Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F755C5E4D51E11EF840A1973762E951A.roa
File: F755C5E4D51E11EF840A1973762E951A.roa (raw, json)
Hash identifier: zeLQJX6b7OnjKcEVCn/8RY2sRcyNGoEMP7HhcSIzSdA=
Subject key identifier: F7:17:E3:3E:97:47:9B:E7:E3:2E:12:03:77:3B:C7:F6:22:0A:EC:DF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D5D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F755C5E4D51E11EF840A1973762E951A.roa
Signing time: Fri 17 Jan 2025 22:04:05 +0000
ROA not before: Fri 17 Jan 2025 22:04:01 +0000
ROA not after: Sat 22 Feb 2025 22:04:01 +0000
asID: 139646
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81245 (0x13d5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 22:04:01 2025 GMT
Not After : Feb 22 22:04:01 2025 GMT
Subject: CN=678ad3d5-9c04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:09:c7:98:54:e1:a2:4d:bf:42:33:bb:c9:ca:
81:54:2c:e9:94:c2:aa:23:66:d9:a3:3e:00:2d:88:
1a:d6:96:1d:13:c8:86:72:b7:40:eb:95:ce:df:cd:
08:85:35:86:c8:e4:d8:2b:74:92:c9:fa:64:f4:da:
0b:89:66:23:41:dd:76:96:38:86:24:d7:47:23:b8:
ea:16:e0:e5:97:fc:2c:b5:97:51:28:c3:5c:0e:6e:
b1:9f:23:c7:2b:0a:ad:30:59:c9:54:0b:5b:ff:c8:
58:03:5b:23:24:32:1b:51:72:dd:74:0f:5b:3c:f9:
da:a5:13:b7:30:5c:c9:19:1e:40:8c:ff:8b:6f:f3:
e0:ea:d0:a1:00:5d:17:79:82:4d:88:2c:a3:04:f5:
01:f5:3b:f5:bb:55:ff:a9:d1:48:e6:f7:90:ae:a8:
5a:1b:35:da:93:00:18:36:43:b8:97:c4:06:c4:95:
cc:9d:66:b0:4f:b8:2c:66:a2:31:8a:d0:78:92:76:
ec:5c:47:8f:ac:65:3c:f0:1c:69:65:2c:e3:33:12:
68:be:bd:7d:70:33:6b:c6:77:a9:20:57:9b:d5:59:
94:88:38:67:55:fc:36:cc:1d:69:29:88:81:01:8d:
70:ec:cb:02:08:d0:ae:16:1c:4d:f3:59:f4:7a:71:
f0:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:17:E3:3E:97:47:9B:E7:E3:2E:12:03:77:3B:C7:F6:22:0A:EC:DF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F755C5E4D51E11EF840A1973762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:0f:81:e5:3b:be:9b:92:a2:f1:ec:d0:13:1b:18:d5:d2:5b:
f9:49:8e:f7:77:c6:a7:5f:12:bf:7d:a9:a4:13:ea:61:90:bd:
b8:69:f5:17:15:d3:c2:7d:eb:e8:2c:4c:3e:d4:71:31:53:af:
32:f4:c6:61:91:e6:b4:5e:12:57:32:6d:ac:a1:c3:61:f4:8e:
ea:0c:c2:21:3a:75:9b:77:e8:32:51:08:39:37:8a:64:d3:28:
24:17:07:1e:00:ad:ab:89:f8:b3:47:ec:20:c5:fa:a4:4d:aa:
b2:24:47:df:ae:b9:2c:9b:23:bd:d3:4e:26:6a:d7:b9:42:c3:
d6:36:7e:dd:98:28:b9:49:52:12:72:14:3b:3e:9d:fa:ed:f1:
2e:84:ec:85:5f:56:15:c1:ed:8b:94:9d:f3:fd:2a:fb:ae:44:
64:37:80:c1:f9:dc:17:15:94:ce:27:84:1d:93:9e:e5:06:99:
e0:2d:a7:9f:4a:47:fe:2e:1f:99:f2:1f:f0:c2:d4:ee:25:43:
3f:5e:4b:19:cd:ff:e8:e9:ab:25:7f:31:45:86:6e:53:d0:0f:
88:89:60:ee:b3:c6:fd:66:93:fa:3e:dc:82:68:10:6d:e3:ea:
b3:73:8b:00:c2:42:d8:09:00:0c:c6:ee:b5:8f:b4:28:02:d0:
53:c1:41:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 19:12:00 2025 by rpki-client