Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3D2E846D8D611EFBEC6F862762E951A.roa
File: F3D2E846D8D611EFBEC6F862762E951A.roa (raw, json)
Hash identifier: G6YngfJj7kylpjODW1wUfgPA4WXNqVJ/kMyRR9bOsNc=
Subject key identifier: 71:D4:F2:A7:30:53:EE:89:21:DF:17:CF:3D:8C:D4:B2:EC:0F:D4:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013FCC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3D2E846D8D611EFBEC6F862762E951A.roa
Signing time: Wed 22 Jan 2025 15:38:40 +0000
ROA not before: Wed 22 Jan 2025 15:38:36 +0000
ROA not after: Tue 01 Apr 2025 15:38:36 +0000
asID: 55320
IP address blocks: 154.93.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81868 (0x13fcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 15:38:36 2025 GMT
Not After : Apr 1 15:38:36 2025 GMT
Subject: CN=67911100-f5e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:67:71:d7:b0:ee:98:cf:85:d9:17:eb:28:74:
e4:e1:73:61:a1:f6:eb:27:e8:55:9d:22:ce:0a:64:
fd:cd:c6:c8:b8:43:df:5e:b8:b9:b6:6e:bf:56:62:
bb:8a:34:4d:d2:1c:20:c9:b8:62:dc:f0:63:a9:80:
be:97:7a:bd:08:e9:8d:0a:5e:73:67:c3:ba:17:4c:
c0:40:ba:49:cf:e7:0b:c9:f9:fd:31:c4:7a:11:cf:
33:af:2a:e6:c0:a3:24:6d:d4:2c:81:3a:c0:b8:fa:
5b:a0:fc:00:d2:8d:1b:e4:8f:2d:25:18:83:8b:40:
73:af:ac:34:11:0d:6b:a3:0a:6b:db:c3:9c:40:da:
bb:4b:c3:17:ee:d2:46:8f:06:a4:10:e4:1f:d0:d7:
8d:f5:2d:4a:43:da:35:5c:8c:b8:db:06:06:62:d4:
bb:63:e8:59:26:70:5c:44:57:2a:3e:e4:a9:51:a9:
88:1f:1c:fc:46:be:a5:84:4e:56:4c:ae:5d:ef:3a:
d7:7d:6f:5d:9c:97:6b:f0:cd:1e:5b:db:e9:ed:ad:
5b:4b:e0:98:d1:eb:8d:c6:02:78:31:1f:dd:39:c1:
73:bf:d2:17:7a:3d:14:74:6d:f1:61:d1:c4:a2:be:
d3:52:aa:40:ca:2e:b7:10:e0:91:dc:48:ad:f2:f1:
db:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:D4:F2:A7:30:53:EE:89:21:DF:17:CF:3D:8C:D4:B2:EC:0F:D4:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3D2E846D8D611EFBEC6F862762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.98.0/24
Signature Algorithm: sha256WithRSAEncryption
26:f3:f6:ed:77:37:2f:26:95:d7:a9:42:81:ef:cd:af:1f:37:
44:bb:41:9a:36:c4:01:6c:a6:52:72:13:dd:39:b8:f7:40:ca:
05:b0:ec:a1:49:e4:fe:fb:a7:a3:7e:e6:2d:8f:5a:8f:ce:17:
a7:bf:86:25:8d:db:6a:9d:fb:74:3c:c9:ec:5c:d8:57:25:ef:
4f:66:05:ad:2b:18:38:90:d9:10:85:b1:2d:aa:9f:d7:58:a0:
4a:b9:f5:22:3c:e6:ae:56:96:4e:41:2b:e0:e7:fe:15:2c:79:
78:57:16:95:f6:bd:00:e8:ab:be:61:65:65:77:74:80:1d:ac:
62:3f:d9:be:5c:c7:cd:3f:89:00:80:78:50:5e:a4:0d:fa:73:
8d:fc:ec:a3:15:80:33:e3:35:39:97:18:f5:c2:05:a6:5e:04:
a0:9c:01:80:ef:18:a4:d4:6d:20:3b:08:73:25:23:bf:af:68:
01:bf:30:f1:c1:8c:3f:f3:1f:2d:98:45:36:62:73:3a:a8:33:
b3:ee:f0:ae:57:68:d4:d2:6d:a8:9f:e5:2c:bc:7c:c7:6a:68:
50:ff:de:b4:bc:d1:8d:68:e2:a1:ff:c2:e0:43:58:72:ab:a8:
3a:63:00:71:b2:d9:10:27:51:90:7d:54:a6:3e:8f:a4:45:59:
4c:e4:de:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:33:52 2025 by rpki-client