Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7C04F14DA4211EFAB62687B762E951A.roa
File: D7C04F14DA4211EFAB62687B762E951A.roa (raw, json)
Hash identifier: p/uBRLVc7P8tnY0o7Ry17ImZ4J8pkEet5XigftF5OVQ=
Subject key identifier: AE:A3:79:15:8A:5D:59:E8:F5:24:52:A4:86:E2:B0:DE:48:C9:79:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7C04F14DA4211EFAB62687B762E951A.roa
Signing time: Fri 24 Jan 2025 11:03:29 +0000
ROA not before: Fri 24 Jan 2025 11:03:26 +0000
ROA not after: Wed 05 Mar 2025 11:03:26 +0000
asID: 202656
IP address blocks: 154.219.4.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83424 (0x145e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:03:26 2025 GMT
Not After : Mar 5 11:03:26 2025 GMT
Subject: CN=67937381-d986
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:33:64:89:9e:20:d5:a8:99:40:3e:41:be:77:
67:2a:cc:ea:90:9a:e4:e3:c4:af:5d:da:8c:94:88:
a5:6b:cd:c1:c7:2f:87:90:c1:8f:cb:09:00:2f:5b:
64:70:7b:7f:f1:0c:6b:68:87:2e:27:4e:90:86:1d:
ce:b4:73:05:4e:34:0e:67:cf:71:c5:c7:fe:bc:73:
48:7b:2e:91:3c:f9:75:dd:c1:88:bb:e6:6b:e1:a6:
fb:4a:dd:69:12:0e:a5:75:22:5e:6c:fe:32:68:05:
1f:6e:02:b7:81:a9:96:67:24:84:f3:28:ec:18:6e:
1e:06:27:78:91:46:8e:bc:51:a9:bd:45:43:9c:e1:
15:3f:b9:fc:78:96:d7:b4:62:eb:09:03:9b:5f:3b:
b1:c5:d7:da:9f:12:1a:0c:d1:86:df:bb:be:4d:e7:
c4:7a:ac:da:0f:34:93:38:ae:de:42:cf:e7:ea:d6:
05:94:c4:fe:a7:7d:aa:e5:73:9d:36:0a:bb:63:d1:
82:d7:8f:b0:0e:38:36:e3:7e:2a:bb:7c:e6:61:08:
3b:e1:5f:4a:e3:df:b9:84:bf:53:b2:60:a7:5d:8b:
47:17:7b:51:79:db:fe:9b:77:d1:8e:89:7a:25:a2:
aa:72:84:5d:14:3d:ce:01:b4:aa:f9:33:89:23:2b:
3c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A3:79:15:8A:5D:59:E8:F5:24:52:A4:86:E2:B0:DE:48:C9:79:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7C04F14DA4211EFAB62687B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.4.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:a2:1b:33:8f:ac:1a:96:b1:23:71:b3:5c:c6:75:51:01:18:
13:86:ef:65:3f:a7:66:60:24:de:32:a5:2b:ca:a5:42:76:38:
90:77:0b:3c:31:3f:ae:0c:5b:f7:6a:fd:df:d2:38:74:65:40:
c5:f6:94:a3:d4:6d:55:b2:f0:d3:b9:c4:66:7b:b5:ea:61:09:
4b:e6:99:c9:c0:ff:f9:ee:72:00:fa:a5:de:67:2f:7a:f7:da:
08:b5:7b:56:90:81:40:ff:88:25:6c:e8:0d:1d:71:2c:09:ac:
c6:8f:75:ee:86:d2:a7:8f:45:f1:78:d2:74:2e:04:fd:83:c4:
1f:4d:0e:b1:3b:8d:da:b1:6d:d4:24:55:2e:53:02:ab:03:b7:
6e:b8:66:9a:5b:4f:7a:9e:8d:10:e8:68:09:0f:d4:a0:5d:9a:
b1:dc:b8:a2:bc:bd:2f:84:03:ed:67:c9:11:9f:c9:d9:db:45:
1e:ce:04:ed:0c:ab:3e:9e:53:df:1f:d6:54:87:c9:9c:fa:a0:
98:ed:8b:f7:24:4c:9b:67:25:0e:89:db:69:b8:6d:30:ac:25:
92:8e:4b:d0:cd:75:0e:5a:04:4d:24:7e:88:33:66:e8:f0:bd:
45:9a:12:0c:33:ef:33:e8:c9:77:0f:d4:ce:df:1b:2b:a0:3b:
22:ea:65:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:51:32 2025 by rpki-client