Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6A56EDADC9D11EF86DA8462762E951A.roa
File: E6A56EDADC9D11EF86DA8462762E951A.roa (raw, json)
Hash identifier: /BWWmYkd4hWsybd8T3WLbLTV5dgbua0izzhbluCe/UI=
Subject key identifier: 1A:03:92:C2:02:71:75:C8:CD:BE:F5:1B:98:91:9D:24:CB:13:DB:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014BC1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6A56EDADC9D11EF86DA8462762E951A.roa
Signing time: Mon 27 Jan 2025 11:00:21 +0000
ROA not before: Mon 27 Jan 2025 11:00:17 +0000
ROA not after: Sat 08 Feb 2025 11:00:17 +0000
asID: 5065
IP address blocks: 154.85.120.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84929 (0x14bc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 11:00:17 2025 GMT
Not After : Feb 8 11:00:17 2025 GMT
Subject: CN=67976745-7406
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:36:f8:b9:64:f1:c1:a2:38:3f:ce:f0:08:85:
80:cd:42:c3:3e:ff:cc:d9:fc:06:32:b5:d9:59:60:
ab:a8:cf:b7:6a:01:ff:ff:9e:a6:92:49:f0:d0:c9:
40:b7:0a:99:58:62:20:8c:dd:30:e1:05:da:2f:ab:
be:f8:e0:0a:8c:0f:0e:99:84:49:92:b1:8e:89:ef:
87:23:bd:ac:66:a1:f8:82:cf:d3:a0:1e:b1:42:7f:
ed:6b:98:a7:79:70:aa:57:5b:26:5e:1c:a7:e8:39:
e2:c1:ac:92:0e:f5:1b:17:ba:c6:54:97:fe:ee:dd:
b4:a6:87:10:d1:35:10:95:aa:96:f3:d3:62:61:19:
a3:55:44:70:19:b6:eb:da:9e:4c:e8:83:5f:ab:10:
c5:58:6d:c9:4a:52:24:f1:e0:cb:d9:9a:4d:e0:7a:
a5:0d:19:9e:65:70:10:19:3f:70:14:b3:fb:76:50:
2a:39:36:10:d6:fe:48:db:f4:32:d6:e6:ea:38:ef:
b2:e3:b8:98:3b:ca:5a:36:87:28:b4:2c:19:be:8b:
1a:b8:f8:30:57:0c:ab:5d:e2:78:47:51:b4:58:78:
a7:d9:d7:5f:35:4b:9e:a7:75:33:18:3a:29:09:96:
81:2c:9a:50:75:03:c9:04:85:5c:42:dd:e8:1c:93:
28:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:03:92:C2:02:71:75:C8:CD:BE:F5:1B:98:91:9D:24:CB:13:DB:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E6A56EDADC9D11EF86DA8462762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.85.120.0/22
Signature Algorithm: sha256WithRSAEncryption
39:67:e6:45:98:46:79:40:aa:80:f3:3b:1e:a8:6f:3e:42:76:
bd:bd:ae:28:ac:24:f2:32:0a:44:13:6f:2f:1e:1b:79:2d:9f:
e4:a6:ec:09:95:41:4f:f2:56:28:0d:d8:24:f4:41:4b:be:98:
6d:78:a3:e5:21:47:7e:5c:f0:32:9e:93:20:54:e2:5d:71:ba:
25:3f:4f:b7:05:96:5b:67:85:c0:28:0d:2c:10:4d:52:eb:39:
a7:db:96:55:df:59:69:8b:cd:2b:ce:7e:68:34:8b:43:61:58:
a6:f0:cc:21:74:cf:bd:06:e8:e3:c7:0e:1b:4b:b9:f0:fd:9d:
f4:72:f1:34:8b:a2:1c:1a:88:e8:19:e0:55:1c:41:a9:ea:31:
78:a1:8d:7f:49:b7:f1:4f:ca:3c:bf:34:6e:8f:ef:83:19:bb:
24:e4:f5:27:92:26:e7:24:3b:72:b7:79:55:2c:6a:45:49:76:
cb:57:3a:32:a5:a2:8a:da:8f:86:16:fc:a2:b9:77:6f:89:13:
67:52:1a:aa:24:08:6b:1b:e0:d3:8a:e7:85:bd:fc:8c:cf:25:
6e:2e:23:4d:e0:43:0a:3b:bc:f7:10:13:16:65:c5:23:5f:e4:
05:dc:8c:f2:59:23:e4:91:56:fe:b4:7e:0c:69:9d:fb:96:e2:
76:b7:3f:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:46:27 2025 by rpki-client