Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24280ADADA5811EFBF010B8A762E951A.roa
File: 24280ADADA5811EFBF010B8A762E951A.roa (raw, json)
Hash identifier: om7rEi75ETAMIrzLBnNjwXhtBqvqILbFVByoa5qs3t4=
Subject key identifier: 09:08:E1:01:85:49:88:05:41:BE:0A:1E:0D:95:A7:45:6A:E4:9B:FD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01478D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24280ADADA5811EFBF010B8A762E951A.roa
Signing time: Fri 24 Jan 2025 13:35:57 +0000
ROA not before: Fri 24 Jan 2025 13:35:53 +0000
ROA not after: Wed 05 Mar 2025 13:35:53 +0000
asID: 48031
IP address blocks: 154.218.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83853 (0x1478d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 13:35:53 2025 GMT
Not After : Mar 5 13:35:53 2025 GMT
Subject: CN=6793973d-8e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5d:c9:53:a4:43:9d:8b:18:55:b1:e4:4a:3a:
47:a4:6a:23:19:75:e2:b7:62:50:bc:53:65:6e:2f:
c9:02:6d:02:d6:76:ae:1a:40:d1:a8:3b:0c:50:e0:
f2:6a:10:66:d6:0c:7e:54:78:2e:be:42:b0:65:69:
fb:58:98:af:cb:17:61:08:8e:5f:cd:cb:b4:e3:8f:
dd:3d:2e:bf:ed:53:51:ac:21:df:b0:3d:c0:f7:b5:
94:1d:8b:8f:bd:a1:60:0b:e4:ff:b1:b1:99:3a:b3:
78:23:55:ec:39:96:e5:12:ea:b6:8a:62:8a:c1:f0:
b2:6b:34:76:67:db:ed:fa:59:f0:37:9d:d2:9a:b5:
7e:98:ee:5b:28:2c:d7:e0:e3:2d:14:e8:bb:a7:2b:
0a:41:68:85:5f:21:66:9f:7c:01:95:a2:90:de:04:
18:14:45:ae:73:33:d7:9b:a0:d7:c2:4c:51:e5:09:
2e:03:45:1c:80:c7:61:5a:be:2c:f8:4a:c3:1e:d5:
ea:95:06:1c:52:7a:75:8f:93:c4:c9:af:88:0e:71:
d4:1c:99:cb:53:bc:05:4e:ab:ca:14:4d:5c:01:9a:
f5:97:88:1b:a1:e2:0d:41:bf:da:c1:87:26:c9:5d:
4c:6c:b4:2c:5b:be:f2:a8:9c:1f:f1:ff:38:54:1a:
fb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:08:E1:01:85:49:88:05:41:BE:0A:1E:0D:95:A7:45:6A:E4:9B:FD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/24280ADADA5811EFBF010B8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.16.0/24
Signature Algorithm: sha256WithRSAEncryption
98:05:b1:9f:63:7e:7c:03:f8:7e:ac:ac:4a:02:74:bc:21:46:
23:9a:f3:0a:da:ed:1c:90:25:b0:ab:ab:b5:c1:bc:91:b7:b1:
af:4a:ff:c9:e4:f6:61:af:6c:52:6c:42:66:cc:3e:0a:f3:4d:
9b:07:e1:6b:6a:56:6f:78:78:cb:14:b9:31:41:c2:69:16:7c:
81:aa:71:b3:78:f6:f5:39:63:fe:ba:65:74:0a:ee:15:44:4c:
4b:17:fd:77:59:10:4e:63:41:62:75:86:41:e2:98:8b:bf:c0:
8e:3d:41:cb:ed:9a:4f:d0:a9:c4:1a:a0:ad:a5:30:f0:f2:c0:
65:99:3f:2d:36:93:9c:df:16:eb:76:b1:2f:d3:fa:c7:c3:4a:
bd:70:4a:93:1e:35:a4:5d:34:cf:5f:8e:83:a1:4d:4d:57:5d:
3c:34:d8:55:fa:00:aa:80:47:08:ae:5f:65:76:d5:a5:f8:4b:
9b:5b:94:f2:d3:6b:57:4e:57:97:5c:69:44:8d:50:7a:30:65:
ba:46:0b:02:53:c1:65:be:e8:3d:0b:84:ec:83:1d:06:80:01:
54:fb:22:11:77:8d:42:2f:74:f0:dc:d4:ca:b5:66:34:af:e7:
e5:b0:06:d5:fc:48:94:9c:6b:b6:34:6a:e3:a7:98:68:51:a8:
5a:8f:7a:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:56:46 2025 by rpki-client