Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7D722A8D98D11EF9FDB1BB4762E951A.roa
File: D7D722A8D98D11EF9FDB1BB4762E951A.roa (raw, json)
Hash identifier: YlHDaH+JkEQLBDLCN0C1HhmxuFPlDtZUdnE55FGEP/Y=
Subject key identifier: 77:2D:A1:7E:95:70:AA:6D:1A:B8:E5:68:81:35:E6:D5:4D:14:F3:40
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014274
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7D722A8D98D11EF9FDB1BB4762E951A.roa
Signing time: Thu 23 Jan 2025 13:27:51 +0000
ROA not before: Thu 23 Jan 2025 13:27:47 +0000
ROA not after: Tue 13 May 2025 13:27:47 +0000
asID: 138915
IP address blocks: 154.205.158.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82548 (0x14274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 23 13:27:47 2025 GMT
Not After : May 13 13:27:47 2025 GMT
Subject: CN=679243d7-5fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:33:e9:88:17:1c:13:b3:51:19:6b:bc:8d:31:
3a:a5:bc:3c:51:50:83:43:82:ac:c0:a3:96:a5:b3:
88:51:5e:51:fb:33:e8:3c:25:6c:92:b5:d0:36:5f:
e1:3a:0f:ba:94:ca:6f:ad:d9:3e:08:a4:6b:c2:23:
72:e0:38:9f:4e:3a:26:f9:82:cc:be:4d:6a:6e:14:
72:72:d0:35:22:cf:86:2f:16:db:ad:c5:6c:da:53:
22:42:f7:4c:d5:58:8c:c5:6c:1a:c8:91:23:65:5f:
1c:a8:84:ec:a7:b4:89:76:eb:3b:04:29:a9:0b:24:
36:77:38:72:50:5e:1f:db:9a:45:00:f2:39:65:33:
a7:8b:c5:ff:5c:ad:34:6b:b8:a0:12:6f:ca:85:a1:
1d:24:54:9f:e8:56:69:06:3f:26:b8:57:e6:b5:16:
de:17:69:af:cd:1b:7a:02:9b:31:0a:ae:09:e0:ba:
11:ac:bf:6e:f7:66:7a:98:41:06:f9:a0:fb:19:86:
35:1f:08:e6:ae:9f:ea:e2:31:97:53:33:96:6d:f6:
c8:d4:9b:cd:b0:2e:62:28:bf:50:fb:9b:de:e9:8d:
f5:c3:0e:2a:7d:43:fa:64:7a:c6:f1:0d:80:c3:d2:
55:89:fa:84:62:cb:c4:33:c4:50:cf:b4:42:04:17:
f7:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:2D:A1:7E:95:70:AA:6D:1A:B8:E5:68:81:35:E6:D5:4D:14:F3:40
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7D722A8D98D11EF9FDB1BB4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.158.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ec:b5:df:92:cc:2e:21:bf:dc:f6:09:f8:20:0f:17:4b:97:
ee:75:3e:2d:50:62:70:73:d9:5a:4b:ab:ac:67:03:fa:e5:33:
da:ef:1f:8d:aa:89:6a:25:64:05:ad:23:a5:96:ba:04:fb:47:
59:dc:0f:f4:cf:4b:16:56:8f:09:c7:e3:25:6f:49:6e:c4:db:
e4:33:fc:5f:7c:3f:50:67:5f:68:0b:11:8b:cb:e1:ea:44:b5:
55:e5:2b:6a:6b:94:7d:08:6b:66:16:e9:97:c3:8f:c0:11:3c:
13:16:8f:63:ce:ce:57:d9:5c:b6:12:16:ef:c2:04:b6:1c:dc:
e1:82:da:9c:37:75:c3:4a:70:77:0a:ca:b0:c1:03:f3:56:15:
06:07:b8:ba:fd:0c:51:af:8e:93:ba:43:93:16:11:53:2a:06:
25:98:17:cd:ae:e1:d5:5e:fe:48:17:ac:e4:67:50:85:11:fb:
71:b0:df:d1:73:c6:70:79:80:d0:7a:fa:f1:4d:8c:53:c7:45:
e0:d4:05:bd:8f:e5:90:07:e1:e6:ec:d8:4e:d0:49:29:f4:50:
90:e7:70:e6:9c:23:58:c0:90:8a:6f:7a:48:65:84:0c:b0:b7:
18:5d:ac:96:21:7a:a7:21:16:6b:25:d4:6b:23:74:61:11:87:
1d:62:50:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:23:12 2025 by rpki-client