Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/704D5C04E31711EFAAF33E83762E951A.roa
File: 704D5C04E31711EFAAF33E83762E951A.roa (raw, json)
Hash identifier: m7TOJxbWtcgbd0FXcZNOmUy9+7q47khbWZjJT7j05/A=
Subject key identifier: 64:35:01:C9:CC:43:DB:93:10:24:EC:1A:AF:51:41:41:AE:C2:BD:B6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01512F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/704D5C04E31711EFAAF33E83762E951A.roa
Signing time: Tue 04 Feb 2025 16:45:28 +0000
ROA not before: Tue 04 Feb 2025 16:45:23 +0000
ROA not after: Wed 30 Apr 2025 16:45:23 +0000
asID: 18229
IP address blocks: 154.210.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86319 (0x1512f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 4 16:45:23 2025 GMT
Not After : Apr 30 16:45:23 2025 GMT
Subject: CN=67a24428-524d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:25:6f:5c:67:b1:f8:8d:4d:51:7f:11:a4:af:
3a:b0:93:96:7f:94:46:c2:28:e1:db:04:6c:4c:4a:
b8:2a:b4:4a:dd:d1:ad:6b:90:c3:db:94:a7:91:20:
24:b1:06:e1:25:e3:63:4e:fb:e5:9f:82:59:65:95:
78:29:54:1b:bb:7b:d5:93:e2:98:81:9d:0e:bc:6c:
6c:af:f2:90:f6:e1:e4:e6:a5:32:95:72:9d:95:0c:
93:3f:ac:51:18:53:fb:fb:dc:26:c8:7f:e4:da:6c:
7d:a1:dd:a6:a7:38:37:80:4c:ec:10:9d:be:ab:57:
f9:dc:1f:91:90:3d:da:1b:0b:65:2f:31:78:0b:fb:
81:bb:89:63:f2:81:6d:57:e6:cc:91:c9:0b:9e:42:
36:8b:0b:fd:49:35:bd:b2:44:4d:90:30:28:29:e3:
40:69:82:4d:83:dd:bc:0f:37:cd:b0:31:bf:fe:b1:
d3:b2:c6:2e:e9:23:ce:28:7b:f6:76:6b:6b:c8:11:
68:ce:6d:fd:fe:fb:22:2d:8c:d9:6e:5b:72:20:2b:
e7:2e:c5:8a:d8:22:d2:dc:78:18:57:7c:4f:b4:1d:
f2:54:52:f1:fc:9c:e5:7a:3a:b8:e1:ee:65:51:96:
13:ff:b4:c6:91:4c:4b:65:78:f1:4f:e2:45:98:ec:
4b:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:35:01:C9:CC:43:DB:93:10:24:EC:1A:AF:51:41:41:AE:C2:BD:B6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/704D5C04E31711EFAAF33E83762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.165.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:50:e9:d1:e8:70:4e:3b:16:8b:d7:e9:eb:e4:62:ef:9b:97:
4b:ca:d2:a4:49:49:8c:32:91:c3:e1:33:7d:3a:55:4c:e0:9c:
93:50:6a:79:f4:3e:79:65:cf:d5:d5:69:fd:af:6c:f5:40:6a:
c3:29:91:78:43:9e:eb:d3:08:03:cc:23:2a:e1:a0:e8:b6:16:
3f:51:dd:a8:5d:85:bf:cf:96:1f:0f:58:59:b5:80:cf:01:71:
fa:25:4c:68:fb:18:19:e5:f5:60:0d:23:90:49:dd:f7:86:d6:
08:37:c6:4a:7b:64:cf:0b:6d:87:9f:bf:b6:46:d0:f9:7f:0c:
ce:4c:7c:80:37:20:73:24:85:93:58:11:9d:bd:fd:46:6b:28:
b0:58:f4:bc:85:21:01:53:a2:ea:3b:59:d8:e9:a4:2a:f5:18:
c3:6d:e3:62:b6:ee:db:68:ed:24:a8:31:38:19:96:8e:59:95:
8a:4b:89:82:0d:53:6e:d4:1e:04:f2:03:78:67:9e:e6:ea:fd:
ce:5a:b2:9d:18:15:25:69:9a:25:ed:f4:a4:4a:22:2d:b3:07:
86:65:2f:00:7a:c4:d6:05:f0:d8:8b:55:3d:2b:9e:fc:8d:f7:
e7:b2:5c:79:4e:53:7e:de:64:1e:3e:d6:c1:68:4e:00:a5:d7:
b8:07:67:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:11:12 2025 by rpki-client