Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A0EAF42E31611EF8EB01B79762E951A.roa
File: 1A0EAF42E31611EF8EB01B79762E951A.roa (raw, json)
Hash identifier: agTp836JEV18ZwHM7y0sqfrxl419tSKwmB3L1vknmKg=
Subject key identifier: CD:DA:CC:CB:70:7B:5B:62:68:6B:34:1B:7E:70:6F:8D:71:CB:13:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015127
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A0EAF42E31611EF8EB01B79762E951A.roa
Signing time: Tue 04 Feb 2025 16:35:54 +0000
ROA not before: Tue 04 Feb 2025 16:35:50 +0000
ROA not after: Wed 30 Apr 2025 16:35:50 +0000
asID: 18229
IP address blocks: 154.210.138.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86311 (0x15127)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 4 16:35:50 2025 GMT
Not After : Apr 30 16:35:50 2025 GMT
Subject: CN=67a241ea-089f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:67:32:63:7e:78:91:8d:d3:b4:cc:82:4b:0a:
dd:9a:7b:15:99:07:bc:17:0b:8a:42:6c:3c:89:b1:
01:72:80:e4:57:46:9e:f7:ea:a3:7e:a5:70:59:a9:
5d:b4:54:5e:36:aa:a6:72:09:fd:c0:f6:28:fd:67:
ef:55:81:4e:3e:df:b9:df:de:ca:38:95:2d:9b:85:
57:8a:7f:76:ab:61:d4:2b:72:22:14:01:1f:2b:db:
a2:d4:57:96:1e:c9:c7:7e:2d:3d:34:66:21:16:82:
2f:e0:24:2b:96:18:7f:8d:6c:a9:3d:61:17:00:99:
86:aa:0b:42:3e:93:86:9f:34:cb:43:a7:6d:e3:40:
38:9b:9f:4e:67:ca:9c:79:32:b8:4f:0a:35:90:da:
6a:1a:ba:e8:9a:b5:1a:78:1b:ae:19:87:c9:f9:1d:
ec:d0:a4:2d:66:b0:02:f8:17:a1:ea:58:d5:17:bd:
14:5a:08:6c:c2:28:f1:45:34:2b:c4:56:7e:8a:53:
4e:42:4b:2b:e0:28:06:a7:96:dc:6c:c5:68:e4:16:
33:4c:6f:ad:14:42:8a:79:bc:67:ed:a7:fa:95:a2:
73:3a:ab:a3:45:d3:82:b1:49:2a:dc:eb:7f:1f:d6:
f5:89:4a:38:a7:ca:5a:29:4c:7d:c0:d5:8c:ca:ae:
fd:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:DA:CC:CB:70:7B:5B:62:68:6B:34:1B:7E:70:6F:8D:71:CB:13:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1A0EAF42E31611EF8EB01B79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:36:26:59:de:ac:46:03:fb:55:d7:e6:23:7e:0a:c1:ae:76:
55:a6:bb:18:af:c3:b0:78:de:15:6c:d3:8f:ac:bb:b7:af:0d:
77:6d:ef:37:82:0c:c3:97:73:80:65:eb:26:99:0f:ad:b2:5c:
ed:a7:e7:5f:e3:ef:1e:26:a3:9d:e6:8e:3f:be:92:00:f4:bf:
38:28:63:b8:bb:12:af:43:95:9b:97:23:2b:a8:68:c5:3e:2a:
b9:eb:3b:cf:5c:33:bd:7b:9c:50:6a:c7:70:b3:78:80:df:ac:
de:3d:d4:ab:91:ef:2a:ff:31:35:aa:86:f3:a2:72:f5:61:b9:
f6:66:51:bc:9e:26:62:6d:71:9a:df:58:2f:95:d5:dc:48:97:
03:20:14:29:41:2f:8c:41:6a:87:94:f9:70:90:93:eb:f8:21:
4b:32:1f:33:94:37:80:c0:97:6e:52:e9:c0:94:17:8a:38:0b:
be:86:d1:75:d6:88:d8:76:34:35:58:6a:3c:96:a5:5b:f2:97:
58:de:4c:b2:05:db:59:47:3f:26:76:40:45:2d:65:e8:2a:75:
30:cf:6d:ea:24:88:5a:fb:3e:5f:62:99:24:04:02:fc:2d:40:
c4:99:a1:ab:1a:3d:b2:9d:19:fe:07:3c:c6:f4:93:72:60:d0:
19:11:9b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:00 2025 by rpki-client