Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B5BF2C2C8AA11EFBBD75397762E951A.roa
File: 7B5BF2C2C8AA11EFBBD75397762E951A.roa (raw, json)
Hash identifier: 76dMZC69NqyT4dvvBXIpCfw87sFdtVNXZhDfVOasISo=
Subject key identifier: 2A:CC:77:7F:00:D5:0D:B3:6C:8B:50:D1:12:ED:E8:F8:E7:B6:EA:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013170
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B5BF2C2C8AA11EFBBD75397762E951A.roa
Signing time: Thu 02 Jan 2025 01:40:01 +0000
ROA not before: Thu 02 Jan 2025 01:39:57 +0000
ROA not after: Sun 12 Dec 2027 01:39:57 +0000
asID: 17561
IP address blocks: 154.220.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78192 (0x13170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:39:57 2025 GMT
Not After : Dec 12 01:39:57 2027 GMT
Subject: CN=6775ee71-3297
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:1e:5f:24:bd:49:e1:e4:05:1b:8a:d8:a0:21:
17:1e:dd:ff:77:32:5b:4b:7f:d2:67:ab:4f:ea:ae:
da:ad:aa:8a:f6:2c:11:06:0b:84:07:0e:37:77:2d:
0f:1e:41:52:54:25:dd:84:aa:7d:a0:c1:85:4c:85:
17:0b:c3:09:ce:2e:fa:24:69:b2:37:2b:5f:63:a9:
2b:ac:43:c8:86:b2:95:29:9e:ce:17:9d:5d:c5:2b:
8b:65:c5:c9:89:7b:bd:18:01:d6:f1:e3:ba:68:40:
47:7d:0b:4d:8a:95:b2:05:39:b8:c6:e1:f8:b5:c2:
59:13:73:2f:c1:26:a5:1a:e6:0d:02:92:c9:68:1e:
dc:01:e3:ab:ba:6e:cb:3b:19:3c:3d:ee:03:20:b5:
61:1a:78:55:70:01:fb:4a:bb:ab:06:fa:dc:f2:ff:
48:1f:f7:32:6e:2d:60:6e:e8:ff:28:34:a7:7c:88:
a2:23:de:29:04:de:0c:12:1a:35:4d:b3:a4:7f:2f:
44:b0:51:37:de:4a:c1:49:65:fb:9d:92:01:32:41:
c2:d4:55:94:66:a8:0b:bc:0e:09:c5:8d:27:bc:37:
b7:3c:4d:36:7d:d9:00:7b:84:a9:0d:7f:8f:de:a7:
ab:97:40:63:38:d0:f6:91:d3:22:b5:7f:34:f9:6b:
34:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:CC:77:7F:00:D5:0D:B3:6C:8B:50:D1:12:ED:E8:F8:E7:B6:EA:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7B5BF2C2C8AA11EFBBD75397762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.147.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:f0:17:d4:33:35:ac:30:b8:c0:84:6e:20:6a:7e:74:db:f4:
ae:65:75:66:69:e8:a0:cb:10:be:52:f1:28:23:e4:80:bd:08:
05:44:43:3e:d5:89:02:d2:f4:cb:57:18:d6:85:ee:1c:2e:58:
79:28:c3:9c:a7:d4:3e:99:9c:e4:b4:bb:23:02:1d:d8:2a:d4:
bc:9a:0a:68:55:85:39:56:78:7f:b2:2b:e4:78:44:98:5a:00:
7e:6c:9e:aa:da:2b:ea:4d:74:34:8b:57:69:6e:2d:20:af:9d:
27:70:ec:a8:4d:7f:3b:d6:0c:03:38:78:dd:63:0c:80:6f:a5:
b9:96:01:0a:0d:79:1b:f5:eb:82:f5:23:15:bc:f7:77:8a:a4:
8a:3d:1b:2b:dc:50:3f:2c:9c:ef:81:de:07:9f:e7:fe:77:65:
8b:c6:4e:52:b9:60:27:69:9e:3a:70:00:db:c7:2d:b9:01:c2:
a4:72:e0:31:fe:c2:f5:02:14:e9:cf:02:b2:ed:17:08:ae:3f:
e2:6c:a9:03:d3:fb:69:49:10:70:27:ef:d0:fe:96:cb:8c:1f:
a9:bb:af:15:6a:38:1d:b8:2c:b6:7b:20:e4:6d:98:2c:fa:8d:
13:20:cd:6e:b2:45:e2:c4:78:76:2b:fc:9f:17:f8:c4:36:df:
81:c8:95:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:57:51 2025 by rpki-client