Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60017CC8D98411EF8A76BE74762E951A.roa
File: 60017CC8D98411EF8A76BE74762E951A.roa (raw, json)
Hash identifier: JKV+88U/1ZiJrAmTpTPmyImlR9i05TzR1jNHfdboEBg=
Subject key identifier: 35:01:27:08:26:E4:C1:33:18:29:0E:58:D0:92:A9:C4:7C:F4:BA:9B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014204
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60017CC8D98411EF8A76BE74762E951A.roa
Signing time: Thu 23 Jan 2025 12:20:04 +0000
ROA not before: Thu 23 Jan 2025 12:20:00 +0000
ROA not after: Fri 28 Feb 2025 12:20:00 +0000
asID: 62240
IP address blocks: 154.195.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82436 (0x14204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 12:20:00 2025 GMT
Not After : Feb 28 12:20:00 2025 GMT
Subject: CN=679233f4-3d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:05:de:d3:48:3f:b9:ab:34:96:0b:cd:d1:04:
9d:de:ff:0a:c8:e1:22:1f:c8:88:94:a6:04:cb:f7:
22:55:f5:e3:e1:cc:10:80:7b:b3:da:5f:bd:9c:c4:
06:4b:23:ae:f3:9e:b1:31:f8:34:d5:db:6a:e1:35:
88:c0:f8:fd:ea:ec:e2:fb:4c:bf:37:85:40:a7:4d:
5a:bb:55:ed:49:dc:87:db:99:6b:3c:87:77:01:30:
b4:5a:b5:0f:60:d5:3b:8c:88:40:b3:7b:58:05:2d:
23:2d:90:f3:3b:b2:d9:4e:d7:b4:b1:0b:7a:64:e9:
37:6a:43:13:48:90:51:b6:41:2e:8e:01:98:26:ed:
26:1b:21:2a:74:c7:9a:c4:c3:84:f6:5a:32:ef:88:
2a:9c:88:0d:4b:a9:32:9e:41:ba:0e:76:5b:1e:e5:
a8:74:66:0c:f2:c9:49:9f:e2:52:b5:ce:d2:c5:1f:
74:86:e7:19:e1:8e:0e:53:5a:f8:31:df:41:5d:c2:
a0:91:fe:19:ea:f8:11:2b:f0:17:ed:ca:0d:4d:63:
10:09:d9:a0:73:aa:45:59:c9:4a:b1:13:ce:a1:dd:
9d:8a:81:c9:dc:22:75:64:11:25:cd:8d:26:0d:f7:
8b:28:1b:59:45:78:a6:4a:11:0d:37:39:1c:c2:ad:
1f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:01:27:08:26:E4:C1:33:18:29:0E:58:D0:92:A9:C4:7C:F4:BA:9B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/60017CC8D98411EF8A76BE74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.195.189.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:8e:b9:47:fe:fd:08:f9:63:65:82:06:8e:2f:4a:13:a5:55:
69:7a:ef:4c:41:b6:3a:4f:55:c1:ff:5c:b0:20:21:d2:ed:bb:
51:b0:cd:08:6c:ff:00:16:59:77:56:83:1a:4d:11:f0:1b:d7:
72:c9:2a:29:15:ba:7c:47:d3:b7:c3:80:d8:f9:31:01:64:b7:
8a:a9:95:22:04:ec:27:ce:6a:10:7c:ce:db:cb:85:d5:bd:b0:
4e:8e:ce:09:2c:4e:80:9e:4b:69:b3:38:09:ef:f4:d5:13:c5:
64:07:81:4e:74:e9:49:97:c5:74:b2:3e:4d:e6:dd:ae:54:c7:
da:02:41:64:d1:ac:06:74:80:32:a4:16:2a:0a:2b:b8:53:10:
94:64:ec:52:75:aa:d6:1e:14:7c:21:8d:53:e5:3b:04:24:9f:
c9:4a:2e:7a:1a:01:17:15:7f:c2:9f:6c:48:e8:ff:42:d4:9f:
5e:86:cf:0e:6c:76:f7:85:07:8c:ab:b2:85:e8:cf:6a:19:e8:
e2:0b:43:f9:cc:94:94:55:f0:cd:57:8c:a0:5f:77:73:22:ef:
76:92:14:68:fa:1a:20:ef:db:2e:47:ef:4f:3c:dc:70:9c:5b:
b4:55:0c:ec:bf:8d:29:f4:74:d5:74:c0:a6:b0:d2:84:db:38:
2a:5c:2f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:16:12 2025 by rpki-client