Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2AA3094B49E11EF92119B79762E951A.roa
File: E2AA3094B49E11EF92119B79762E951A.roa (raw, json)
Hash identifier: /vf72rv2zOH/+Qi2uFthq7e6IzLZDTmmu1mh6BvKUHQ=
Subject key identifier: 76:BA:DB:61:1E:9C:81:BD:64:DF:BE:FE:83:AC:3A:D7:C0:2B:EA:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01190D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2AA3094B49E11EF92119B79762E951A.roa
Signing time: Sat 07 Dec 2024 13:26:37 +0000
ROA not before: Sat 07 Dec 2024 13:26:34 +0000
ROA not after: Sun 09 Feb 2025 13:26:34 +0000
asID: 135097
IP address blocks: 154.204.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71949 (0x1190d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 7 13:26:34 2024 GMT
Not After : Feb 9 13:26:34 2025 GMT
Subject: CN=67544d0d-ac4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:30:eb:cf:4c:6d:f2:2c:f6:64:d8:d4:eb:0c:
ce:dc:13:a1:35:fa:0e:89:b5:00:27:85:4c:de:b4:
8b:73:06:ef:2f:e8:b5:0c:54:3f:14:bb:be:a0:35:
71:7d:63:37:02:dd:9c:7a:fd:09:45:e9:47:2b:30:
fe:53:7c:67:c1:da:1f:b0:d0:a2:67:03:22:d6:ee:
e0:92:d2:66:17:92:b7:2f:0a:fe:e0:d6:e1:e3:a8:
20:38:5d:81:e6:96:c0:c5:5e:39:0f:da:98:0b:01:
d6:02:ad:e5:1d:07:26:85:8b:b3:cb:ff:12:8c:75:
04:de:b7:ad:b2:6d:01:59:9e:69:39:3c:cc:d8:2b:
83:0c:34:6a:5b:69:7c:f2:da:1d:e0:c9:9b:75:f4:
e4:e9:e1:b0:4b:36:1d:42:dc:88:d3:97:8f:7d:88:
1f:82:29:6b:48:fc:28:56:37:b0:b4:1e:f6:4f:dc:
d1:f7:6f:e0:e3:b5:d9:c6:8d:55:cb:81:b2:65:8a:
51:7e:4d:de:c9:da:80:20:1e:8e:d3:f9:0f:d5:49:
2f:29:db:fe:44:43:c5:b2:37:47:75:99:b0:4f:46:
02:2c:4e:22:9b:d2:73:77:95:9d:90:8a:34:4e:83:
0b:88:92:3a:d1:f4:fa:e5:ef:e2:3b:4d:78:85:4d:
0b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BA:DB:61:1E:9C:81:BD:64:DF:BE:FE:83:AC:3A:D7:C0:2B:EA:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E2AA3094B49E11EF92119B79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.192.0/18
Signature Algorithm: sha256WithRSAEncryption
c4:9a:1a:f6:09:58:34:ad:5d:c5:ba:40:43:14:e7:78:7a:94:
0d:d4:74:d2:76:ca:e7:38:30:9b:e4:fa:58:d4:c9:93:75:25:
74:b5:a3:ce:5d:90:64:9e:27:71:18:ec:4a:53:b3:cb:03:ed:
d3:cc:5e:c6:e4:e0:91:eb:32:ab:dc:06:dd:b1:6f:c6:0e:7f:
e1:a9:ce:81:14:99:6f:16:8e:7c:40:db:81:8d:dc:71:c5:8f:
d7:3c:57:54:fa:fe:fc:f1:99:bd:c1:e5:6d:13:2c:82:ae:6c:
9f:4a:30:81:af:f1:91:43:d7:93:a9:1c:07:f2:28:84:4c:51:
3d:a3:33:3a:d7:46:19:47:5f:28:6a:a5:38:b3:b3:60:8f:e9:
cb:21:f6:90:2f:6c:7c:07:de:11:14:e2:71:53:56:cf:a3:38:
d9:78:c6:30:7a:d6:8d:86:46:f9:f1:85:de:f2:3b:77:80:58:
e1:1e:d1:9d:43:18:4a:e7:ef:a6:6f:73:35:dd:6a:3f:57:a7:
e9:ed:04:6c:46:d5:b6:d9:40:40:3a:b2:e2:8d:59:34:d6:59:
2d:c5:d0:80:18:76:13:44:3b:bc:1d:15:d8:5b:9a:e2:f1:f2:
01:70:8d:d7:26:c5:f2:e3:2b:bc:48:17:00:d9:bf:4c:f1:1b:
11:47:71:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:44:46 2025 by rpki-client