Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEE950ACDCA811EF99F484AB762E951A.roa
File: DEE950ACDCA811EF99F484AB762E951A.roa (raw, json)
Hash identifier: VwkO77/NqPRWeT6ynn1ioMCCc8jAn9xY0SNIGNX5kTc=
Subject key identifier: 6F:DF:41:69:AF:1C:2F:EB:EA:D9:D8:D0:23:85:6C:01:86:09:6D:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014BFF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEE950ACDCA811EF99F484AB762E951A.roa
Signing time: Mon 27 Jan 2025 12:18:52 +0000
ROA not before: Mon 27 Jan 2025 12:18:49 +0000
ROA not after: Sat 08 Feb 2025 12:18:49 +0000
asID: 5065
IP address blocks: 154.212.20.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84991 (0x14bff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 12:18:49 2025 GMT
Not After : Feb 8 12:18:49 2025 GMT
Subject: CN=679779ac-cbd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:0d:45:da:6a:db:4e:e7:c7:d1:5d:93:02:c4:
2e:29:09:e2:ae:6f:67:e1:f7:0b:b9:e5:87:29:e6:
9d:e7:08:88:01:c7:55:3b:b1:74:5f:2b:74:44:7c:
be:19:2c:02:38:13:f5:cf:19:2d:2f:b6:d4:41:3c:
cb:ea:26:dd:ce:6a:2c:c7:23:42:77:ff:94:6b:63:
20:d5:2e:6e:d1:a9:2b:6d:6a:2c:8f:07:1b:4d:12:
9a:3c:e1:f4:48:09:54:bf:f3:58:12:e1:2a:00:58:
1a:d1:09:2f:8d:3f:39:80:2c:c8:8d:4a:e1:53:c7:
97:c6:c8:ba:26:3c:06:1d:69:96:c2:ff:a5:1b:3d:
5a:88:b2:4e:f3:1b:7e:f4:9d:e8:8d:1c:ba:cd:86:
a7:0d:b0:48:fd:81:4e:94:15:01:d8:2e:e9:7d:d7:
5d:eb:9c:48:fe:0e:11:a6:d5:41:b8:0f:a0:73:08:
54:13:8c:15:58:5e:6f:90:6b:34:8e:1e:bf:bd:e6:
4a:72:52:16:f8:64:1f:37:40:f3:5e:20:46:22:0b:
4e:3f:c1:ce:69:86:51:88:e4:d4:7b:3e:9b:a4:d3:
72:10:19:86:d9:52:59:7b:ab:91:da:df:0d:14:5b:
5e:e4:ca:fb:7f:6e:50:58:1d:e2:49:6e:c5:88:aa:
15:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:DF:41:69:AF:1C:2F:EB:EA:D9:D8:D0:23:85:6C:01:86:09:6D:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DEE950ACDCA811EF99F484AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.212.20.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:af:77:67:7e:93:73:d1:d6:d3:ee:ab:da:68:63:f7:0f:e2:
d8:62:ee:54:e1:7c:37:f9:20:42:63:be:62:f9:86:7d:a6:99:
a8:7b:64:53:17:c8:93:de:3e:a7:0d:29:de:c5:1f:5c:ab:60:
8f:19:51:de:24:8d:a1:08:d2:84:a9:56:4b:f6:f4:cb:49:df:
ab:5f:19:48:f5:52:32:9e:b1:49:24:c4:21:34:01:76:ac:de:
5c:34:58:9d:85:81:96:c6:df:ed:2e:99:38:39:a1:13:0f:3b:
60:f6:6a:ea:2a:22:6d:41:c3:90:56:4a:7a:3d:15:cf:66:c7:
80:0b:de:ac:4a:96:af:2d:4a:1f:57:7e:07:a4:34:c7:88:8d:
51:04:b8:dd:a3:b2:9d:56:3b:11:02:20:31:37:b7:d1:36:7f:
94:13:da:99:2b:f8:56:73:34:0e:92:39:25:43:3b:08:b1:d0:
99:9c:f9:62:e0:fb:4b:25:22:3e:8a:88:c9:3c:ec:b7:45:85:
2a:10:7f:4c:b9:c5:15:f9:f5:de:8f:05:4e:42:a1:14:18:cd:
80:4a:86:7c:d3:33:45:a6:b4:c6:c4:1d:aa:22:5b:33:f8:28:
d7:b3:a3:5a:1a:4e:93:34:77:ca:1e:8d:0a:22:69:46:0b:51:
39:00:b2:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:22:22 2025 by rpki-client