Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52067C22DC9011EF8AC0A089762E951A.roa
File: 52067C22DC9011EF8AC0A089762E951A.roa (raw, json)
Hash identifier: duIy2z40Vbo2N7nOSB/mn3C5KuLvZFU4Xe0DX44QwFI=
Subject key identifier: C3:CF:90:12:3E:FE:58:45:8B:34:EC:A1:15:20:0A:B4:18:F9:F7:3C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014B83
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52067C22DC9011EF8AC0A089762E951A.roa
Signing time: Mon 27 Jan 2025 09:23:08 +0000
ROA not before: Mon 27 Jan 2025 09:23:04 +0000
ROA not after: Sat 08 Feb 2025 09:23:04 +0000
asID: 5065
IP address blocks: 154.83.205.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84867 (0x14b83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 09:23:04 2025 GMT
Not After : Feb 8 09:23:04 2025 GMT
Subject: CN=6797507c-6da9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:4b:66:e1:b7:80:36:16:9c:a7:fb:17:9c:9c:
79:b4:4a:8e:b3:94:80:70:99:e5:56:2b:54:1f:db:
dd:0b:d2:04:30:07:d5:a1:44:b4:0b:74:d8:05:05:
57:d7:93:23:7b:01:77:b7:b3:14:6f:bf:12:37:95:
d5:dd:d0:80:6c:db:05:24:f5:0b:8c:21:10:42:20:
bb:65:67:4c:87:0d:8a:1b:3c:48:0a:fe:e6:c3:b4:
7c:a6:4e:d1:78:64:ba:b9:40:d6:66:32:bb:32:92:
cd:8f:ab:cc:16:c0:46:dc:39:ad:a9:04:d7:c8:1f:
62:ae:1f:c1:27:4b:11:ed:36:85:f8:36:cd:5c:57:
7e:1f:9a:20:69:b4:28:47:49:c3:a3:70:9a:bf:6d:
39:01:e0:6f:e7:f1:db:08:23:8f:79:a6:38:38:56:
67:91:e4:df:96:e2:2e:fb:8f:e9:0c:af:a4:34:a4:
04:9b:1a:44:9b:f8:a9:a6:e6:31:f9:bd:12:9c:e4:
b1:9f:4e:8c:54:87:ec:ab:6a:67:22:eb:59:97:d1:
64:fd:9a:74:55:70:de:7d:9d:40:46:0b:df:d9:45:
dd:6c:7b:0c:48:83:b1:e4:2b:3b:bd:7c:e1:31:d1:
3a:ff:f0:48:2a:c7:09:eb:8c:fd:29:af:36:5b:12:
d1:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:CF:90:12:3E:FE:58:45:8B:34:EC:A1:15:20:0A:B4:18:F9:F7:3C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52067C22DC9011EF8AC0A089762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.205.0/24
Signature Algorithm: sha256WithRSAEncryption
40:20:2b:20:6f:b7:85:45:4e:ef:d8:b6:f2:34:6f:c9:6f:bb:
36:0a:f0:10:52:1b:ba:67:8f:44:39:0a:2a:99:9c:a9:54:ae:
90:a0:18:1d:1c:b7:72:64:e4:75:a6:42:f6:19:f6:bd:b4:ad:
34:32:9e:97:19:8d:25:b2:db:5b:78:be:bf:52:c3:78:f5:0f:
15:19:4b:37:2b:06:a3:fe:b3:f4:be:95:35:74:84:d6:8b:67:
18:95:36:02:7d:c1:ca:51:24:f6:c7:fc:82:c9:a1:26:0d:3f:
8a:5f:f6:4f:ed:a0:63:4f:ba:97:ee:47:73:b1:e8:e0:aa:63:
b1:4b:01:9c:1c:91:72:1a:48:cb:ae:52:b5:38:db:d1:f6:02:
87:a2:18:ae:7d:d5:dc:dc:c3:de:dc:18:0d:ee:3a:5c:ba:cd:
8a:4a:c8:0f:49:08:41:0e:9e:1a:9a:80:fc:d7:42:d3:65:17:
ef:85:6f:1e:b2:85:01:8f:fa:6c:ef:06:61:65:60:e6:35:9c:
60:0d:59:a8:24:b7:35:6f:b2:da:8c:a5:52:69:a0:6b:66:6a:
54:fc:55:b8:a4:91:aa:4a:3f:e0:c6:eb:bb:1a:19:1b:7d:9e:
c3:61:c1:1f:b3:4a:73:5b:b0:f2:3a:28:aa:c7:98:36:40:86:
74:f0:43:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:05:54 2025 by rpki-client