Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA213E2CC35811EFA326F652762E951A.roa
File: DA213E2CC35811EFA326F652762E951A.roa (raw, json)
Hash identifier: 0tL444DrSzZwteFR+gpk1psS28HCywNT6sgKzZPf094=
Subject key identifier: EA:7D:F1:9C:CB:B0:0C:98:0A:5C:44:90:1E:7A:2D:ED:7E:B5:35:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0125EF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA213E2CC35811EFA326F652762E951A.roa
Signing time: Thu 26 Dec 2024 07:13:06 +0000
ROA not before: Thu 26 Dec 2024 07:13:02 +0000
ROA not after: Sun 09 Feb 2025 07:13:02 +0000
asID: 138915
IP address blocks: 154.223.66.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75247 (0x125ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 26 07:13:02 2024 GMT
Not After : Feb 9 07:13:02 2025 GMT
Subject: CN=676d0201-d00c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:04:33:59:67:a6:7a:50:20:19:cd:11:5b:1c:
98:98:17:4f:d1:47:c4:19:93:df:6b:36:ac:53:c1:
1b:47:44:1d:59:0f:4d:22:2e:c4:e0:5a:65:4b:23:
e7:cb:e5:40:e6:ee:bb:5d:2f:bd:63:81:d3:b6:84:
fa:dd:97:6c:f4:90:33:48:0a:11:1f:e9:5f:a8:d2:
32:43:ba:a3:f3:24:6e:80:17:5a:1f:bd:99:b3:ac:
c4:a2:39:5f:6e:18:d5:25:a8:43:f6:de:fb:44:7a:
57:37:cc:fe:23:04:46:8a:d0:d0:d1:5a:1e:e4:d0:
0d:45:64:45:1a:16:01:00:43:54:cf:af:dc:3e:b1:
b6:9c:b5:d0:89:99:d8:26:9b:77:33:76:f2:82:83:
a4:ac:00:a4:90:7f:d1:3c:2f:2d:13:ac:66:86:23:
6a:23:31:de:06:ea:5c:63:a6:e9:94:4a:96:73:74:
69:62:74:7c:9a:3f:5c:36:3c:c8:92:25:f4:94:e2:
d3:a6:b6:02:b2:e4:d4:60:68:77:8f:88:11:dc:52:
ad:95:e8:f9:2d:f6:a4:38:06:06:1e:42:71:06:e0:
c2:fd:f9:8f:80:c2:8d:cb:33:bb:e8:83:b2:ae:a0:
b7:a6:b6:8c:fb:4b:b9:9d:14:5b:52:e6:f3:3e:b7:
a8:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7D:F1:9C:CB:B0:0C:98:0A:5C:44:90:1E:7A:2D:ED:7E:B5:35:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DA213E2CC35811EFA326F652762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.66.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:fd:aa:8d:b2:49:90:aa:d0:a6:09:cc:f8:6c:23:e2:ef:9d:
97:ad:3d:50:e4:d1:67:03:80:cf:84:fc:87:16:86:c9:98:91:
83:2f:cf:3b:7e:93:b6:c3:53:59:1c:26:cc:32:55:14:f9:20:
53:1b:35:41:e5:bf:d4:08:dd:73:18:20:b0:e6:84:52:3f:93:
8d:f7:9d:70:c4:05:c4:46:33:b9:57:50:30:31:7c:57:18:ab:
cf:33:5f:19:7a:5a:63:fa:40:df:3a:b4:47:6f:df:02:57:af:
ed:fb:b5:ad:a5:ee:c6:43:18:39:89:64:40:5d:95:59:e4:74:
65:56:d7:56:ce:f8:08:2c:2e:82:fe:25:b7:0b:8e:b2:e0:26:
95:70:2e:f1:bd:0e:38:4e:59:d5:49:37:28:6f:ba:79:e0:d6:
d0:d4:81:2f:bd:04:99:89:c5:45:8c:33:99:6f:a1:1d:4f:4b:
30:6d:7e:6f:09:d4:fd:97:68:22:48:2c:ab:c7:30:4a:ea:b0:
f4:33:2a:17:62:3d:3d:c3:27:1c:0a:39:ed:49:e0:4b:ac:87:
69:27:7c:6e:d5:e9:e9:69:b5:e6:3b:52:df:b4:db:68:2d:f1:
e9:d6:5f:54:0a:13:9f:a9:7d:4c:9c:34:2c:93:78:e5:2b:bc:
b3:f2:8f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:34:02 2025 by rpki-client