Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1211D922DA4211EF8D517076762E951A.roa
File: 1211D922DA4211EF8D517076762E951A.roa (raw, json)
Hash identifier: fnEShVTPBCaJa+x6Sj2OlFfMlfBZwGHpQqBeNdNm6n0=
Subject key identifier: CF:42:39:C1:59:8D:D8:79:A8:18:DF:3A:23:79:56:8D:20:D4:A4:7F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145D4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1211D922DA4211EF8D517076762E951A.roa
Signing time: Fri 24 Jan 2025 10:57:58 +0000
ROA not before: Fri 24 Jan 2025 10:57:54 +0000
ROA not after: Fri 28 Feb 2025 10:57:54 +0000
asID: 62240
IP address blocks: 154.196.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83412 (0x145d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 10:57:54 2025 GMT
Not After : Feb 28 10:57:54 2025 GMT
Subject: CN=67937236-bb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:2d:a1:8f:1b:f8:d1:1e:75:67:27:67:e3:1d:
c4:92:76:0e:7b:1c:3c:10:60:bb:3b:e1:0d:71:c8:
5f:e2:70:07:76:cd:64:35:4c:7b:ed:f5:69:61:e6:
28:ff:bd:ec:51:38:d6:73:ac:18:ad:97:0f:f2:2d:
78:0a:49:5e:11:f7:75:2e:7d:6b:e4:54:2d:d7:5c:
09:c5:9a:39:58:f8:b2:76:71:8a:89:ec:18:87:a5:
1e:1e:cb:33:c7:21:8b:b8:89:73:a6:96:cc:13:77:
a9:65:c4:f1:e8:dd:19:0a:f3:c2:86:c1:68:a1:29:
9d:ce:84:a2:0a:bc:58:8b:38:d0:d9:be:83:14:5f:
da:c5:74:dc:88:ff:7e:b3:b6:a3:43:fe:bc:53:db:
ea:a2:00:7d:59:11:6c:41:4d:93:00:3c:c9:a9:1a:
21:e6:84:9c:9e:4d:73:fc:88:dc:f8:3b:fd:a5:57:
d8:7f:60:c7:21:00:c5:1a:3a:4a:36:2f:54:35:bd:
69:1c:44:a0:08:5b:31:a9:2b:34:d1:ca:e1:6a:3e:
08:fb:c6:3a:5a:a0:59:25:5c:8d:c0:dc:0a:a4:f0:
e5:4b:c6:26:6a:36:e7:5d:ce:33:76:55:79:94:de:
8c:e5:01:cc:c1:41:83:75:6e:0f:a9:4a:ac:ca:7d:
c4:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:42:39:C1:59:8D:D8:79:A8:18:DF:3A:23:79:56:8D:20:D4:A4:7F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1211D922DA4211EF8D517076762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.70.0/24
Signature Algorithm: sha256WithRSAEncryption
50:00:3e:c6:76:09:d9:7b:da:ec:83:39:3f:c8:2b:6e:d9:32:
08:2c:d0:76:13:14:a1:31:20:90:0f:86:2b:4b:5e:38:20:e3:
ad:7d:d7:83:18:b3:17:2f:8b:9e:e8:fc:30:2e:87:e3:df:a8:
24:42:fb:0c:5d:07:d8:cc:7d:57:99:67:23:2e:8e:a6:50:84:
ee:e8:a3:c0:55:de:4f:8d:de:43:e5:0f:81:02:b5:ba:89:db:
77:06:1f:ac:14:9e:5b:c8:2e:dd:f4:fa:b2:b0:8b:cc:8c:99:
0f:57:01:c7:b3:7f:c6:42:9b:0b:a5:28:b9:c5:2f:02:f5:89:
a1:73:8c:b9:9c:ba:5f:01:39:68:ba:f7:cf:b5:22:ea:9a:57:
07:30:54:22:ee:d2:30:ef:51:9c:44:49:0c:cc:9d:bc:65:13:
22:4f:d1:3d:e6:5a:be:d6:f2:5e:2b:d0:d4:c1:b3:d3:36:59:
1b:c1:29:1b:5b:e4:80:b8:95:2f:4e:ba:74:a1:ba:f3:74:03:
e3:15:1c:5e:1c:36:2c:dd:e3:1b:2e:c4:0a:fd:ad:b7:a8:e8:
06:59:7a:5e:ba:b0:9a:c7:2c:d5:d1:45:e3:02:59:b4:f6:31:
cd:0d:6a:44:b5:c0:dd:c1:33:e7:a9:a9:9a:2b:38:ad:d0:3b:
0a:1f:f7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:04:44 2025 by rpki-client