Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1ED7B96DB3811EFBC773F7A762E951A.roa
File: E1ED7B96DB3811EFBC773F7A762E951A.roa (raw, json)
Hash identifier: xAtOgpc262BkvmM87bY4R76vPfMX4CLnJfG2RUf/Df4=
Subject key identifier: 35:9F:2A:7B:9E:41:F6:57:80:EE:54:DE:06:42:5B:55:67:7B:26:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014A30
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1ED7B96DB3811EFBC773F7A762E951A.roa
Signing time: Sat 25 Jan 2025 16:24:43 +0000
ROA not before: Sat 25 Jan 2025 16:24:39 +0000
ROA not after: Fri 07 Mar 2025 16:24:39 +0000
asID: 63139
IP address blocks: 154.223.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84528 (0x14a30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 16:24:39 2025 GMT
Not After : Mar 7 16:24:39 2025 GMT
Subject: CN=6795104b-b891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:d9:2c:f9:de:79:71:f7:dc:07:b6:2c:16:1d:
61:40:cb:a5:8e:ba:49:f7:28:45:ed:d7:18:eb:97:
3f:af:75:20:33:ca:81:ca:87:93:e9:fd:e9:03:27:
72:c7:8e:1c:4c:89:54:49:66:87:ec:95:c1:79:26:
49:d0:22:75:14:f3:f3:b1:ae:4e:cb:49:0b:0c:62:
5b:a5:18:9e:56:8c:02:0a:d8:c1:9a:f5:38:d5:3a:
59:e8:74:87:65:c3:47:a7:76:ca:9a:d6:3a:5c:cb:
d4:62:02:48:53:71:36:47:05:3b:47:9c:86:12:58:
9c:73:8a:71:00:5b:0c:d1:d3:7c:30:a5:20:98:74:
f8:a6:16:88:0e:af:d4:44:cd:df:bd:8e:c2:c3:fe:
a3:22:18:ab:6e:4f:6b:de:56:6b:00:f9:9a:0c:3d:
2a:c6:2f:a4:c5:53:69:0f:c6:ee:d7:ae:71:26:83:
9b:11:61:af:ff:15:41:fd:cc:2d:de:83:3a:d0:55:
68:5b:42:41:49:0c:52:83:79:be:ec:57:46:1f:26:
59:ee:a6:cc:26:36:4f:99:6c:d2:f7:5c:dd:e1:e2:
c2:2f:2e:39:bb:36:22:5e:0f:a4:7b:34:e7:e7:f9:
91:ad:9e:69:f8:5b:17:ec:1e:5e:ba:c3:63:e7:df:
b5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:9F:2A:7B:9E:41:F6:57:80:EE:54:DE:06:42:5B:55:67:7B:26:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E1ED7B96DB3811EFBC773F7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.25.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:fe:36:17:d4:ee:7e:16:ee:dc:58:c8:a7:72:84:61:b8:0e:
ce:36:4d:0c:cc:4e:e1:e0:3b:07:59:56:39:c2:3f:d7:d0:e9:
aa:a7:23:65:4e:7a:d6:9f:5a:b0:69:be:91:c9:52:dd:6b:a1:
6f:0f:9f:86:e0:c6:12:ce:7b:b2:c9:68:eb:6e:5a:b5:3e:d6:
93:0d:df:64:30:38:81:4e:e4:4a:97:7f:aa:01:49:81:75:ed:
e7:1e:d1:b5:8a:52:cd:a0:08:b4:dd:4e:77:b7:28:f5:61:fa:
3e:83:30:17:31:e3:69:64:ff:07:5c:d2:4e:ca:70:ec:5b:f2:
08:a5:47:52:a3:e7:97:c3:8e:f8:50:3f:d1:94:a6:4f:56:81:
9f:29:b2:33:a8:ed:b9:6d:30:95:83:3d:a4:bb:9a:25:f5:d7:
a1:90:a6:06:0e:8e:51:f3:95:6c:cf:13:79:61:b8:2b:5c:8b:
95:c3:1d:c1:87:89:84:12:d7:58:b6:e1:5a:b7:75:7d:fd:c4:
e6:e5:9c:20:26:ea:39:53:58:5d:28:44:90:b1:af:a3:ef:9f:
72:8a:5b:d8:9c:6a:65:52:d8:3a:f2:4c:70:28:cb:41:ae:2b:
bf:3c:22:f5:86:40:82:2c:07:93:c7:12:be:92:67:62:dd:5d:
b9:5d:f7:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:21:30 2025 by rpki-client