Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63643AD8E2D311EFA2D73C42762E951A.roa
File: 63643AD8E2D311EFA2D73C42762E951A.roa (raw, json)
Hash identifier: 504hNfF33agrgSDLVhKtNSRVaeRAj9Da3z9/sfVJ+8o=
Subject key identifier: B2:07:0A:11:BB:84:BD:0B:35:F6:0D:A1:AE:3F:EB:A6:8D:42:C1:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0150AE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63643AD8E2D311EFA2D73C42762E951A.roa
Signing time: Tue 04 Feb 2025 08:38:20 +0000
ROA not before: Tue 04 Feb 2025 08:38:17 +0000
ROA not after: Wed 30 Apr 2025 08:38:17 +0000
asID: 18229
IP address blocks: 154.210.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86190 (0x150ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 4 08:38:17 2025 GMT
Not After : Apr 30 08:38:17 2025 GMT
Subject: CN=67a1d1fc-6771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d4:1d:b2:c2:ad:07:5e:71:8a:1b:3b:28:88:
6f:ae:91:56:59:b2:23:ab:4f:ba:4f:38:95:d1:3b:
c1:08:5e:a2:bc:f8:e5:b7:2f:50:b5:a9:dc:34:cb:
e0:63:93:51:b6:5e:7b:18:0e:31:a0:d1:d7:1e:97:
3c:d5:56:8b:9f:06:69:cd:df:af:14:44:f0:8b:e2:
18:4b:32:81:2f:53:97:7f:ff:dd:27:12:b3:3f:96:
a4:92:76:c6:68:29:3c:aa:b8:3a:af:98:68:63:d1:
2c:ef:11:40:86:bf:1a:aa:6d:33:2b:4a:bb:9b:4a:
79:f8:4e:10:31:5f:6c:5d:ab:4d:43:15:55:23:bb:
03:01:7e:f7:53:6f:4a:93:68:81:bb:64:e1:a3:25:
88:69:2b:28:00:c6:41:f3:d0:8e:85:3e:58:9a:d8:
b3:35:93:08:b6:7b:89:ce:5c:90:3c:51:a9:62:57:
8a:17:75:99:35:27:36:16:2e:45:c1:a3:d7:03:fa:
29:a9:fd:c1:ab:c4:ac:b3:c0:c8:81:b6:d3:70:84:
3f:fa:ab:ee:45:20:05:13:86:ba:4c:be:9a:87:e3:
29:fd:03:e1:57:92:6d:4c:7d:c1:fc:30:ac:dd:f7:
57:fa:f4:c9:f1:62:4c:32:14:06:53:4a:25:a7:7d:
f9:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:07:0A:11:BB:84:BD:0B:35:F6:0D:A1:AE:3F:EB:A6:8D:42:C1:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/63643AD8E2D311EFA2D73C42762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.205.0/24
Signature Algorithm: sha256WithRSAEncryption
35:03:51:04:e5:6e:05:87:45:f4:ca:9d:56:3b:c3:dd:82:9f:
0a:e7:ec:17:9e:78:f4:84:86:a7:5a:c9:aa:96:1e:7e:ea:35:
43:f5:8e:76:f7:66:c5:e8:76:7f:1b:95:43:16:f8:53:4b:f8:
9b:16:f2:82:ba:c1:cb:68:fc:bb:14:45:47:9e:c4:b8:c0:a5:
9d:a7:95:12:a7:36:e0:ba:7f:45:7d:b7:87:a3:3a:85:b9:f1:
ec:61:57:1b:5f:70:98:c6:2a:56:bb:da:24:57:30:0a:5c:ac:
d4:0f:ab:da:5e:91:55:51:c2:59:6d:94:81:ee:3c:73:11:04:
27:49:03:b8:fe:3f:76:ec:ba:0e:b8:78:99:93:38:d4:b2:14:
9d:0a:33:2d:30:a7:70:07:41:1e:6a:94:57:4f:76:1b:92:9f:
3d:5e:98:d1:e2:f2:d7:bb:76:a8:e2:14:47:1c:01:41:13:59:
f6:ec:cd:0a:50:87:7d:ff:5c:bc:60:2b:ce:1f:f8:b7:13:7a:
2f:e5:be:e7:f7:3d:c2:97:d6:cb:28:e5:4d:eb:ea:54:ec:bd:
0d:c5:3d:38:75:78:0d:de:e6:92:f5:1b:db:ed:c8:e0:fa:86:
63:54:96:cb:fe:5a:da:1d:ad:fb:21:b6:cd:07:3a:28:f0:48:
51:84:7a:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:19:11 2025 by rpki-client