Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6397CD7AEAE511EFA1844964762E951A.roa
File: 6397CD7AEAE511EFA1844964762E951A.roa (raw, json)
Hash identifier: xAUO8UC19qDnA3MbEjz+/vbweqXm46fhxxke3QzLzAw=
Subject key identifier: FF:88:56:8B:77:B0:CE:C9:D4:46:FE:1A:C8:D6:0C:84:F9:8E:59:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015747
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6397CD7AEAE511EFA1844964762E951A.roa
Signing time: Fri 14 Feb 2025 15:07:21 +0000
ROA not before: Fri 14 Feb 2025 15:07:17 +0000
ROA not after: Tue 29 Apr 2025 15:07:17 +0000
asID: 149440
IP address blocks: 154.81.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87879 (0x15747)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 14 15:07:17 2025 GMT
Not After : Apr 29 15:07:17 2025 GMT
Subject: CN=67af5c29-778f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1e:10:48:e0:4e:dd:eb:2b:cc:56:19:ed:7d:
10:4e:35:ce:94:aa:0b:ed:39:08:35:74:3b:d6:a4:
0c:89:06:d8:a5:7d:5a:a0:cd:ed:8d:04:83:07:9d:
0e:5a:bc:56:d9:64:3a:e4:c0:e2:e4:9f:bf:91:8d:
b3:16:4e:d8:36:f5:cc:95:76:32:3e:1b:f0:80:9d:
d4:d9:c7:13:d5:6b:f2:c4:38:ac:dc:6f:ac:23:07:
ba:0b:60:88:57:e6:db:35:89:f1:35:a9:95:e9:a7:
5e:02:de:55:87:7e:ed:fd:17:0c:c7:4d:c6:59:47:
de:61:5c:72:d9:71:d9:4d:92:e9:08:91:19:9d:ef:
82:90:dd:7f:64:91:31:ed:88:e1:ae:6b:60:4e:7d:
8f:19:8d:8b:80:c1:71:44:fe:27:88:c5:a2:5a:f6:
3e:22:09:e4:ee:84:2c:d6:88:d2:a4:5d:c9:b0:a7:
2c:a7:35:c8:c2:75:91:76:af:cd:90:63:1a:58:e4:
a7:9d:4a:14:ba:29:e2:dd:a5:46:da:f9:0a:98:10:
0f:05:c0:8e:d8:e0:ae:df:7c:b3:5d:c8:e6:69:07:
29:93:a3:e5:41:b0:20:ef:48:ee:1f:d9:82:46:31:
8b:97:ea:b0:04:67:43:8b:25:04:01:ef:3e:57:1f:
a0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:88:56:8B:77:B0:CE:C9:D4:46:FE:1A:C8:D6:0C:84:F9:8E:59:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6397CD7AEAE511EFA1844964762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.220.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:0c:5c:4e:8f:14:18:80:34:23:cb:83:7d:56:f7:38:64:46:
58:4e:e1:e8:02:c0:5d:ad:b3:97:d9:80:d4:97:46:ca:9c:ce:
f1:35:18:f9:02:4a:6f:f2:ef:ab:f7:67:c3:19:7f:28:7a:36:
01:18:3f:f5:c6:7a:7f:d4:fe:61:60:82:be:fb:73:55:86:b3:
7d:81:c1:1a:82:5b:3b:e1:6f:9f:ac:05:bf:87:a7:34:d9:59:
a9:68:3f:94:57:bd:26:ce:57:4a:22:70:87:89:38:c5:d2:5b:
18:e2:f7:2a:e0:04:87:96:cf:4a:09:a9:14:d6:a5:69:e7:ef:
6f:cb:ca:ad:7b:33:59:8a:f0:11:14:7c:5b:3c:30:de:a6:25:
80:30:6c:b4:25:65:fa:19:03:b5:08:5a:5d:16:c3:a6:91:de:
35:00:5c:46:31:cd:34:81:af:a1:ed:b7:0b:c0:e7:5d:83:47:
eb:26:23:f0:7a:f4:f7:95:0e:23:3d:69:d1:4c:b0:6e:41:92:
6d:74:b5:db:3a:77:14:7d:b0:6f:c1:51:07:bd:8b:25:bb:0e:
58:4d:c6:8b:21:fd:13:9f:3a:81:1c:9a:6a:f8:61:e7:c9:2b:
1e:18:02:39:bb:fe:e6:5d:66:69:b9:8c:0f:06:f7:6f:47:94:
d7:e0:84:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:16:32 2025 by rpki-client