Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF7CD43CB21011EF8ED5986D762E951A.roa
File: FF7CD43CB21011EF8ED5986D762E951A.roa (raw, json)
Hash identifier: ILvjzSellv2exb1R1IlapI3uaUdKkc0QhehWlPL9+QQ=
Subject key identifier: BD:45:F5:91:D8:F0:57:27:26:82:78:C4:9B:A6:1A:AB:E0:EF:E5:90
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0117B2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF7CD43CB21011EF8ED5986D762E951A.roa
Signing time: Wed 04 Dec 2024 07:25:55 +0000
ROA not before: Wed 04 Dec 2024 07:25:51 +0000
ROA not after: Sat 01 Feb 2025 07:25:51 +0000
asID: 46071
IP address blocks: 154.209.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71602 (0x117b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 4 07:25:51 2024 GMT
Not After : Feb 1 07:25:51 2025 GMT
Subject: CN=67500403-43ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4e:f1:1a:f1:45:dc:7c:cd:12:3e:fe:50:12:
54:bf:0b:e3:53:b1:bb:d7:ba:04:38:fe:5a:40:17:
48:1f:e9:3a:42:4d:8f:0f:9f:12:5a:ca:24:3c:32:
49:95:1c:a6:a4:f3:34:15:c9:5b:8c:62:ae:e6:d1:
d0:c6:72:bf:35:3a:43:d6:99:41:ce:1c:1b:a8:30:
eb:59:8d:bb:78:18:f7:6c:aa:b9:47:5e:47:1e:3c:
75:5e:35:80:cd:5e:d7:56:36:4f:de:7c:b7:d0:4d:
6c:be:25:44:8b:a9:1e:71:3c:48:8e:0d:fc:a2:87:
fe:e9:18:37:97:fb:ea:d0:de:14:d6:cf:2b:7d:46:
70:ae:34:37:24:76:58:34:d4:f2:93:ca:70:aa:40:
ac:69:10:1e:29:14:85:0f:0b:3c:e5:6e:9e:dd:67:
d4:2a:ff:2f:ee:84:d6:f5:67:8f:37:d8:56:92:39:
e1:6d:32:54:6c:85:5f:62:ab:ba:45:9b:ab:7e:96:
a2:91:b6:33:7d:ad:4f:ed:22:ce:12:b6:46:e4:b2:
a8:44:02:c6:1c:f9:b8:1f:82:77:0a:48:29:2d:e0:
f8:07:04:8d:10:a5:57:80:62:1d:5c:51:e1:b1:1d:
94:8d:fa:8e:68:c9:87:58:d1:d1:42:b7:6b:89:41:
28:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:45:F5:91:D8:F0:57:27:26:82:78:C4:9B:A6:1A:AB:E0:EF:E5:90
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FF7CD43CB21011EF8ED5986D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.6.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:88:2d:38:52:36:f4:2e:9f:0c:25:cd:e2:ff:ff:55:f5:8d:
dc:e9:34:37:88:dc:4b:2d:55:48:66:7e:de:f2:50:11:c5:7d:
ff:63:ff:24:db:a3:a0:b7:c6:61:0c:49:29:1c:6c:3f:ac:94:
62:ba:d0:f8:2c:61:35:dd:84:12:18:2a:ce:2e:c6:db:a4:cb:
a3:88:15:8e:c9:6f:fb:6b:ce:74:63:8c:97:50:61:62:eb:eb:
ea:f3:7a:df:67:fc:27:0b:44:42:04:29:dd:5d:a8:94:d9:45:
ab:d4:57:f5:2d:c6:73:9a:3f:f8:ab:be:1c:af:0a:23:8b:23:
2e:d6:33:a9:08:eb:b6:62:74:29:30:ac:05:0d:48:6b:30:cc:
d8:16:9c:f7:09:35:f3:aa:51:f1:1f:8e:dc:e3:81:6f:30:f3:
74:87:2d:e5:a1:78:ae:1b:f9:28:cc:c3:ed:27:c7:2a:4b:12:
ec:8e:59:e6:58:d1:7d:01:bd:3e:26:e6:a8:1e:51:52:c6:60:
ea:ea:aa:c3:f2:fc:e8:46:18:c4:22:c4:c9:04:c8:1d:cc:c3:
9e:63:9b:b9:b8:38:e8:00:bf:21:16:db:6d:6e:2e:a8:8f:eb:
d6:06:51:fb:2f:1e:fd:ed:38:25:04:4a:c7:60:77:42:79:d6:
3b:7b:1c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:50:12 2025 by rpki-client