:40:71:1c:ae:3f:2d:0f:d7:60:54:a0:8e:b2:23:47:
70:21:d8:f6:bf:05:c6:c3:dc:68:57:bf:ca:bf:f2:8c:53:70:
8f:7b:93:0d:a4:4a:4c:49:a7:69:32:a3:93:21:c6:97:a1:04:
17:10:8a:6a:a1:58:0e:37:80:1f:97:1f:c8:05:eb:f4:c1:ce:
0e:f1:f6:bb:60:92:0c:6f:34:46:f7:e6:89:e8:c3:c8:21:56:
7d:04:b6:57:47:dc:db:ff:7c:d0:53:8c:fc:69:d4:eb:84:33:
38:ee:e1:59:a6:a0:8a:71:90:ad:79:97:68:fa:fb:5e:8c:51:
e1:5f:5b:55:55:a2:f7:9f:93:89:49:8a:ff:f4:a8:0f:06:82:
64:41:7f:53:d2:6b:45:03:bd:07:c9:c2:29:ac:1f:86:a0:0e:
45:fa:f8:3b:3f:f4:6f:f3:52:ea:aa:ad:f1:8b:e1:46:a0:20:
60:43:58:84:2a:55:b3:32:26:64:67:04:25:3a:3a:9e:6f:97:
0e:10:c6:a7:9d:3d:44:b5:c0:c0:bc:31:3f:e5:bf:fe:af:a2:
c1:7d:e4:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:42:54 2025 by rpki-client