Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2A7CAEED9C411EF8B904A9D762E951A.roa
File: D2A7CAEED9C411EF8B904A9D762E951A.roa (raw, json)
Hash identifier: NR1ziUNK8qUDWBT2/C765cUytuy4AE9gQRCDJRTSmU8=
Subject key identifier: F2:83:64:03:1C:C5:DF:2D:3A:47:C4:0A:FA:97:95:AE:2C:31:FC:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142B6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2A7CAEED9C411EF8B904A9D762E951A.roa
Signing time: Thu 23 Jan 2025 20:01:24 +0000
ROA not before: Fri 24 Jan 2025 20:01:20 +0000
ROA not after: Fri 28 Feb 2025 20:01:20 +0000
asID: 62240
IP address blocks: 154.196.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82614 (0x142b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 20:01:20 2025 GMT
Not After : Feb 28 20:01:20 2025 GMT
Subject: CN=6792a014-3ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b5:dd:90:be:8a:f3:43:86:c1:51:36:b0:39:
b9:0b:08:3a:4a:15:fe:f9:0a:94:65:a2:84:14:d7:
d8:74:9c:4b:5a:ab:a7:2e:56:1b:20:94:1a:71:04:
58:c9:a8:8c:b0:69:06:b3:05:f9:6a:c4:1c:db:a6:
56:b8:16:b6:05:ad:16:37:89:9f:a3:e3:7e:fb:30:
fd:da:26:90:f2:45:cb:bd:74:85:73:c9:99:3f:6f:
b7:1d:5b:ee:1c:ee:bc:93:95:f5:f4:18:05:90:6b:
19:dc:39:94:27:a9:39:09:bc:32:d0:5f:13:8a:67:
db:80:59:a1:f2:06:02:1c:68:66:da:f0:1d:b0:f3:
4b:4c:66:87:1e:df:a2:f2:2b:51:ca:b3:40:ad:ad:
a6:87:e9:ea:ad:7f:3e:3e:da:8e:81:6d:da:71:82:
4e:85:28:fe:86:d8:dd:ae:14:80:83:c0:02:b2:8c:
20:f1:1c:3e:1a:4d:8b:50:e7:86:38:b0:4d:c4:5a:
1f:6a:06:b2:d0:14:84:cf:da:b8:8e:47:d2:84:5c:
54:08:ce:3e:8c:0b:35:90:5f:b7:b4:06:00:3b:f5:
b6:fc:43:79:78:28:44:38:64:e1:d5:22:5a:e6:1e:
cf:b4:7f:50:41:af:a9:6f:f3:9a:b3:db:67:cb:ca:
02:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:83:64:03:1C:C5:DF:2D:3A:47:C4:0A:FA:97:95:AE:2C:31:FC:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D2A7CAEED9C411EF8B904A9D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.39.0/24
Signature Algorithm: sha256WithRSAEncryption
21:aa:e1:84:55:85:7c:3d:b8:c8:cf:f7:de:4f:48:47:58:a6:
50:27:af:3d:1a:9f:f0:7b:08:4f:bd:18:12:fc:f9:aa:fa:a1:
42:68:1a:c2:b1:a7:45:ad:71:8f:60:33:76:ae:16:13:56:37:
4f:15:39:05:a1:58:d6:d1:99:55:43:cd:86:07:fd:85:fa:dc:
06:b8:99:34:ee:bb:dd:90:17:0f:d2:28:b0:44:29:3d:7c:b8:
25:12:39:18:f8:c6:49:d1:d1:79:0a:29:0a:ef:a3:ab:a1:2f:
ce:61:06:3e:b8:83:7c:0e:b3:b2:c0:ac:8e:59:9e:39:7e:2e:
df:bc:44:cc:1b:e0:92:11:77:7c:47:a0:6d:fc:b7:1f:7f:51:
43:c2:de:f3:ef:b7:e8:33:d5:e1:c9:8b:b9:7e:c8:c5:45:da:
66:2a:d0:d2:83:ae:36:f4:be:ed:29:1d:7b:93:10:0f:56:87:
ab:a2:ae:16:2d:0a:fd:85:5c:d5:52:a8:15:ba:a9:ee:af:23:
12:bc:29:98:d3:98:3a:90:39:75:25:08:1b:21:8c:d0:23:02:
b7:37:9d:a2:fa:d8:a3:4c:ca:d2:51:f1:46:1c:c0:98:05:53:
a3:e6:17:7d:48:3e:34:2f:c1:b2:95:bd:f0:86:70:db:95:b9:
25:34:4f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:35:18 2025 by rpki-client