Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F7F9B88DA6311EF8E68FB55762E951A.roa
File: 0F7F9B88DA6311EF8E68FB55762E951A.roa (raw, json)
Hash identifier: mSBSCz+AMbejnV4I6dbMaqXXn5rBIEQGu4tKzjodQKw=
Subject key identifier: 7C:CB:38:4A:41:FE:4D:9A:10:6E:38:42:22:1A:D9:C0:1E:F9:5F:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014878
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F7F9B88DA6311EF8E68FB55762E951A.roa
Signing time: Fri 24 Jan 2025 14:54:07 +0000
ROA not before: Fri 24 Jan 2025 14:54:03 +0000
ROA not after: Sat 01 Mar 2025 14:54:03 +0000
asID: 44559
IP address blocks: 154.203.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84088 (0x14878)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 14:54:03 2025 GMT
Not After : Mar 1 14:54:03 2025 GMT
Subject: CN=6793a98f-6310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:62:50:a9:7e:ba:ff:2e:1c:ca:6a:17:07:ba:
ae:52:67:50:59:8a:2e:e6:94:30:09:a8:a4:74:65:
13:4a:e7:82:64:22:c8:58:b2:e9:ec:5d:46:89:63:
1e:92:f2:d1:4a:7a:64:5f:f3:c7:20:09:9e:40:6d:
37:08:09:0d:84:88:06:dc:19:be:cf:d5:5c:79:2c:
76:cc:bf:48:62:f5:d2:43:1d:b4:fd:ed:c6:bf:6f:
d4:e1:50:d5:dd:ad:46:9a:39:4a:a7:45:f4:30:20:
28:df:0f:c1:08:aa:65:8f:94:79:c9:95:be:6d:93:
a9:71:f5:4c:ac:fe:75:39:ee:e7:08:21:ca:3a:5b:
eb:2e:3b:3f:49:69:29:31:15:be:ad:cf:5c:a1:a3:
46:de:c0:6e:d1:26:1d:60:2b:62:32:7c:c8:e2:41:
91:c4:a0:e3:b2:11:0a:55:f6:47:db:9e:43:6d:fa:
ce:b7:86:1b:3c:de:96:20:20:f7:d8:e9:45:b5:e1:
47:c0:0a:fb:cd:d9:4f:7d:f2:7f:ae:3f:49:cd:b1:
9f:6c:32:c4:91:09:7f:ca:9b:8e:12:6b:93:bd:8b:
62:52:a2:2e:5c:42:b3:55:e1:d7:1c:fc:e7:34:31:
b5:62:80:74:fb:ff:e5:07:0b:eb:18:d2:f0:aa:03:
d8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:CB:38:4A:41:FE:4D:9A:10:6E:38:42:22:1A:D9:C0:1E:F9:5F:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F7F9B88DA6311EF8E68FB55762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.220.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:d4:45:92:3f:8b:fd:f3:bb:11:6e:b7:b0:42:d1:29:62:57:
c2:3f:b0:f8:39:62:15:f1:92:af:6f:ff:de:1a:4f:c3:a1:89:
a4:93:a0:e6:44:c4:03:f9:aa:39:2c:eb:54:f3:d3:91:d3:26:
36:e3:62:a0:b5:65:96:db:5e:ff:b2:cc:1e:0e:e5:d2:75:49:
63:61:ed:b6:ca:04:cc:61:4b:c1:1c:4e:14:94:8f:9a:42:8c:
2a:cc:9a:43:7f:db:56:00:b3:06:33:9c:ce:a8:2e:63:5a:d2:
f3:cb:c2:f9:c1:b2:c4:8f:1d:82:0a:38:32:ab:72:5f:cf:75:
86:8d:7a:9f:8d:53:ca:e8:00:10:ce:22:53:d2:17:f8:8d:b7:
d2:17:38:8a:e1:18:2c:c6:55:fb:ad:94:b0:a5:ac:37:52:a3:
24:96:8c:fe:1b:5b:c1:8a:eb:9f:a8:a3:67:51:53:73:9b:34:
8b:43:e3:ec:0b:c6:3c:60:a8:4d:51:31:95:c3:1d:12:a0:23:
2e:fd:01:f5:d1:ec:35:d7:ac:51:0d:ee:80:82:8b:26:3e:e4:
d1:98:bf:1a:31:9f:1b:a2:e1:ad:1c:e5:80:ee:24:4c:e2:fe:
f6:b5:1a:02:55:b0:f2:8e:a3:c6:86:d7:07:80:8c:e3:c0:74:
9c:db:4b:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:21:42 2025 by rpki-client