Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E509B4B8D98D11EF99B770B4762E951A.roa
File: E509B4B8D98D11EF99B770B4762E951A.roa (raw, json)
Hash identifier: Je1DTmvYo7gtLx6jC/irvmj51HGk8c2Y1nlYnnI6PEI=
Subject key identifier: D8:9D:5B:12:5D:E0:ED:63:70:31:E6:C6:79:08:F0:FB:CC:0B:C1:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014276
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E509B4B8D98D11EF99B770B4762E951A.roa
Signing time: Thu 23 Jan 2025 13:28:13 +0000
ROA not before: Thu 23 Jan 2025 13:28:09 +0000
ROA not after: Fri 28 Feb 2025 13:28:09 +0000
asID: 62240
IP address blocks: 154.196.22.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82550 (0x14276)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 13:28:09 2025 GMT
Not After : Feb 28 13:28:09 2025 GMT
Subject: CN=679243ed-e2b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:84:35:78:36:76:c7:da:f0:59:38:06:3d:01:
eb:a6:8a:05:ab:96:f9:6d:97:28:d4:9d:9d:8d:de:
54:e8:a7:fa:e6:f1:4e:a3:ac:d7:dd:5d:af:c1:4a:
5e:e0:06:e6:9f:06:36:a6:50:ab:f6:33:a6:34:64:
b5:0e:37:f2:83:c8:8a:70:2c:6a:36:31:e8:9a:bd:
6d:f8:3d:b7:9d:37:df:ab:4e:76:21:15:34:ab:0f:
5f:5d:ba:59:00:de:5d:9a:26:eb:ea:17:63:10:3b:
9f:31:cd:41:07:69:a7:86:8d:73:90:22:b6:aa:61:
db:8f:92:88:be:31:c3:9d:36:ac:ab:2e:33:38:21:
4a:7c:58:53:ef:8f:eb:7c:da:22:3c:36:56:89:7b:
18:f1:3e:cb:8b:aa:bf:be:c0:2a:85:75:b4:ad:5e:
a6:d0:01:87:03:52:5e:43:e0:2a:4f:5d:8a:4d:84:
70:3e:1c:c9:ab:7c:fd:e7:8d:94:8b:ad:67:25:32:
b7:ff:2d:e3:85:c2:f8:0a:4f:be:25:10:58:1c:45:
ad:84:0f:ad:00:8b:fa:57:69:23:9d:82:3a:c3:09:
84:7b:6f:46:31:54:1f:51:a7:cf:0e:3f:b1:95:56:
07:9c:2a:83:58:dc:50:3e:b6:92:c2:01:17:ff:d2:
c5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9D:5B:12:5D:E0:ED:63:70:31:E6:C6:79:08:F0:FB:CC:0B:C1:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E509B4B8D98D11EF99B770B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.22.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e9:1b:9f:13:91:41:ed:58:ba:c8:1f:96:1b:f6:88:13:f2:
a2:79:12:ba:03:30:96:8f:99:7f:b5:32:46:d5:46:d2:8c:aa:
10:a1:3a:3b:bf:1e:bd:8a:2c:5b:a9:76:0b:9d:c9:f4:28:8f:
81:24:59:40:c6:02:9d:9f:c3:33:ac:ff:e5:84:18:c9:f0:c4:
01:e1:2b:8f:27:21:01:4b:2b:71:e7:b4:d8:33:d2:64:9d:f4:
ef:06:ec:9a:dc:d8:14:cf:15:be:14:c8:14:99:59:5c:44:b2:
19:e0:27:06:b6:28:2f:16:52:91:75:90:21:f3:eb:2f:c5:24:
a2:2c:62:4f:e8:83:71:25:2b:fb:47:a0:b8:fa:37:0d:56:be:
d5:57:21:02:60:c3:44:03:c4:e0:70:f5:02:7e:ee:67:20:22:
1c:42:0e:f3:ce:60:05:59:7b:27:63:7d:0f:95:f4:f1:c4:84:
94:51:c4:75:1f:35:04:0d:9e:9a:74:e7:f8:ed:92:c0:a5:db:
42:07:49:be:1e:cd:af:6c:bb:30:f6:a7:d7:e3:09:fa:d9:3b:
fc:58:3e:c0:d6:b3:a5:5c:a6:69:0b:52:a7:bd:81:4b:7d:58:
29:97:fe:96:3a:35:12:3a:81:6d:91:88:09:27:1d:a6:ba:6f:
c2:7a:38:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:01:05 2025 by rpki-client