Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C29F090DCA311EFA5E2D986762E951A.roa
File: 0C29F090DCA311EFA5E2D986762E951A.roa (raw, json)
Hash identifier: P4BuaUv7nXHZD7VA8Z1vNOkWO5feGxZg8/vIRmnCaVs=
Subject key identifier: 79:24:75:83:B8:E1:89:19:B0:34:A7:97:D5:A6:8B:D4:E0:E3:32:67
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014BDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C29F090DCA311EFA5E2D986762E951A.roa
Signing time: Mon 27 Jan 2025 11:37:11 +0000
ROA not before: Mon 27 Jan 2025 11:37:07 +0000
ROA not after: Sat 08 Feb 2025 11:37:07 +0000
asID: 7018
IP address blocks: 154.195.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84955 (0x14bdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 11:37:07 2025 GMT
Not After : Feb 8 11:37:07 2025 GMT
Subject: CN=67976fe7-f629
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:73:a0:20:2f:cb:a7:17:87:fa:0a:28:f0:dd:
e5:9e:27:ab:5c:13:14:cc:3a:b3:eb:de:df:56:9a:
fc:4b:44:8e:03:86:9b:86:67:7f:b4:b0:af:da:d9:
e2:ef:ce:55:a7:d9:54:49:31:b6:86:3e:a2:0e:33:
12:ca:69:4d:18:c8:c9:68:6c:a2:3f:3c:17:31:ea:
21:7e:06:37:12:e8:83:51:8a:ef:97:f2:76:0b:d2:
77:ff:62:a6:84:b2:27:ef:0c:57:07:de:be:6f:ed:
a0:05:51:2c:4f:1c:65:f0:7f:c5:73:a3:56:5f:7a:
e9:f7:91:d0:1e:b3:1b:cc:fd:80:19:dc:d1:fc:54:
1d:bf:e2:4f:16:21:79:0e:b2:ca:ac:d9:34:4a:47:
a3:0a:74:5a:07:4f:dd:d2:ba:cb:4c:55:f7:8e:6b:
2a:4b:58:d5:3d:93:57:65:10:73:a4:8f:5d:f1:be:
15:b8:1b:2c:cb:11:cc:12:c6:be:9d:75:25:6b:cc:
ce:e6:af:d7:f8:e0:de:ce:cb:53:06:13:f4:27:13:
8d:4d:be:45:0a:c4:50:c0:c9:3e:f5:65:6a:07:3c:
9e:d1:36:65:ae:80:e8:58:16:00:8f:4b:05:8c:2f:
50:22:66:63:cd:42:93:ec:d9:4a:ee:8a:ee:e1:b0:
dd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:24:75:83:B8:E1:89:19:B0:34:A7:97:D5:A6:8B:D4:E0:E3:32:67
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0C29F090DCA311EFA5E2D986762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.47.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:fe:8c:57:06:3b:50:ae:99:08:14:28:0e:e5:02:ba:8c:43:
e0:d1:6d:0c:4f:de:03:ec:ac:12:62:17:0d:e1:c7:a1:d8:3b:
7b:c2:81:e3:93:61:b0:ea:12:40:b8:dc:e8:83:81:57:4a:7c:
71:94:e0:66:1f:7f:9d:ab:a7:ef:40:67:26:e6:11:72:c1:2b:
72:a7:cb:73:87:b8:05:e1:c1:50:ee:c5:0a:7e:da:08:54:90:
74:f2:9c:1f:47:92:27:e3:53:5b:94:3b:10:df:45:18:d2:7e:
ed:53:32:35:81:f4:4c:1c:b0:4d:f6:88:e3:e6:cd:f4:cb:86:
c8:23:f7:98:01:49:97:b5:73:33:e4:2e:aa:cb:2d:e0:9d:86:
8a:f8:f8:7a:c9:09:3e:e2:70:d9:d7:cf:6b:e1:fe:0c:c0:3c:
35:c0:58:a4:15:27:87:1c:03:76:32:f8:b7:6c:23:80:99:d6:
3f:ab:1d:cd:14:77:a9:80:e8:1b:f7:63:4c:80:b3:ec:da:fd:
07:a2:89:16:4f:e2:5e:7b:c9:a1:81:49:0f:e8:22:b9:84:2e:
05:23:3d:45:35:a6:f3:42:f2:56:97:25:d5:16:1c:71:99:0f:
69:80:3a:9a:d7:a3:0a:e5:ff:2c:17:92:88:08:a0:ae:44:f0:
07:08:0b:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 21:08:24 2025 by rpki-client