Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EDDBB40D97211EFA266DF7A762E951A.roa
File: 3EDDBB40D97211EFA266DF7A762E951A.roa (raw, json)
Hash identifier: LOWGs/1i95GdvunLeEfydQStXJWJgdVdkinUsGItzII=
Subject key identifier: BE:EE:49:CD:B4:AD:61:E9:60:EE:1A:8D:83:FC:08:50:C4:D1:22:71
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014116
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EDDBB40D97211EFA266DF7A762E951A.roa
Signing time: Thu 23 Jan 2025 10:10:18 +0000
ROA not before: Thu 23 Jan 2025 10:10:14 +0000
ROA not after: Fri 28 Feb 2025 10:10:14 +0000
asID: 62240
IP address blocks: 154.194.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82198 (0x14116)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 10:10:14 2025 GMT
Not After : Feb 28 10:10:14 2025 GMT
Subject: CN=6792158a-bcda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:42:d8:54:64:22:aa:e4:34:a1:96:0c:ff:91:
7a:3f:b4:c1:1e:28:d3:b7:2d:65:5b:8b:60:82:04:
f0:90:94:41:b3:c7:4b:48:1a:39:cd:2f:05:4a:c5:
17:24:1a:22:dd:73:70:85:2a:4f:ac:03:46:8e:53:
31:a6:43:67:06:c5:3b:65:f0:3a:61:c2:b3:b0:53:
4b:da:ae:51:b1:ba:04:64:a5:ed:a5:06:3a:70:58:
4b:2f:f9:48:8c:2d:9f:54:ce:cb:85:e5:56:d0:b0:
e4:42:2c:07:d7:a5:d1:d2:dc:ca:6c:a0:a6:da:ff:
0f:8f:e7:10:35:03:47:49:e0:ba:e6:fc:a7:d9:69:
bc:db:35:30:67:39:e1:77:db:b8:70:57:3a:b4:ab:
0d:dc:0d:13:cb:a0:a3:08:b2:6e:9c:96:2d:3b:80:
91:e3:88:b0:f9:4a:51:9f:1c:6f:52:ec:c0:0e:3e:
9d:87:eb:0b:35:36:b0:a4:1d:6b:be:66:59:d5:48:
27:b9:12:ad:a0:8c:51:da:f7:b1:7c:ce:2f:d1:4a:
d5:32:44:d0:96:85:e1:3a:65:e8:3a:c8:f9:83:d6:
c3:4c:58:db:00:5d:bc:21:77:24:b1:34:1f:23:7f:
a6:ba:f0:c7:ac:45:62:dd:6e:d8:19:2f:fe:96:0d:
76:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:EE:49:CD:B4:AD:61:E9:60:EE:1A:8D:83:FC:08:50:C4:D1:22:71
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3EDDBB40D97211EFA266DF7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.71.0/24
Signature Algorithm: sha256WithRSAEncryption
12:0f:26:d7:6e:80:14:83:1c:0b:b0:7f:28:61:fc:68:7f:54:
62:9f:f3:f0:76:fb:11:7b:d5:80:a3:0b:bb:03:5c:70:1e:3b:
ff:ea:4f:3f:62:a0:40:c2:1c:00:2e:f9:9e:dd:07:44:a4:d6:
9c:7b:c7:fc:41:01:f2:00:18:16:bb:97:fe:77:0f:76:6d:cc:
7e:e5:14:98:ec:9f:28:fd:e9:4d:df:b9:52:db:35:68:6e:42:
fa:83:ff:de:ac:1a:11:d9:19:7b:8b:6e:dd:3b:d5:fc:53:75:
ef:d3:6d:af:54:66:8b:e7:88:8f:63:ff:55:cd:55:43:5d:b7:
64:8d:b9:cc:75:71:d2:df:b8:71:b0:1e:83:d6:2c:bf:34:66:
5f:99:db:46:ee:ed:bd:fe:18:a0:e7:12:6c:c1:73:a6:05:11:
63:59:6c:8f:e1:66:ff:04:43:da:a9:3c:c9:43:60:ec:7c:09:
50:a9:bd:26:1d:8e:d4:6e:96:14:a6:94:a2:78:ec:d7:1c:76:
9a:2f:93:03:d3:9d:54:3d:60:5d:05:f0:5d:d8:7e:a6:ca:35:
67:67:86:1d:8a:58:82:aa:04:e3:56:46:87:74:8c:d1:24:1c:
7b:d9:32:9c:73:a7:59:eb:80:13:d9:34:01:d3:45:e0:2d:aa:
6e:33:28:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:54:22 2025 by rpki-client