Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/020F2DA6DD7411EFA0CC488D762E951A.roa
File: 020F2DA6DD7411EFA0CC488D762E951A.roa (raw, json)
Hash identifier: W6ZunVwZUrrm7QJnMvJyUlKrkViCZAdY/9RuAlvjKSM=
Subject key identifier: 6B:FD:36:A3:00:CC:EA:81:34:EB:7F:35:3E:4C:BC:78:39:C9:89:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D0A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/020F2DA6DD7411EFA0CC488D762E951A.roa
Signing time: Tue 28 Jan 2025 12:32:59 +0000
ROA not before: Tue 28 Jan 2025 12:32:55 +0000
ROA not after: Tue 25 Feb 2025 12:32:55 +0000
asID: 7018
IP address blocks: 154.206.48.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85258 (0x14d0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 12:32:55 2025 GMT
Not After : Feb 25 12:32:55 2025 GMT
Subject: CN=6798ce7b-6448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:74:da:7f:0e:2c:b2:de:54:23:e4:26:5d:
46:06:fa:db:1b:f1:39:b3:99:9c:29:ff:69:4c:ce:
59:36:b0:92:db:b5:77:fa:f6:cd:71:85:5c:ac:e7:
0b:da:3f:cb:81:66:e6:85:3f:c0:29:3a:c6:41:f1:
a1:a8:c0:52:2f:d1:6b:88:fe:c3:2a:38:a3:6e:b1:
19:49:68:a5:37:00:d1:a8:fc:53:82:fe:03:8e:28:
30:17:30:f0:55:0b:31:b8:56:85:82:e2:43:3f:45:
f0:16:6d:57:c8:fb:dc:17:0b:3f:8c:eb:03:94:81:
6b:04:3d:e4:c8:73:40:1c:10:40:6c:a2:2c:7c:95:
0f:0c:bf:5f:b2:98:d8:ac:b1:08:7b:df:fa:95:2a:
50:6e:80:a5:1c:01:29:37:0d:98:49:e7:e3:c3:99:
3b:02:79:3c:81:e9:30:ce:98:f9:8d:72:79:da:b1:
48:f3:ce:a7:00:96:cd:99:f2:00:34:67:a4:dd:01:
ed:ea:c9:15:ca:5f:59:91:9e:13:1d:6e:9f:ca:42:
39:0f:ad:82:0e:b1:40:2f:4e:3e:28:3f:aa:7d:ff:
7b:30:87:2b:5e:d0:b3:1e:32:0a:80:38:0e:1c:94:
66:c4:50:dd:33:28:6c:d2:88:aa:ba:c4:e2:ef:d1:
ad:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:FD:36:A3:00:CC:EA:81:34:EB:7F:35:3E:4C:BC:78:39:C9:89:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/020F2DA6DD7411EFA0CC488D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.48.0/22
Signature Algorithm: sha256WithRSAEncryption
46:b2:13:52:12:03:3e:0f:96:60:43:eb:5f:e0:a1:af:b5:64:
2b:57:f4:77:17:d0:b6:2c:52:7a:b8:d5:50:7f:1d:2d:0e:81:
ad:e4:23:e1:7b:9d:46:e6:dc:aa:cd:21:ab:1e:f6:37:7d:c2:
b9:c0:df:86:22:09:06:8f:42:2d:70:51:13:7c:27:4d:65:7a:
44:fe:1a:3e:9d:36:e7:23:dc:b3:69:34:d8:b0:4e:c7:df:86:
1f:d1:03:1e:42:ed:85:d7:5a:a4:42:1c:be:6d:3c:a1:bb:e1:
1c:a2:8c:63:c5:6b:c9:f5:64:6e:fd:a5:ac:81:59:b6:6e:05:
d3:28:eb:98:2e:da:f0:b8:2a:f9:bb:db:1e:4f:8d:18:d4:60:
63:2e:bf:77:54:38:37:55:73:35:03:d7:91:81:0b:6b:d2:52:
ce:5b:3c:5b:1f:e3:a8:ac:f6:4c:96:d2:aa:ba:27:fd:b3:3b:
21:de:b7:3f:1d:e5:5a:b5:fa:fc:4c:85:9f:ab:81:68:ff:12:
6c:6a:07:5f:ed:99:00:a7:8d:29:41:f0:21:5b:6e:c5:92:0a:
09:df:ab:b2:4c:65:47:1b:bb:10:b6:0a:3e:9a:8d:31:31:0b:
e8:e7:8f:4d:63:3a:18:2d:cc:76:b3:b3:77:1d:33:ec:33:40:
f1:5a:01:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 15:31:30 2025 by rpki-client