Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78B1907CD8D611EFA61FE65E762E951A.roa
File: 78B1907CD8D611EFA61FE65E762E951A.roa (raw, json)
Hash identifier: 5ywFJSzGSagr3JNLYYaZrHRiXiifCVzAzJxH71NEoa0=
Subject key identifier: A5:71:FC:9D:C4:08:FA:EF:5D:EE:01:17:7B:A6:D0:17:58:CF:08:74
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013FCA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78B1907CD8D611EFA61FE65E762E951A.roa
Signing time: Wed 22 Jan 2025 15:35:13 +0000
ROA not before: Wed 22 Jan 2025 15:35:09 +0000
ROA not after: Tue 01 Apr 2025 15:35:09 +0000
asID: 136907
IP address blocks: 154.93.100.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81866 (0x13fca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 22 15:35:09 2025 GMT
Not After : Apr 1 15:35:09 2025 GMT
Subject: CN=67911031-80e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:f5:70:6e:15:68:41:59:c6:ae:b5:90:75:00:
e4:b3:da:97:14:e7:fb:06:00:3d:39:c9:37:0d:2a:
43:f4:55:81:7b:32:d4:d8:92:b0:bb:c1:7e:ba:13:
17:c3:3c:37:11:2b:42:14:9f:a1:f2:bd:b7:df:03:
10:55:24:31:74:9d:19:56:a3:8a:9b:77:76:64:b4:
5a:a7:cd:cb:ee:e9:85:bb:b8:27:4a:e8:99:63:73:
ac:15:7a:a0:b0:53:b8:2f:bf:62:ab:f6:85:43:1c:
86:83:ca:5f:8d:6e:a1:57:f6:ec:3c:38:dc:16:43:
08:ba:47:37:a2:a7:ad:8f:4c:e0:67:43:51:fb:12:
e0:08:42:2d:fc:7f:43:24:03:14:f9:27:98:60:fc:
62:62:58:20:a7:86:21:f6:d8:e7:99:e4:04:66:99:
f4:b7:c5:c1:d5:42:4a:89:96:03:48:c1:a1:a6:6a:
f4:f3:e7:50:21:59:df:d9:8b:89:ba:87:92:51:dd:
4f:42:8c:2d:de:89:35:57:e3:be:37:27:e1:ef:c7:
47:ad:81:7d:c4:d6:2f:b5:6b:d5:3d:c7:a2:10:60:
50:7d:c3:b2:5e:bf:71:fd:6e:10:e9:48:8a:9e:d2:
8f:c3:92:f9:00:81:f3:dc:6b:be:03:17:7d:58:4e:
e3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:71:FC:9D:C4:08:FA:EF:5D:EE:01:17:7B:A6:D0:17:58:CF:08:74
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78B1907CD8D611EFA61FE65E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.100.0/23
Signature Algorithm: sha256WithRSAEncryption
50:d9:9f:8d:83:6e:cf:88:35:3d:2b:3a:18:fe:04:de:7c:66:
d6:c7:6f:11:49:c6:20:ce:b5:1f:2c:d6:a2:ad:ae:f8:6e:c7:
e7:c0:02:fc:77:50:75:ab:8a:3d:ec:44:09:fb:85:3a:e1:5e:
16:78:70:c1:57:31:7b:a1:66:46:ea:82:60:96:55:9c:20:88:
88:fb:aa:45:df:fe:66:ab:c3:17:59:a7:9e:ff:31:2a:eb:d1:
3b:72:92:2d:61:be:2a:f1:83:40:8f:c2:e9:4a:8f:fe:60:ef:
1b:1b:43:cd:f3:4b:e1:9c:ca:71:02:9b:9b:69:f7:30:22:e2:
56:74:f7:b0:07:87:1c:9e:6a:37:5f:45:65:f2:ef:43:60:ea:
b9:60:aa:fb:73:3e:2f:38:1f:4d:46:94:db:4c:ae:f4:51:55:
06:88:04:56:47:9d:b2:de:4d:89:ce:a0:23:76:09:eb:49:47:
2c:a4:f9:26:b2:55:26:d9:7c:24:65:bd:58:01:04:26:99:96:
e9:04:7c:92:41:3f:d1:0a:c4:6a:95:77:4c:97:e9:f9:50:51:
ca:ba:06:e3:d1:9e:fd:aa:bc:01:a4:53:54:05:77:c8:14:65:
59:25:2c:4d:c2:a3:04:fb:05:cc:24:86:82:a6:8c:74:6e:6a:
c4:d4:63:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:03:37 2025 by rpki-client