Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1B24F9EDB2E11EFB5BC8DB7762E951A.roa
File: E1B24F9EDB2E11EFB5BC8DB7762E951A.roa (raw, json)
Hash identifier: 54IcueCshmaDVMfhuXe+ADUgU5d32EdhH437nd9ZJtU=
Subject key identifier: 3F:F9:E4:07:67:9A:1F:09:0A:90:89:40:08:89:BE:8F:DC:73:3B:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0149F2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1B24F9EDB2E11EFB5BC8DB7762E951A.roa
Signing time: Sat 25 Jan 2025 15:13:07 +0000
ROA not before: Sat 25 Jan 2025 15:13:02 +0000
ROA not after: Fri 07 Mar 2025 15:13:02 +0000
asID: 138915
IP address blocks: 154.223.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84466 (0x149f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 15:13:02 2025 GMT
Not After : Mar 7 15:13:02 2025 GMT
Subject: CN=6794ff83-d89a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:a8:d7:d7:b8:70:b0:7e:90:31:73:77:65:72:
ad:b3:a5:b4:15:bc:2c:ea:6b:41:3b:a4:b6:40:fc:
41:b9:51:4e:9f:6a:b7:5f:d2:e5:25:69:ea:71:4f:
ae:35:29:89:b5:4a:11:d0:c0:8b:6c:65:e3:39:a4:
df:46:4d:2d:26:bf:08:33:db:05:9b:09:f8:b2:f2:
9c:08:4b:6e:ec:90:ba:88:f1:f0:92:34:7c:66:4d:
8a:50:17:81:df:89:c6:91:68:8e:f3:ee:31:59:3b:
5d:3c:63:7b:f5:24:45:01:64:d1:b9:98:cc:4d:ef:
ef:09:28:b6:fd:e0:4f:54:f4:f3:f6:ae:b0:a1:d8:
81:2a:59:5a:a2:8d:40:ab:4c:75:04:43:39:58:09:
e8:26:c2:06:c7:9f:06:70:b8:05:55:59:c3:e2:7a:
1a:3a:c4:79:00:52:a3:dc:a2:78:e0:63:20:5b:3b:
5a:a9:ac:b0:16:54:33:de:b0:3f:1a:c7:41:2b:ca:
e2:ed:79:49:e6:d1:1c:27:e0:a8:cc:27:0c:30:61:
40:ec:70:58:50:44:e1:8a:fb:95:5a:54:23:2f:f0:
49:b9:9b:26:dc:1f:7c:47:ad:ff:87:54:c2:c0:60:
a4:54:db:cf:82:1a:ab:3a:f9:ae:d0:46:c2:82:17:
fc:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F9:E4:07:67:9A:1F:09:0A:90:89:40:08:89:BE:8F:DC:73:3B:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1B24F9EDB2E11EFB5BC8DB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.62.0/23
Signature Algorithm: sha256WithRSAEncryption
55:02:f7:a6:cd:1e:01:c3:b7:bb:d3:cf:54:12:25:fd:8f:56:
ce:82:e6:1d:ab:19:b0:12:32:58:28:6d:55:b5:fa:5f:1b:13:
cc:b9:6d:07:04:34:27:e4:a9:c5:97:71:68:ab:2b:cd:2a:1c:
fb:7e:e0:d0:39:0c:66:42:63:1d:99:c6:c6:46:06:ed:d5:0a:
3b:84:28:15:ca:5f:45:94:d7:3a:28:84:34:b2:6b:1f:91:84:
1b:a3:c9:78:e3:9b:1c:2b:3f:9e:bc:81:09:cd:65:ef:6b:ba:
b1:ae:89:cf:07:e2:21:06:f7:cd:b3:ba:a6:e6:2d:03:ee:bd:
55:34:46:9e:c4:cb:2d:5b:ab:83:3a:31:2a:f2:bf:d9:2d:19:
5c:07:19:7b:dd:d8:e8:8e:bc:d2:8d:34:f9:34:af:9d:37:2a:
27:ed:1c:67:4b:92:09:2e:c9:df:68:61:70:5c:f3:b1:e6:ca:
d1:b8:f1:46:ab:97:ca:09:32:e5:d8:5d:a2:30:e2:73:28:0c:
c1:df:94:8d:69:60:14:8a:e4:4e:56:26:94:d4:52:67:7b:77:
c2:e2:be:6d:68:a8:a1:52:6b:54:19:80:09:ca:05:ca:ac:9a:
3b:d6:8c:d6:30:08:ab:d3:d8:d9:30:4c:87:3b:e8:bb:b0:85:
24:66:86:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:05:57 2025 by rpki-client