Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1374CB2DCCF11EF986877AF762E951A.roa
File: D1374CB2DCCF11EF986877AF762E951A.roa (raw, json)
Hash identifier: wxkk2OwdW4BQ+CfDwCnXe8PqSZY5DSAF3cAuyjqtybk=
Subject key identifier: F5:5F:0D:02:EE:0B:75:F7:FF:A8:CC:70:68:91:17:AA:18:3B:30:08
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014C91
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1374CB2DCCF11EF986877AF762E951A.roa
Signing time: Mon 27 Jan 2025 16:57:40 +0000
ROA not before: Mon 27 Jan 2025 16:57:36 +0000
ROA not after: Wed 12 Feb 2025 16:57:36 +0000
asID: 135097
IP address blocks: 154.91.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85137 (0x14c91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 16:57:36 2025 GMT
Not After : Feb 12 16:57:36 2025 GMT
Subject: CN=6797bb04-a0f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5e:35:0f:57:82:7c:b8:58:b8:cf:c2:30:d5:
83:57:50:c0:60:04:08:03:c1:2c:99:c8:28:6f:27:
55:2f:ae:3b:9a:62:64:2c:32:27:d5:36:25:e9:81:
18:dd:64:51:94:fb:bb:09:1c:02:13:3e:49:dc:81:
fa:a9:e2:0c:85:1f:6b:60:1e:ed:11:07:62:9e:73:
34:04:47:8a:48:e3:0a:91:e9:e3:89:33:50:fc:50:
54:0f:2d:bc:67:51:f7:3e:7b:bc:4e:ba:e6:f9:35:
d8:92:89:01:9e:51:6b:3c:bb:b0:ca:f7:7a:25:6d:
41:dd:83:9e:f1:ac:26:b7:13:c9:ca:63:b0:ef:06:
7c:33:2f:8a:60:e8:7e:ef:db:9e:44:95:03:55:80:
2b:42:bd:b0:6e:b7:22:40:ee:a3:10:af:dd:e1:d1:
42:93:8d:ef:e5:29:b8:4a:4c:b6:0e:74:89:be:f5:
11:d5:9c:12:85:43:6f:2c:95:c0:2f:74:44:07:95:
c0:45:65:52:33:0d:15:33:0d:1c:b3:33:c0:36:d0:
9a:f2:84:d3:cf:1e:e2:b6:dc:24:6d:74:1d:c7:13:
f0:fe:9d:fd:79:76:d4:2a:29:b9:e6:8f:cb:a1:f9:
30:d1:bc:25:f6:84:3d:90:9a:4d:39:34:0e:57:fe:
d8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5F:0D:02:EE:0B:75:F7:FF:A8:CC:70:68:91:17:AA:18:3B:30:08
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1374CB2DCCF11EF986877AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.6.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:09:d9:c8:50:22:8d:eb:e6:5f:76:68:e8:6e:9f:94:47:0d:
9f:4e:42:f4:fb:16:50:98:3d:da:32:33:78:ab:e3:cf:6c:dd:
99:46:07:71:38:af:d4:fa:a8:96:93:b8:d4:49:85:75:46:14:
96:21:33:e6:e5:17:be:54:11:67:3c:66:51:37:6e:65:a7:e5:
af:36:b3:c4:78:7c:55:ef:b0:89:26:5e:a1:2a:0b:ac:6d:d6:
7a:13:2a:07:c2:4f:93:09:08:1c:d9:79:f8:ac:97:ef:36:be:
aa:74:89:37:5a:0c:0f:0c:6a:6e:8a:eb:a5:1d:dd:e8:81:05:
64:2b:b8:9c:0c:a4:2e:61:a0:5f:e9:94:bf:9d:51:37:c8:b7:
a1:e8:4b:d4:c5:c5:15:c8:7d:33:fd:55:6e:28:8a:2e:76:60:
eb:78:b2:97:03:f5:50:59:ae:1d:42:1d:a6:b9:b2:d4:87:64:
f5:c0:75:cd:86:f0:61:59:f9:45:c6:a0:96:94:3a:94:7c:28:
10:12:df:8b:67:95:98:63:0d:7d:93:6b:41:b2:18:80:ae:fe:
70:88:fa:52:99:63:06:7a:b4:cf:49:a7:fc:fc:18:91:7e:92:
37:9f:b4:bd:21:fd:1d:a1:d5:8a:48:e5:9c:2a:8f:c6:a7:b7:
d5:72:51:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:35:14 2025 by rpki-client