Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/210B1B50C8B311EF9FE80B58762E951A.roa
File: 210B1B50C8B311EF9FE80B58762E951A.roa (raw, json)
Hash identifier: kIaiONkZa2dByiapBi42QQACnonnmPZ+b/nWi39t2mY=
Subject key identifier: AF:E1:9D:7C:48:88:5A:DD:2A:63:22:12:EA:8E:B0:6B:31:03:4D:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131BA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/210B1B50C8B311EF9FE80B58762E951A.roa
Signing time: Thu 02 Jan 2025 02:41:55 +0000
ROA not before: Thu 02 Jan 2025 02:41:51 +0000
ROA not after: Mon 13 Dec 2027 02:41:51 +0000
asID: 17561
IP address blocks: 154.220.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78266 (0x131ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 02:41:51 2025 GMT
Not After : Dec 13 02:41:51 2027 GMT
Subject: CN=6775fcf3-fce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:40:e9:9c:f0:e7:65:92:df:eb:fd:77:63:04:
e3:5c:43:e5:36:d2:ec:ce:cb:a2:7b:e1:56:e0:d4:
68:b7:1f:ec:ae:a8:cf:72:80:b6:cf:1f:a3:bf:89:
af:61:7b:ee:de:7a:7b:3e:07:7c:99:99:f0:c3:01:
70:ba:6a:98:a7:76:b8:aa:e8:71:72:1c:7d:dd:72:
58:fe:bb:72:6e:63:2d:49:c4:08:0f:dc:91:e7:a6:
82:a9:25:01:96:36:ba:94:5d:d6:75:25:e8:4c:ba:
c2:02:53:2c:76:0b:67:99:c2:fc:d2:59:ec:3e:17:
91:8c:40:ea:e6:93:a9:9f:92:f7:03:e3:68:cb:93:
7a:5a:b9:22:6d:fa:2c:6a:5b:12:15:0b:7b:c3:b5:
ea:7b:e9:ab:64:72:00:fd:11:97:67:77:0a:73:6b:
94:2f:cf:6e:93:3c:e1:9d:e5:ab:63:e3:58:14:1b:
18:e2:a4:5a:95:d8:0a:75:f3:89:80:60:de:21:61:
20:cb:4a:33:3b:d4:4c:17:8e:bd:54:46:dc:f8:c4:
17:4e:c2:96:89:7a:51:72:4a:8f:a8:ca:b2:4e:c4:
11:66:6c:ad:39:15:30:9e:36:ba:5d:7d:39:3b:23:
b4:aa:99:7f:1b:9f:8b:2f:ed:58:72:36:a9:56:ee:
1b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:E1:9D:7C:48:88:5A:DD:2A:63:22:12:EA:8E:B0:6B:31:03:4D:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/210B1B50C8B311EF9FE80B58762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.185.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:cf:6d:cb:02:b6:a7:1d:87:dc:cb:48:73:e4:82:aa:79:ba:
41:88:fd:da:72:dc:40:38:3e:85:c4:d8:6f:af:24:21:fd:68:
76:b3:87:f3:fd:e4:de:90:d6:62:5f:53:86:4d:14:32:04:d9:
77:b0:72:ac:19:62:39:7b:3c:fd:66:6f:76:8a:0e:3a:70:66:
30:ff:5d:20:0d:af:d1:d3:e5:39:ae:f7:b5:d4:1f:58:37:14:
20:b5:e0:1b:4e:e0:93:ba:d9:50:cb:31:9b:91:1c:8a:d8:79:
d6:f3:d3:60:e0:51:13:92:58:8c:58:db:b5:b1:61:f1:dd:bc:
8c:91:93:13:93:85:05:21:13:75:b9:1c:e5:7e:5b:3e:f1:87:
71:86:58:6a:bf:39:a8:a4:d4:5d:d9:79:42:f2:3c:9e:f4:34:
7e:d2:65:ef:11:19:75:36:35:85:b4:42:06:70:62:51:c5:a4:
02:3d:4a:da:55:87:8c:2e:dc:49:a8:f8:3f:2c:8a:8a:ae:32:
36:2e:8f:fa:5b:d3:5a:43:a9:29:59:39:6d:6f:4c:80:79:54:
38:eb:46:1f:24:83:30:c7:16:9f:fe:08:35:b9:d6:f8:60:92:
80:36:4c:5f:e2:21:2e:f4:8b:ac:0e:78:0e:74:4f:99:f8:2d:
c3:77:1f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:33 2025 by rpki-client