Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9E9F9E6D8B711EFB788EC94762E951A.roa
File: F9E9F9E6D8B711EFB788EC94762E951A.roa (raw, json)
Hash identifier: FZ2V3ygPzw6+EsLDAr3umr9uZ0prstcl1QbzUZC27BQ=
Subject key identifier: 1F:4C:61:EE:9D:81:4E:80:A3:D3:57:FD:D7:67:AE:79:B2:73:AC:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013F1C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9E9F9E6D8B711EFB788EC94762E951A.roa
Signing time: Wed 22 Jan 2025 11:56:55 +0000
ROA not before: Wed 22 Jan 2025 11:56:52 +0000
ROA not after: Sat 08 Feb 2025 11:56:52 +0000
asID: 18229
IP address blocks: 154.210.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81692 (0x13f1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 11:56:52 2025 GMT
Not After : Feb 8 11:56:52 2025 GMT
Subject: CN=6790dd07-8d56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:67:aa:ff:12:ce:b0:a8:95:a7:ff:a4:55:fa:
cf:a4:8b:91:23:00:89:9f:77:01:18:22:8a:fc:fc:
30:76:a5:03:ab:77:d9:09:c2:50:67:be:d3:c5:9c:
da:53:5e:ea:a8:ba:0a:0a:97:e2:8a:82:3e:65:42:
3e:ec:23:cd:73:dc:7f:40:8b:68:45:84:39:67:d3:
bf:b4:65:6e:40:53:04:41:18:09:1a:f1:bf:06:60:
0e:78:66:f5:85:90:73:16:2c:3e:5c:38:ea:d7:02:
5c:e8:b2:f1:d9:b6:07:04:2f:b1:87:c9:06:fe:a1:
31:75:42:cf:6c:25:b0:04:90:40:27:d2:52:e6:e7:
15:a5:09:ef:99:40:bf:5b:4f:b7:8b:c0:3d:6c:e7:
2c:07:4e:51:4a:de:f7:27:13:e7:b5:81:56:a5:bb:
29:ea:a2:17:9d:66:76:11:a0:7c:4a:d8:0b:e4:96:
78:d8:ab:b3:6f:c6:78:c1:94:02:31:4e:c1:b6:ce:
6c:11:86:e2:90:b0:9b:b9:b9:3c:18:12:28:24:2b:
8c:cb:7f:18:11:9f:ee:8e:fd:0d:b7:94:09:51:7d:
81:ad:fa:dc:e3:a5:67:79:10:6a:c5:13:b6:7c:b3:
b6:d5:13:69:78:f0:ae:f6:07:b5:e1:5b:71:f6:9f:
08:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4C:61:EE:9D:81:4E:80:A3:D3:57:FD:D7:67:AE:79:B2:73:AC:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F9E9F9E6D8B711EFB788EC94762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.209.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:1c:14:8b:8f:29:c8:d7:be:3e:70:04:2c:21:3a:23:7f:82:
bf:b4:cd:1a:ba:dc:62:8b:1c:73:c7:c1:04:e8:4b:0f:44:82:
55:ff:01:52:66:2f:c6:12:71:9b:0e:9d:26:74:93:e1:f8:dc:
d4:ea:18:72:c4:50:81:2e:f3:b3:9d:7b:56:9d:8f:6c:c7:d8:
94:e7:8b:fa:05:68:f1:68:a6:8b:51:9b:fc:86:27:b6:1a:7b:
3c:a8:7a:b9:79:89:5a:ca:db:13:a5:6d:44:b3:01:4c:87:2c:
77:30:ac:4f:0f:ce:d7:16:ec:50:db:7e:cf:7c:be:91:d4:43:
34:c2:4d:85:f3:72:0b:c1:bc:13:1f:6f:93:3a:7f:17:51:62:
69:05:74:5b:ef:20:56:b8:ad:49:32:54:f2:79:e6:87:8a:d5:
de:13:7f:00:27:81:15:89:e3:e4:f9:10:ec:d3:fa:ec:04:b8:
2c:89:fd:eb:99:41:9a:dc:83:59:2b:fc:85:f2:d3:b4:c1:8c:
5e:fd:87:0d:d0:6d:0b:94:9a:7d:45:78:85:85:70:09:26:9e:
65:44:69:b9:06:b7:3c:f6:81:42:f1:0c:5e:05:88:61:8d:3e:
35:6e:6f:90:3b:11:ce:26:65:27:c5:c1:69:66:87:db:4b:6c:
42:c2:98:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:43:12 2025 by rpki-client