Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/066DE418DC8011EF9D3C639C762E951A.roa
File: 066DE418DC8011EF9D3C639C762E951A.roa (raw, json)
Hash identifier: nBuuE77kgz/yFMTWcshPbozNGiZnYUQWbkXSnMSWeQc=
Subject key identifier: 83:D1:45:23:3F:89:95:42:A6:85:40:F2:62:12:86:EF:7E:E3:01:C9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B65
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/066DE418DC8011EF9D3C639C762E951A.roa
Signing time: Mon 27 Jan 2025 07:26:29 +0000
ROA not before: Mon 27 Jan 2025 07:26:25 +0000
ROA not after: Mon 03 Mar 2025 07:26:25 +0000
asID: 147176
IP address blocks: 154.215.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84837 (0x14b65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 07:26:25 2025 GMT
Not After : Mar 3 07:26:25 2025 GMT
Subject: CN=67973525-76da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9c:c3:e2:0a:91:a7:66:80:f7:93:f6:04:ef:
d6:0a:48:9b:13:c7:42:ae:71:b3:a2:98:c5:da:62:
69:a9:a9:54:68:28:b9:86:43:8a:02:3b:ed:46:ff:
85:8a:3a:ee:3b:6b:d1:b6:a9:1c:2a:73:4f:00:cc:
c7:c0:32:8c:fe:39:fc:6c:30:2f:19:1d:1e:66:12:
ad:e0:3c:8e:36:76:a5:64:a2:71:a9:90:30:3f:d0:
22:fc:5a:41:b1:2d:39:4d:7e:cd:c4:65:da:de:89:
dc:b8:13:96:f6:43:72:ac:bc:d1:ff:f7:eb:66:73:
cf:00:14:25:34:88:ac:80:a9:d1:a7:8e:da:5e:3f:
ff:b8:e4:eb:bf:a6:c6:c0:09:eb:a2:a4:65:79:af:
53:4e:de:b6:2e:4c:cf:1a:ad:14:f4:55:6c:3c:a5:
53:f3:b8:63:3f:25:40:ee:f0:35:24:3e:a6:1e:f7:
c2:7e:04:19:aa:ec:c3:c5:84:c0:44:bc:ae:cc:fd:
82:58:c3:79:34:89:17:65:50:c2:a3:d6:9d:4b:5f:
af:d8:3b:a9:76:7a:9d:cc:68:ff:49:8a:c1:4c:cc:
05:fb:4d:20:96:93:27:b7:fd:47:30:1c:a4:56:35:
9a:69:1e:47:f7:f2:3b:bf:f7:3a:e8:51:41:f1:a6:
de:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D1:45:23:3F:89:95:42:A6:85:40:F2:62:12:86:EF:7E:E3:01:C9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/066DE418DC8011EF9D3C639C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.215.14.0/24
Signature Algorithm: sha256WithRSAEncryption
85:78:eb:22:d5:4f:84:4e:4b:1e:57:04:0e:74:bd:c0:96:0d:
9a:7a:e0:fd:9f:8b:ca:19:55:cd:9b:5a:6c:ca:5c:cb:9c:3e:
e1:a4:ad:7f:d9:09:ae:e0:48:3b:a0:f6:ee:5e:c2:9a:b8:32:
d5:6e:ad:7d:92:28:09:cd:d6:4f:fa:63:f9:68:8b:f2:7b:0b:
78:53:4c:79:46:d2:d6:7d:3b:2c:b8:d3:e4:8a:5b:7d:f5:fe:
33:52:dd:4c:82:50:df:2f:08:e1:66:41:a9:19:7d:26:01:a9:
39:c9:ae:32:6e:c6:08:f9:f1:13:84:56:1c:e7:38:30:a8:68:
aa:7f:fe:61:49:f2:65:3f:67:8b:66:9a:7d:57:bc:89:23:41:
4b:5d:ab:82:d3:e3:46:78:21:d2:d7:89:07:d4:fa:93:9b:dc:
ed:83:ae:f4:b2:80:25:24:01:1d:33:d3:4f:b6:39:d2:8c:ba:
8c:b7:81:36:03:41:cd:8c:24:ca:b9:7a:b0:e7:18:d8:4c:fd:
ed:b2:4b:5a:f5:2e:91:24:9d:1f:19:ac:02:d6:cf:1b:0e:c0:
ca:d4:96:a1:0b:bc:65:5c:60:39:84:c9:2c:8d:bb:e3:71:a6:
36:63:14:de:6f:2f:0d:08:0a:24:35:32:06:3d:12:6f:49:3e:
f6:59:4b:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 02:36:54 2025 by rpki-client