Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D508279CDA4C11EFA8E826BC762E951A.roa
File: D508279CDA4C11EFA8E826BC762E951A.roa (raw, json)
Hash identifier: xc2fhFYu78+IpJewRYGN0mLSKYhb1iM0MbnJgrfKdoY=
Subject key identifier: 5C:AB:D6:32:E1:01:1F:A0:93:08:80:1C:6B:45:E1:F4:D7:B6:89:21
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01469A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D508279CDA4C11EFA8E826BC762E951A.roa
Signing time: Fri 24 Jan 2025 12:15:00 +0000
ROA not before: Fri 24 Jan 2025 12:14:56 +0000
ROA not after: Tue 11 Mar 2025 12:14:56 +0000
asID: 138915
IP address blocks: 154.95.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83610 (0x1469a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 12:14:56 2025 GMT
Not After : Mar 11 12:14:56 2025 GMT
Subject: CN=67938444-087d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7c:9c:9f:3e:70:aa:5d:03:53:fd:48:3b:79:
62:3f:fa:d5:9a:c5:61:f3:75:0e:1d:92:22:86:44:
6a:89:c1:c8:fc:94:e4:2c:8b:93:9e:d8:e1:de:2f:
60:9b:7d:5f:6b:c3:90:1d:75:17:e5:3b:76:50:ad:
42:01:4f:fe:cd:f4:76:91:a2:b1:05:10:cf:b1:5a:
4d:b7:c3:4f:48:98:53:b3:b6:7c:16:e3:1c:47:43:
01:08:a9:e7:b5:94:4d:0e:7b:19:3f:e6:fd:f8:c0:
ff:51:48:61:57:89:c3:c6:53:de:2e:0b:f5:1b:cb:
56:44:20:71:af:70:22:15:01:8b:aa:ef:3e:f3:04:
46:4e:d7:f2:43:2a:33:ae:32:9e:96:70:33:ac:74:
10:77:33:9c:ff:57:09:91:c6:08:2d:2b:ea:ef:8d:
19:42:c7:06:b0:16:31:96:67:96:82:c7:a7:00:36:
08:d6:15:c5:d3:6e:de:f4:f2:eb:56:cc:e3:b3:22:
7d:f2:06:42:5b:ff:e8:3b:12:1a:03:25:92:ee:bc:
e6:6c:3e:10:7d:a6:85:30:e6:d0:89:fa:02:e5:a0:
de:71:f9:08:41:ef:92:5a:6f:a8:c1:de:53:f4:af:
3f:c3:a2:0d:df:89:b7:ea:39:5a:86:95:ce:52:a0:
67:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:AB:D6:32:E1:01:1F:A0:93:08:80:1C:6B:45:E1:F4:D7:B6:89:21
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D508279CDA4C11EFA8E826BC762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.65.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:e2:c7:e3:e8:23:d2:e0:c6:ce:0e:ca:9d:d2:13:b4:77:1a:
2c:d4:41:f8:f3:68:f8:32:74:8f:39:dc:d9:9c:6d:07:ff:66:
91:d4:41:96:13:14:9f:48:25:d5:c9:27:92:db:25:3c:4b:b0:
1b:e3:8d:cc:7e:af:c0:53:e8:c1:4e:b4:1a:5b:d5:ac:a2:cb:
ca:21:f8:53:1b:fe:cd:23:af:83:b0:83:ca:5e:9a:f9:9b:97:
7b:39:b1:6f:d4:bd:b6:7f:ba:42:aa:58:5b:11:44:08:1e:f3:
79:2c:40:9e:a8:3e:20:0a:3e:ac:c8:40:ab:21:50:c3:48:60:
e6:47:44:9b:40:4d:25:04:d9:ea:c4:f9:ee:64:1e:91:6d:6d:
c6:21:9f:cf:9a:97:a2:b0:2b:7f:f0:a0:b3:05:8d:63:2f:16:
87:b6:f4:d9:87:d9:08:6d:70:f3:8e:09:f1:60:2c:8e:7a:2d:
65:1e:3a:7e:d3:2e:e9:c9:c6:5f:6c:02:7e:8f:6a:15:3e:4a:
8a:d9:c2:fb:2f:a4:ba:3c:94:3e:6a:6f:a5:86:b2:21:dd:55:
36:79:88:e1:5c:ab:85:e7:ce:3d:07:da:1e:c8:c9:a4:a9:28:
f5:19:77:bd:50:7a:af:24:69:78:ac:8e:96:9d:43:b1:61:89:
be:63:72:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:18:00 2025 by rpki-client