Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FAD0740DA3E11EFB6C3FE59762E951A.roa
File: 1FAD0740DA3E11EFB6C3FE59762E951A.roa (raw, json)
Hash identifier: 5eQG0y06XFdRvjO7fbL7eEYgY8Ne6kd9IMjDUMzYKuk=
Subject key identifier: 82:2F:59:0E:57:F1:34:A4:13:20:50:1B:58:4C:A5:8B:0E:10:58:B1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01458F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FAD0740DA3E11EFB6C3FE59762E951A.roa
Signing time: Fri 24 Jan 2025 10:29:43 +0000
ROA not before: Fri 24 Jan 2025 10:29:39 +0000
ROA not after: Fri 28 Feb 2025 10:29:39 +0000
asID: 62240
IP address blocks: 154.196.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83343 (0x1458f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 10:29:39 2025 GMT
Not After : Feb 28 10:29:39 2025 GMT
Subject: CN=67936b96-70dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d4:b7:28:73:3f:bc:6a:95:97:89:68:1c:49:
7c:ad:7c:3c:76:5f:8c:0a:a1:ff:a9:09:5b:e7:37:
99:67:bc:86:e0:42:b8:1c:0f:bd:88:d4:aa:c2:5d:
48:cc:8d:7a:85:3f:77:ca:cc:b5:f2:e8:e3:f3:c5:
e0:98:9f:43:2e:41:fe:1d:71:e5:02:f7:99:20:ae:
62:56:03:b8:f6:ce:38:8b:68:87:59:49:b4:40:c8:
24:1a:c4:bb:13:03:98:bc:4c:1b:af:6e:a2:3c:21:
56:a5:be:78:54:ef:98:3d:b5:c9:67:f9:77:97:7a:
46:1c:9b:14:5b:d2:81:62:ce:27:eb:13:fa:de:85:
e1:82:5e:7d:44:77:22:a9:a0:32:96:6f:24:75:c6:
b9:7f:12:fe:ae:63:3c:e6:ef:24:2e:19:8d:f5:8c:
0a:7b:53:38:3a:db:b0:1d:c9:0b:56:c7:1f:1e:f5:
b6:e4:9b:bb:d8:56:af:98:8f:44:50:c7:17:e1:77:
5c:08:0a:2f:e8:ed:ab:15:16:d2:56:9e:e0:07:54:
92:9b:6e:aa:75:6d:0e:05:9f:34:2f:40:05:70:01:
c1:83:fd:8c:15:ee:f0:d4:04:ff:45:2b:3b:1d:47:
c6:dc:ab:cb:4d:be:50:0d:a7:c1:eb:d8:d3:16:00:
98:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2F:59:0E:57:F1:34:A4:13:20:50:1B:58:4C:A5:8B:0E:10:58:B1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FAD0740DA3E11EFB6C3FE59762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.56.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:5d:81:ea:c4:7c:4a:03:61:c8:c3:ee:1b:6d:c2:ae:28:ec:
7c:51:eb:7c:c5:f3:4a:e6:6d:e6:30:47:aa:6b:f4:83:7b:d0:
ba:ca:d4:d3:bc:14:da:40:b8:05:c4:44:06:89:48:f1:14:1c:
6d:0f:e6:37:27:6f:9a:f7:db:68:fd:6a:0e:9c:85:53:df:7c:
0f:51:12:6f:04:6e:bb:9d:be:38:4d:e1:7a:f6:01:51:1d:cf:
7b:92:5d:52:a0:1d:30:27:b9:ff:d5:04:8c:c9:a3:f6:bb:cf:
77:6a:b3:09:88:e6:9a:5c:09:4e:2b:eb:b0:6a:e6:dc:ea:49:
88:ba:06:3f:af:1c:57:30:12:e9:16:86:5f:15:0a:9a:83:4f:
35:7c:e0:f5:e7:6d:eb:ef:99:3a:01:76:b6:5d:b4:61:fc:ca:
6d:8d:38:8d:9b:b6:ae:20:e6:9d:5e:3d:f6:e4:1e:53:bc:5b:
a7:cd:41:af:3b:d8:9f:33:f3:50:f6:78:d8:b7:f4:93:d0:73:
90:8a:f4:d7:19:d9:03:67:9d:3f:b4:5f:79:8c:95:70:3d:7e:
47:f2:9e:ef:26:d3:16:92:7c:18:9b:90:c4:05:77:9b:13:0c:
18:41:ff:6e:25:ee:67:a9:19:59:9e:10:15:da:7a:0f:74:6e:
22:76:df:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 13:14:08 2025 by rpki-client