Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0317702C74311EFB7F720B4762E951A.roa
File: E0317702C74311EFB7F720B4762E951A.roa (raw, json)
Hash identifier: QKNKlXUA6lPVNyf4B9ADGvOLi9ybkZun6DpgBT4e9nM=
Subject key identifier: 7E:A3:3B:32:46:54:A2:1D:68:0B:D7:EC:7C:71:73:CC:C4:72:FC:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0130F9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0317702C74311EFB7F720B4762E951A.roa
Signing time: Tue 31 Dec 2024 06:53:01 +0000
ROA not before: Tue 31 Dec 2024 06:52:57 +0000
ROA not after: Thu 06 Feb 2025 06:52:57 +0000
asID: 14315
IP address blocks: 154.196.8.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78073 (0x130f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 31 06:52:57 2024 GMT
Not After : Feb 6 06:52:57 2025 GMT
Subject: CN=677394cd-3d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c6:a2:4e:10:b6:3e:15:48:64:20:0f:78:54:
e8:73:7c:21:f3:f6:c1:33:71:bd:f6:0e:6d:e7:5e:
7b:f3:07:bb:2b:e3:07:ad:56:4e:c5:84:1f:03:a4:
a0:06:1e:fe:fa:26:5a:f2:3b:42:92:91:7b:ad:26:
cc:bc:87:f2:0c:16:4b:3f:04:82:88:23:69:73:8b:
d2:7e:4e:3d:19:e8:6b:48:e2:f2:0c:d0:8e:94:05:
d3:19:df:6e:66:47:02:74:9a:56:e9:db:83:cd:e5:
db:ba:92:82:5f:5f:81:9e:c7:fd:c0:d7:05:e2:24:
6c:86:58:57:1d:85:b7:1e:27:b4:72:93:17:4c:13:
22:40:cb:c8:a0:42:7e:56:f9:06:de:c6:e2:88:b9:
62:e7:4d:3d:3c:d8:d3:60:83:a9:4d:d8:af:1b:7a:
7a:33:df:ef:47:0f:7b:ae:5b:f7:f2:5b:e2:92:65:
32:7f:28:02:aa:ec:37:8e:e7:6c:f9:75:08:be:4d:
b0:05:1d:b9:47:67:fd:81:d4:cb:54:f8:07:6e:d9:
74:a2:77:54:6a:0b:fe:4e:95:36:be:58:5f:55:33:
7c:4a:17:e9:0e:02:fa:4e:9f:b7:6e:95:28:c2:11:
c5:f1:85:ef:b7:f3:54:ac:b2:61:35:fa:78:5d:5c:
5a:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A3:3B:32:46:54:A2:1D:68:0B:D7:EC:7C:71:73:CC:C4:72:FC:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E0317702C74311EFB7F720B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.8.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:b4:d9:65:ea:57:74:46:ad:60:eb:2e:fa:89:4b:e4:40:ac:
74:74:0a:66:4c:bd:da:af:0b:8e:27:ea:9d:3d:10:fa:b4:4e:
44:0d:3e:6b:31:de:3b:05:2c:e9:79:d7:45:8e:f6:be:2d:2c:
eb:18:9f:ec:69:c4:d2:db:81:81:3d:be:b1:51:cd:6f:6b:4d:
91:5f:0a:b1:c8:ce:3a:09:b9:3b:44:bf:0e:85:aa:8a:6f:5f:
65:23:5d:f3:a8:45:27:2b:c8:0d:c1:76:e0:b1:c9:44:a1:a3:
54:3b:72:a0:8d:fd:b4:c3:f8:39:3f:86:fe:fc:9d:34:cb:96:
b7:84:72:3d:5f:ca:86:3b:a3:3b:c8:87:80:93:45:d8:70:c1:
a7:23:d6:e3:80:f0:cc:b2:34:90:77:70:70:de:40:e1:e8:74:
44:2c:74:17:a6:8b:55:4f:de:2e:3f:75:8e:26:75:c2:bd:30:
9a:e6:34:7c:9f:fd:11:02:ef:39:6b:83:18:f4:ee:0d:e8:66:
7b:85:c5:ac:09:2c:bf:b4:59:a7:e0:ab:e4:53:32:53:0e:82:
0d:52:3e:1b:e0:dd:8c:3b:7a:ec:b3:69:4f:06:4d:c2:81:30:
5b:e2:bb:e5:2c:54:b9:7f:d0:f4:03:ee:2c:60:a6:3f:7e:57:
d0:f5:4c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 15:25:38 2025 by rpki-client