Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C70320E6D96D11EF85B9C85D762E951A.roa
File: C70320E6D96D11EF85B9C85D762E951A.roa (raw, json)
Hash identifier: d17t60riSY+EdvLjhZMFbR6FKMqWRvZWk1isSVGaN28=
Subject key identifier: BC:71:8B:0F:A4:83:71:7D:BE:CB:5C:DB:66:0C:4F:C5:30:C9:CC:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0140F4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C70320E6D96D11EF85B9C85D762E951A.roa
Signing time: Thu 23 Jan 2025 09:38:18 +0000
ROA not before: Thu 23 Jan 2025 09:38:15 +0000
ROA not after: Fri 28 Feb 2025 09:38:15 +0000
asID: 62240
IP address blocks: 154.194.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82164 (0x140f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 09:38:15 2025 GMT
Not After : Feb 28 09:38:15 2025 GMT
Subject: CN=67920e0a-b1dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:38:b6:7f:44:a6:29:83:70:4c:70:2b:c0:06:
8b:7f:8a:bc:9e:96:68:cb:d8:e1:22:4d:63:96:c7:
bd:c7:01:3c:e1:ab:57:70:63:c4:20:ab:d4:5f:e7:
97:ee:00:dd:f8:54:71:b5:d8:a8:e9:4f:67:c8:60:
58:35:bf:b3:4b:e9:fd:63:7a:22:88:b5:42:d2:0d:
6f:c3:0d:6a:a7:32:98:aa:35:46:15:7d:33:c0:60:
fd:7f:d4:bb:ca:45:7b:30:7b:de:52:2e:fa:57:2f:
24:47:2c:1a:00:ed:6c:c5:24:89:15:b5:4a:de:01:
b5:d5:76:c8:a2:d0:e6:41:33:7e:d4:e2:bf:b8:87:
b0:14:39:93:ee:fb:b6:c6:9c:ba:56:26:a9:35:25:
c8:1f:e1:98:e4:e9:0e:32:d9:4c:4c:a9:d7:9f:36:
63:e7:0b:fb:7e:d0:19:c9:a3:cf:10:b8:8c:71:27:
63:06:d6:8f:e7:d1:26:74:2c:45:83:7a:e0:e4:24:
da:3d:49:f3:7e:0c:86:1f:ae:b9:65:8d:16:eb:0e:
9f:31:5e:f8:da:8c:af:c9:32:c9:84:62:4d:b4:85:
0f:7a:45:99:0b:7a:03:eb:ae:99:dc:22:d1:1c:11:
e9:e0:e8:32:5e:b1:7d:a3:8b:1b:17:46:ed:a2:6f:
82:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:71:8B:0F:A4:83:71:7D:BE:CB:5C:DB:66:0C:4F:C5:30:C9:CC:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C70320E6D96D11EF85B9C85D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.116.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:15:11:77:34:21:6a:21:54:13:d1:2b:20:d9:9e:48:3d:72:
c1:ec:cd:da:6e:12:87:a4:17:ea:9c:90:1b:6e:75:0b:23:c4:
46:a7:a2:1f:60:58:02:d1:15:42:b1:2f:49:a0:a6:65:7a:08:
12:19:8c:30:0d:77:a6:a1:3a:be:6e:2c:20:79:5d:e6:70:81:
7c:87:dc:53:ff:3a:2e:a5:6f:1c:8d:f9:ac:99:be:d7:54:47:
2b:b6:eb:06:04:cb:f1:db:12:45:ac:a9:35:f1:1b:13:b4:d5:
44:25:dd:23:9e:5b:15:47:26:85:1d:c6:c4:fa:bc:bb:77:44:
c1:4e:d9:43:7b:a5:55:68:a6:30:de:3a:90:8f:f9:c1:a2:f5:
e5:c8:76:ae:66:e8:7e:5a:23:16:81:b6:dd:c4:81:35:10:2c:
e2:c0:35:95:2c:9e:9c:c8:ea:19:47:40:a8:4c:46:10:5c:89:
f1:09:ce:65:c9:d9:81:b2:49:4d:89:59:af:6a:70:00:60:27:
7e:d4:f4:0c:c3:f7:e4:84:71:5d:e9:e1:2a:ee:e4:04:5f:40:
bd:19:22:d2:7f:23:d5:aa:d7:5d:bc:21:03:6d:f6:57:6c:89:
d4:8a:19:ba:9a:b0:74:ea:f2:8c:b0:20:ea:4f:db:4e:5b:b3:
97:c4:99:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:02:03 2025 by rpki-client