Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF126C8D9CD11EF8DA43258762E951A.roa
File: DBF126C8D9CD11EF8DA43258762E951A.roa (raw, json)
Hash identifier: EUmTDBabN32RIIrMSpLsG0Enl4FApnzRPlXMeI/edBk=
Subject key identifier: 7C:9F:15:4A:B3:B2:6C:CD:21:58:A0:A8:35:EF:E5:82:CB:16:0D:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF126C8D9CD11EF8DA43258762E951A.roa
Signing time: Thu 23 Jan 2025 21:06:05 +0000
ROA not before: Fri 24 Jan 2025 21:06:01 +0000
ROA not after: Fri 28 Feb 2025 21:06:01 +0000
asID: 62240
IP address blocks: 154.196.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82681 (0x142f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 21:06:01 2025 GMT
Not After : Feb 28 21:06:01 2025 GMT
Subject: CN=6792af3d-6693
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c1:b7:79:97:77:e0:ee:c9:ed:0d:dd:6b:ef:
27:f0:49:bd:fb:a1:d0:ea:01:01:f9:d7:25:1a:b9:
2b:a1:aa:9c:12:30:7f:1d:70:7f:d2:6e:66:d1:a9:
fb:49:bf:5c:28:1e:c8:0c:d3:11:e8:1b:90:5a:fa:
25:8b:ac:68:11:14:8c:f5:09:91:d9:f6:11:72:43:
91:9d:28:f5:f4:46:e9:b3:ef:4d:b6:06:20:60:ea:
3f:6d:d5:df:cc:be:ab:6b:4d:00:58:42:ac:62:33:
da:d5:dd:50:93:11:1d:6d:2a:89:a1:69:ca:14:cc:
69:21:fb:a1:bf:db:02:c5:f4:b3:2f:6e:75:69:f5:
6e:e3:e9:90:95:74:ae:eb:94:4e:45:5c:fe:fb:bb:
91:bd:bf:80:07:b6:e1:7e:7e:a9:ac:1a:bf:d2:8b:
c5:18:47:52:d0:90:4f:0c:16:45:b9:cb:ae:80:c9:
79:fe:aa:e0:61:c1:6a:b5:66:3c:a1:b9:c7:43:d2:
87:ef:ea:d1:31:9d:86:12:17:31:75:ba:57:8f:4e:
1d:85:31:d0:32:ab:55:65:96:e4:36:2c:be:d9:99:
10:f1:4d:eb:82:cf:26:c9:d3:7c:55:bd:a2:53:6f:
8c:e0:9d:eb:cc:8e:c9:ad:07:dd:cd:e3:13:76:e3:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9F:15:4A:B3:B2:6C:CD:21:58:A0:A8:35:EF:E5:82:CB:16:0D:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF126C8D9CD11EF8DA43258762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.72.0/24
Signature Algorithm: sha256WithRSAEncryption
95:ec:99:81:30:af:1f:9d:4d:81:6a:e4:c8:1a:f1:a4:66:4f:
00:ba:42:73:aa:51:85:2e:17:c9:d0:e8:b5:dd:cd:51:09:2e:
19:57:e9:74:c9:8b:3a:01:f4:53:86:9a:d7:ab:1f:01:c4:95:
f4:3a:32:0b:83:f3:25:a3:71:64:08:cb:a5:29:1a:f0:87:d9:
67:07:4d:67:f3:40:49:59:a5:90:f4:10:62:ab:4b:a1:4e:17:
4d:4a:50:f8:d1:fc:22:cb:ac:92:31:34:14:25:0c:f2:7a:ac:
e3:7a:a7:8a:0b:71:e3:46:27:47:12:e2:af:e5:2f:15:2f:21:
5b:eb:c0:32:da:b3:d8:b1:6d:17:81:45:9a:c7:f2:1f:83:b5:
68:3c:07:2e:7c:c4:95:99:ff:6d:c1:c0:e5:ec:c2:f0:91:6a:
6f:ed:85:45:5d:31:68:41:d9:6a:34:97:b4:14:3e:54:31:c2:
80:33:c8:59:a0:6c:90:85:ca:ac:47:11:c3:18:98:08:ef:f7:
e8:b1:0a:96:d2:fd:6f:f1:27:02:96:9b:3d:a7:ae:b5:30:51:
2a:2b:7f:f4:3f:aa:0f:63:df:22:ef:d6:1d:f2:42:c4:e5:32:
5b:87:63:4c:33:91:7d:06:be:bc:4c:a3:a1:85:59:d7:02:ed:
fd:3a:23:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:44:59 2025 by rpki-client