Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3136824ED96B11EF9CBA954B762E951A.roa
File: 3136824ED96B11EF9CBA954B762E951A.roa (raw, json)
Hash identifier: kND82/SKi16EDFvpYZOVX6LaOerPQoVZyKIv73p9ATg=
Subject key identifier: 47:56:1A:0B:92:CC:37:A7:07:00:91:92:74:DC:A7:15:09:FD:05:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0140E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3136824ED96B11EF9CBA954B762E951A.roa
Signing time: Thu 23 Jan 2025 09:19:48 +0000
ROA not before: Thu 23 Jan 2025 09:19:44 +0000
ROA not after: Fri 28 Feb 2025 09:19:44 +0000
asID: 62240
IP address blocks: 154.194.106.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82144 (0x140e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 09:19:44 2025 GMT
Not After : Feb 28 09:19:44 2025 GMT
Subject: CN=679209b4-c08b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:df:a0:d5:8b:8a:9b:a5:7d:8b:85:e2:8a:7d:
b4:c1:c0:63:bb:25:bb:14:dc:92:1a:6f:e3:e8:2d:
da:92:4e:ef:da:3e:be:f9:c2:ea:5a:68:df:39:44:
b1:7e:27:05:d9:ac:3b:90:28:9a:32:be:d0:7a:40:
18:47:49:c5:7f:fd:ec:96:03:c6:d2:c4:54:b8:40:
ea:9b:07:1e:21:83:90:9e:ae:fa:df:3a:56:ac:7c:
7e:6c:64:75:98:3e:5a:93:ac:77:69:f2:8a:7e:1f:
57:6c:19:98:e3:5c:88:31:5d:bd:e6:5c:7b:6f:ba:
63:04:3f:62:96:2e:b1:fa:3e:06:8c:91:07:84:96:
53:26:87:be:2e:3c:77:33:74:9d:43:84:8f:41:ef:
76:75:32:46:2d:65:93:d4:fb:36:cd:46:40:99:f1:
e6:ff:1e:8d:0e:04:bf:db:c6:a1:0a:3c:24:61:2c:
8a:e6:d6:ad:2e:f2:ef:fd:a2:3f:d5:57:8b:e2:72:
34:9a:a6:5b:82:84:08:ff:d6:cb:8d:86:d7:1b:68:
92:a0:74:ef:fe:aa:8e:be:6f:a5:b1:83:36:cb:11:
98:a3:41:74:61:22:de:76:83:b4:38:f6:f7:b1:2e:
6d:aa:71:bb:b7:b4:22:05:18:34:64:87:56:14:b5:
a8:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:56:1A:0B:92:CC:37:A7:07:00:91:92:74:DC:A7:15:09:FD:05:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3136824ED96B11EF9CBA954B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.106.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:35:43:79:fe:82:d4:b9:4a:13:a4:4e:f9:fb:db:77:80:df:
45:d3:86:31:e3:c3:f1:c8:8d:2f:ee:2f:a7:9e:e5:d3:94:8b:
e1:b7:b6:63:0f:a3:2c:5f:11:da:e9:f7:15:af:34:43:86:24:
c0:a5:24:c4:71:d6:ef:03:7b:f3:1d:0d:20:99:21:c3:6e:98:
7c:e1:cb:fe:7c:24:dc:02:f1:df:d1:5e:c6:9c:24:22:9f:eb:
5b:77:79:e4:b5:86:79:53:d3:a9:a0:3a:62:ba:be:ef:6b:d8:
47:64:80:e2:eb:ef:e0:d2:97:4f:8b:f6:99:a6:a3:20:ea:70:
cb:79:9a:c7:3e:15:9e:58:c3:b8:83:fe:db:97:1b:3a:40:27:
d7:3f:e3:33:fc:e1:a4:b9:1b:44:1e:94:87:4c:7c:2c:67:d3:
02:9d:eb:ac:97:14:51:85:8b:79:f7:77:d4:8d:82:e2:ff:eb:
89:56:27:a4:49:b7:e6:5c:69:c8:37:e8:51:91:8e:8d:26:cb:
99:67:31:0c:28:15:10:6e:83:70:d4:c0:76:e5:4e:dd:1d:3f:
18:f6:ee:81:ef:dd:14:bd:50:e3:dd:55:7d:d2:fc:a7:5f:af:
ee:55:b6:a5:53:82:66:46:12:1c:d3:fe:b1:90:2c:1c:ed:21:
68:5f:8c:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 11:48:25 2025 by rpki-client