Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F409968DA4F11EF9FED4D4E762E951A.roa
File: 2F409968DA4F11EF9FED4D4E762E951A.roa (raw, json)
Hash identifier: sdvm2ST6QfDMnctG2781twC9FVa5OOhjXuVj4v5VA4I=
Subject key identifier: 2A:34:96:7F:59:53:4C:DE:5E:4B:A7:41:7F:78:D0:21:8D:D0:D0:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0146D2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F409968DA4F11EF9FED4D4E762E951A.roa
Signing time: Fri 24 Jan 2025 12:31:50 +0000
ROA not before: Fri 24 Jan 2025 12:31:47 +0000
ROA not after: Thu 06 Mar 2025 12:31:47 +0000
asID: 5068
IP address blocks: 154.83.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83666 (0x146d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 12:31:47 2025 GMT
Not After : Mar 6 12:31:47 2025 GMT
Subject: CN=67938836-0ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:8e:67:9b:27:81:e6:80:bd:1b:93:8c:34:13:
40:b0:d1:f4:05:39:0b:85:ab:a8:44:37:25:e5:9a:
04:5c:d8:c5:fa:4c:f5:76:9b:11:e2:21:85:f0:c3:
1d:af:e1:1d:2f:98:bf:0e:c0:15:ba:c8:6c:53:ba:
58:ab:12:c9:1e:35:d1:61:41:54:bd:c8:61:78:20:
2e:f1:a0:f5:ba:7f:b7:22:1b:ff:9e:a8:ed:17:63:
79:73:4d:4d:2b:91:ba:88:ba:c9:0e:3c:65:03:b4:
65:ea:77:a8:84:5a:b8:fb:a4:43:94:98:ce:8e:d7:
a9:bb:9c:b5:3b:1e:7e:14:62:27:25:a1:8d:9b:89:
26:a7:f8:1e:73:9d:5d:e0:72:e9:32:33:24:67:14:
f9:4b:a9:cb:1f:c0:2d:5f:a9:7a:37:3f:53:f8:84:
28:82:c1:a6:9f:b2:88:a9:82:3a:89:0e:93:f3:96:
c4:7d:18:4b:c4:e7:8b:c4:a8:52:cf:6c:92:67:ce:
bf:b4:b2:be:c6:76:bc:a2:72:e4:8b:a0:da:d5:d5:
af:da:e5:78:05:25:4e:63:3c:08:96:b9:31:2b:63:
85:71:8b:7a:22:3a:1c:66:8b:07:b2:a5:0f:f8:6f:
04:cf:0c:3c:2c:f1:27:08:0c:8e:29:fa:ce:83:31:
53:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:34:96:7F:59:53:4C:DE:5E:4B:A7:41:7F:78:D0:21:8D:D0:D0:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F409968DA4F11EF9FED4D4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.71.0/24
Signature Algorithm: sha256WithRSAEncryption
84:d5:6b:90:73:85:21:65:ee:8f:4a:11:e6:2a:d1:3f:47:d8:
57:39:3b:fc:5c:61:a6:e1:c2:50:d5:b6:c8:30:7b:b4:30:5a:
85:78:13:0c:a3:7d:92:8e:7f:31:52:00:ef:c0:df:9e:84:5a:
fd:30:6c:81:1d:26:c7:dd:ef:d8:cc:d2:6f:38:3a:50:d5:0d:
1b:09:a4:7d:6c:5c:02:40:0e:b4:44:61:c0:f0:70:cf:fe:32:
00:a2:d5:bc:d9:bc:a7:74:ab:9d:0c:26:c8:89:ec:f3:49:49:
8e:76:62:e7:cc:b7:be:38:77:ff:11:af:6d:6b:fe:3a:e3:33:
e1:db:7e:ca:e7:3b:a2:ff:96:a9:ac:d7:68:38:ae:4e:36:67:
28:1d:23:49:c4:d5:29:25:19:10:e1:7a:bb:ed:cd:0a:54:9e:
2c:2b:44:2b:0e:f3:5c:7b:e4:19:45:62:13:43:50:8d:1b:fd:
c8:43:fb:5f:2c:19:25:00:c9:3b:b7:95:3d:74:3f:3e:33:e7:
09:64:db:71:53:75:bd:e4:8b:28:c1:1b:af:56:d0:c1:f7:73:
aa:ae:34:df:3f:7e:cd:59:a9:51:d2:a7:a3:78:d8:8b:e8:4d:
65:ed:e9:f2:c8:87:04:5c:2a:a3:2c:d4:65:67:9c:0c:46:d4:
ac:f1:73:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 13:01:22 2025 by rpki-client