Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53E819D2CEEF11EFBE0DF67B762E951A.roa
File: 53E819D2CEEF11EFBE0DF67B762E951A.roa (raw, json)
Hash identifier: j1MLzY4+VDwhtePVSmmtISpgtxSlrSr20RiYyfLA8Q4=
Subject key identifier: 22:A1:69:91:43:90:BC:7E:37:B9:32:0A:F7:23:C0:BB:F3:81:8E:DE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01397B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53E819D2CEEF11EFBE0DF67B762E951A.roa
Signing time: Fri 10 Jan 2025 01:07:57 +0000
ROA not before: Fri 10 Jan 2025 01:07:54 +0000
ROA not after: Thu 13 Feb 2025 01:07:54 +0000
asID: 54801
IP address blocks: 154.81.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80251 (0x1397b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 10 01:07:54 2025 GMT
Not After : Feb 13 01:07:54 2025 GMT
Subject: CN=678072ed-3579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:bb:e5:57:8b:65:8b:25:ec:b6:47:ff:9b:
fd:22:de:69:cc:9c:c8:23:0d:aa:f5:be:3c:30:4a:
ff:c4:23:38:32:1a:cc:29:54:c6:d3:9c:18:b7:69:
b7:e0:b9:a6:cf:47:0f:49:c9:c8:5f:63:cb:a3:5d:
01:25:79:7d:d8:31:f0:27:db:01:a8:0c:3b:5b:1b:
21:f3:48:dc:2d:38:c9:50:77:77:85:c8:e3:35:48:
13:51:4d:dc:fc:6d:64:57:2f:f2:16:7b:c1:49:2d:
2f:1e:cf:fe:0a:eb:c4:7c:a5:b4:ae:7e:89:e6:1c:
9d:b3:8c:0e:23:f1:33:4c:eb:3e:35:27:3c:e4:2b:
ad:cc:12:3b:6a:30:45:42:2a:38:c9:89:a2:0a:4e:
3e:4f:e9:ea:8a:51:69:23:aa:42:cb:68:f3:0b:2a:
d8:f4:23:e7:57:6a:bb:bc:d8:e1:35:a4:d1:8e:04:
b1:fc:b7:c0:81:dd:95:7d:2b:30:3a:ef:ea:41:60:
41:5a:61:30:76:66:81:7c:e0:4c:b5:62:75:41:d0:
ac:64:1c:63:ef:3c:fa:93:7a:c0:e9:74:b9:5c:40:
9a:70:07:a2:af:31:73:4d:b7:e6:09:79:5f:23:66:
68:4d:b5:38:e2:ad:05:86:45:db:2d:f0:ba:72:d9:
56:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A1:69:91:43:90:BC:7E:37:B9:32:0A:F7:23:C0:BB:F3:81:8E:DE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53E819D2CEEF11EFBE0DF67B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.136.0/24
Signature Algorithm: sha256WithRSAEncryption
63:37:36:9c:38:a3:77:f2:bd:ba:ce:c5:8d:56:32:6a:45:a5:
f4:5e:6a:46:9d:6f:7b:02:08:fc:2f:9d:89:4c:e1:f6:d1:15:
6a:1b:b2:20:88:c4:1c:92:b5:d4:56:b0:26:c4:db:ee:51:71:
8e:87:c1:fc:96:3c:e3:86:78:67:15:30:8b:fe:aa:d1:08:bc:
17:78:79:84:b3:e8:c1:b5:cc:e3:eb:bc:50:9d:8c:35:57:18:
5a:e0:04:df:be:f0:8d:be:52:97:6c:49:62:01:b6:f5:84:38:
2c:b3:79:15:f1:5b:9c:a7:14:44:29:06:61:b1:5f:bb:4d:76:
95:8f:61:c3:aa:1f:ca:0b:65:d7:9c:31:8e:55:3c:46:5c:f0:
54:69:6d:2a:a2:ce:f3:5d:dc:e6:31:9a:90:09:e5:84:87:99:
a5:31:17:a2:a8:91:c8:8b:1a:95:91:33:0c:52:8a:0a:7c:6b:
b1:2d:7a:d1:c6:60:dd:4f:d9:c3:72:db:10:60:f3:28:e3:65:
7e:81:8b:8b:c8:b5:38:dc:66:6b:6e:6d:5a:a8:8d:9c:ec:a3:
06:94:0d:dc:3e:8c:8d:fb:ab:93:4e:9d:a8:d9:5a:8a:6d:80:
84:33:f1:cc:cb:cb:27:d8:8e:3f:aa:3e:94:aa:b8:dc:ec:63:
97:49:9f:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 01:10:19 2025 by rpki-client