Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1586AFEDD7511EFBDC60598762E951A.roa
File: D1586AFEDD7511EFBDC60598762E951A.roa (raw, json)
Hash identifier: actby1e25y5Q3KlzeySI527K/DeuphsVqxIIIBx3o2g=
Subject key identifier: 04:93:78:1C:D2:EF:68:01:DB:FD:8F:18:29:CE:07:C3:18:44:26:F7
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D18
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1586AFEDD7511EFBDC60598762E951A.roa
Signing time: Tue 28 Jan 2025 12:45:57 +0000
ROA not before: Tue 28 Jan 2025 12:45:53 +0000
ROA not after: Tue 25 Feb 2025 12:45:53 +0000
asID: 5065
IP address blocks: 154.206.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85272 (0x14d18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 12:45:53 2025 GMT
Not After : Feb 25 12:45:53 2025 GMT
Subject: CN=6798d184-ad56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:5e:83:49:2f:06:60:bd:dc:7f:d7:b3:0f:ec:
1e:6e:ff:89:0b:a3:c1:2e:ec:b4:14:79:7d:90:80:
44:6a:ba:04:b7:0b:96:b1:51:2c:a5:c4:3c:ff:b6:
c8:45:2b:52:bb:70:51:0b:b0:23:b6:e5:eb:f7:45:
d8:f9:60:0f:7f:77:47:69:0e:5a:64:c1:8a:6b:9a:
84:ea:3d:d6:9e:08:a4:f3:10:6a:78:ee:f7:16:7a:
16:93:c1:d3:13:9c:11:2a:9c:e6:cf:16:e5:7a:86:
c4:e2:7c:66:31:54:11:96:e7:2b:8b:1b:40:3d:c6:
7a:0a:0a:75:c1:e7:a3:63:87:5b:d7:80:20:a3:0c:
61:f6:94:64:6b:c0:51:ae:b3:5e:25:14:84:fb:13:
91:9b:42:f4:6a:c0:06:5b:32:e2:b9:2c:96:ca:33:
84:ac:bd:65:c9:f8:33:3a:fa:41:4e:4e:10:49:6a:
99:50:c2:1d:93:91:af:96:c0:43:c3:38:77:74:34:
8e:9f:6f:e2:8e:e5:cf:ed:93:7c:86:f7:db:2a:5b:
33:c1:c8:1c:55:25:f4:20:6b:4a:06:1e:5a:90:b1:
a8:65:9d:72:7f:b2:bd:d3:b8:b7:d1:ec:5f:41:b3:
3d:1a:a5:c6:64:8f:2a:90:f7:e3:41:10:df:de:73:
9f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:93:78:1C:D2:EF:68:01:DB:FD:8F:18:29:CE:07:C3:18:44:26:F7
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D1586AFEDD7511EFBDC60598762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.41.0/24
Signature Algorithm: sha256WithRSAEncryption
83:f3:cd:ff:40:f3:f9:c4:e8:71:b9:1f:dd:73:6b:6b:24:ed:
a2:74:b4:dd:eb:d5:62:aa:e4:43:f0:f1:2c:c3:a3:5d:6a:61:
de:c5:8e:23:e6:f0:ec:7c:84:9c:d5:d2:c6:5e:16:ff:84:e7:
a5:2f:51:1b:22:cb:5a:b5:27:b3:9c:d7:a5:43:b7:d8:36:22:
50:b8:69:c0:55:e5:40:99:01:c9:dd:86:71:32:bf:28:b1:a1:
00:a0:cf:f8:2c:4f:0d:c2:1c:8f:96:0f:71:ec:82:d8:af:3b:
4d:99:53:b4:fc:58:ab:de:6e:0c:30:e2:9b:72:6d:4d:dc:e1:
9f:e0:e8:c9:b3:cd:57:ba:d3:dc:fc:ec:35:7b:49:f6:b9:ce:
d1:88:e1:38:91:10:13:43:51:bb:2d:04:6c:f9:59:ed:cf:94:
17:e5:31:fb:e5:e8:23:ef:e5:3e:03:b4:47:75:c6:1b:01:82:
b2:a8:00:aa:e0:0d:f8:46:7f:cb:ac:b3:4b:72:f4:a6:00:1f:
3c:ea:66:51:a6:82:ad:38:26:b8:41:ad:68:1d:7d:d8:ab:99:
bf:1a:0e:0a:54:c5:52:58:78:d9:55:f2:dd:2b:06:52:c0:a3:
0b:b7:20:23:71:d6:5e:e5:9c:e6:0a:91:7a:3b:61:7b:79:6f:
9f:38:8d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:18:42 2025 by rpki-client