Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E9100CCDAF911EF9CC4A951762E951A.roa
File: 5E9100CCDAF911EF9CC4A951762E951A.roa (raw, json)
Hash identifier: BLzDavJB8izkLctL+YVpCLh3mYioLs8Bu0hTaTAs7Ks=
Subject key identifier: D8:59:9C:2D:9B:FA:D8:07:49:C3:02:77:5B:63:C5:A4:89:87:41:3F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014909
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E9100CCDAF911EF9CC4A951762E951A.roa
Signing time: Sat 25 Jan 2025 08:50:04 +0000
ROA not before: Sat 25 Jan 2025 08:50:00 +0000
ROA not after: Sun 30 Mar 2025 08:50:00 +0000
asID: 63139
IP address blocks: 154.94.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84233 (0x14909)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 25 08:50:00 2025 GMT
Not After : Mar 30 08:50:00 2025 GMT
Subject: CN=6794a5bc-be87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:62:91:ca:c8:46:fa:7e:d2:12:3d:1a:3c:58:
05:5c:36:56:e1:76:b4:6d:5e:65:44:9e:d2:dd:df:
fa:ae:ed:08:62:92:43:8b:b8:6b:67:4b:51:4e:12:
82:09:64:99:f5:c6:05:25:ab:0b:f4:80:76:59:09:
b7:9e:e2:13:74:96:ea:d1:3d:32:f9:7c:49:cb:1c:
67:9b:b7:a8:04:2b:dc:98:bc:7b:d9:3a:3d:1a:99:
ad:52:f5:33:51:0d:e8:25:d6:83:9e:5d:d0:d4:ef:
3b:ce:4f:50:3c:5a:ad:cb:51:1e:5e:65:d4:51:88:
9c:57:05:a6:fc:60:4d:b2:b0:49:7d:31:75:b8:18:
e8:41:d1:e0:54:18:27:23:d9:2e:a1:39:41:e0:25:
3d:7a:e5:12:d4:4c:37:b3:fc:b4:65:b1:49:3e:11:
78:e5:63:f5:dc:d9:f2:e1:ff:29:03:38:1d:51:ff:
83:d5:4b:08:53:76:c4:26:a6:e9:90:6a:5a:b7:00:
cb:af:5f:95:15:0e:ab:dc:12:65:70:fb:0e:32:50:
7b:c0:cc:2f:b5:03:ed:db:aa:ca:d6:49:81:48:6a:
2c:85:d4:9f:fc:e7:fa:3c:79:dc:2a:39:8f:8c:67:
59:b1:4f:80:d5:7c:fb:5c:f0:3a:ca:c8:e4:3e:64:
da:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:59:9C:2D:9B:FA:D8:07:49:C3:02:77:5B:63:C5:A4:89:87:41:3F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E9100CCDAF911EF9CC4A951762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.111.0/24
Signature Algorithm: sha256WithRSAEncryption
28:9c:31:67:8f:de:25:3e:95:8b:96:60:07:ca:76:c9:b8:6e:
35:a2:72:ad:dc:a6:1a:e1:60:39:c9:ee:cf:20:a6:44:2c:54:
a7:01:25:19:bb:f0:a9:93:b1:54:54:16:79:58:05:84:f0:78:
2f:28:57:51:46:6d:d9:bc:76:2f:27:0a:8a:59:0e:32:df:57:
2c:5b:b0:ce:20:bb:d6:df:6c:d7:16:68:37:00:e7:97:82:27:
20:6b:0a:38:7e:e5:1f:7d:32:3b:be:4f:0d:fd:76:e5:6f:05:
76:10:aa:47:c1:6f:40:a8:2f:d6:cc:c1:48:23:b4:64:a3:02:
18:0e:fb:0c:5f:dd:e8:bf:2b:a2:bf:11:5e:d1:4b:60:15:8c:
aa:32:7f:24:d0:44:f2:97:6d:1a:fd:32:b3:2f:39:58:75:9d:
4c:bf:d3:38:0b:4b:bc:64:79:5a:af:fb:38:a9:5a:26:19:eb:
d9:9f:4d:a9:fa:41:06:92:95:d2:1a:12:2c:af:06:80:47:64:
3d:61:57:74:2d:e2:31:7a:1d:68:f3:72:25:50:28:1b:68:35:
27:fb:8d:08:dd:32:af:8f:6f:b6:43:3e:b1:41:69:38:0e:02:
27:31:f1:c6:23:bf:74:5f:2b:3b:ff:d6:f3:5a:ad:bd:f0:e5:
e9:bb:b3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 04:55:52 2025 by rpki-client