Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0767062CBE211EF966C7E99762E951A.roa
File: D0767062CBE211EF966C7E99762E951A.roa (raw, json)
Hash identifier: gsmduEoc6uI6wWeQmFduu8B+JnHzHZB47+GthWERzMs=
Subject key identifier: 9C:19:EE:77:26:7B:84:0F:B8:73:98:D7:44:19:91:00:2A:F1:AA:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013571
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0767062CBE211EF966C7E99762E951A.roa
Signing time: Mon 06 Jan 2025 04:00:49 +0000
ROA not before: Mon 06 Jan 2025 04:00:45 +0000
ROA not after: Sun 09 Feb 2025 04:00:45 +0000
asID: 203020
IP address blocks: 154.217.179.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79217 (0x13571)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 6 04:00:45 2025 GMT
Not After : Feb 9 04:00:45 2025 GMT
Subject: CN=677b5571-be6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:38:6b:64:0b:e0:d2:4c:b7:33:cc:54:ec:28:
d0:56:9f:37:f8:5a:76:9e:a2:2a:48:bd:7b:55:3f:
12:90:3b:a3:75:76:19:3d:ca:db:ce:7b:7d:46:4f:
59:1c:b0:b8:20:f0:3a:d4:98:51:b9:ce:9f:3d:d3:
82:dc:15:88:4c:99:72:7e:bc:46:de:9e:32:76:c3:
dc:a9:6b:ff:9e:94:29:e8:ab:0e:eb:c3:4f:e3:81:
c4:07:f8:a3:3f:e4:c2:7d:21:6a:48:f9:6c:e6:79:
e8:49:cd:66:85:c4:1a:02:79:18:b2:57:de:22:36:
66:0f:d8:60:7b:9f:f6:85:5f:fe:98:7c:e5:a5:51:
35:ad:8c:fd:91:62:b0:37:b7:fb:d3:f1:0d:9b:1f:
ca:fb:1d:aa:6d:dc:28:c4:ff:9d:be:c5:cd:fd:d0:
11:55:75:7a:b9:e8:c7:81:d9:b7:f0:e5:bd:3b:c4:
5c:d4:f6:23:92:fb:f4:6d:44:ef:a1:6c:9f:73:a8:
a7:ec:e2:30:f6:5c:d5:92:49:71:c0:16:88:63:ca:
4d:e1:ab:dd:59:d7:4a:87:fc:ad:08:93:f2:1e:0f:
2b:1b:f4:ea:56:d1:a1:b1:93:50:d3:52:ae:ff:34:
1c:1d:9f:b8:52:4d:24:2f:7f:67:a1:ed:42:e3:d7:
87:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:19:EE:77:26:7B:84:0F:B8:73:98:D7:44:19:91:00:2A:F1:AA:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0767062CBE211EF966C7E99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.179.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ff:50:a3:3e:12:0e:ee:1f:3b:99:4e:31:a5:c7:61:33:e7:
8b:a8:de:f4:f7:98:95:6e:b8:a9:b8:93:d1:36:92:b8:d7:9e:
94:78:92:b7:c3:0f:62:f3:b2:13:19:13:d6:67:e0:c0:a6:56:
e6:7f:10:f3:b1:6e:9f:21:b0:7d:49:85:0f:da:01:90:fe:6a:
9f:10:dc:6c:53:ed:68:3f:3b:1c:48:93:5b:f2:38:a7:ec:b1:
69:fc:46:37:8e:9e:a5:a2:d8:5b:a5:13:c8:88:cd:9d:39:47:
40:da:6f:62:58:9b:2f:6b:fe:52:8c:08:23:a2:01:b8:7f:d3:
81:17:d4:87:29:8e:a3:06:1e:54:83:fc:b9:dd:58:74:06:25:
7c:d4:d5:73:21:9d:31:2c:1e:b3:94:83:02:e8:1c:eb:bd:7d:
49:31:3f:3f:e2:b6:b9:69:02:95:71:5d:fb:a9:bc:b2:c9:a0:
45:f2:64:89:85:24:4e:76:bb:18:9b:06:e4:21:35:e3:0d:0c:
bc:1d:a1:eb:03:b6:20:41:6f:10:1a:88:2b:da:ed:d4:84:a6:
c1:5d:2c:28:87:44:e9:4b:99:53:69:d7:7e:74:89:df:27:ce:
0b:05:9d:19:38:48:a4:8b:fd:4e:78:b9:3d:ef:4c:a6:41:fc:
3a:be:e7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 21:38:29 2025 by rpki-client