Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64E14E56DFE411EFB53A3A78762E951A.roa
File: 64E14E56DFE411EFB53A3A78762E951A.roa (raw, json)
Hash identifier: JNzx/sj9IpYbIh4D+Uz6xbuK/Px0m4EkGZDFl0aYqrg=
Subject key identifier: 2D:8A:25:44:B6:2E:AD:6A:4F:04:CF:FD:2C:D8:F2:EF:99:C7:E4:B8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014DD2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64E14E56DFE411EFB53A3A78762E951A.roa
Signing time: Fri 31 Jan 2025 15:02:31 +0000
ROA not before: Fri 31 Jan 2025 15:02:27 +0000
ROA not after: Tue 04 Feb 2025 15:02:27 +0000
asID: 5065
IP address blocks: 154.94.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85458 (0x14dd2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 15:02:27 2025 GMT
Not After : Feb 4 15:02:27 2025 GMT
Subject: CN=679ce607-ef38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:37:16:5c:62:0c:80:5f:e5:df:f2:04:f9:7b:
98:17:87:94:a4:fa:c5:64:aa:5c:93:88:cf:71:c2:
60:67:c4:d5:b5:a9:17:28:59:68:e0:d6:5f:b9:fd:
50:f6:d5:74:f6:9c:97:c0:ce:67:6f:cb:81:9e:2f:
b5:9a:e2:a4:ac:19:f5:29:67:3c:da:d1:e5:b3:d0:
1b:c7:67:44:04:0f:48:e9:f8:cd:75:34:b7:39:c3:
84:cd:29:f4:07:f9:2f:d9:19:86:81:fa:66:36:e4:
6e:37:51:9e:5f:dd:9f:7a:c5:f3:01:a0:88:09:6e:
2d:e7:35:8c:87:76:0f:e0:fd:10:3e:d0:ec:53:de:
3f:b8:8c:bf:37:fe:18:7b:88:e9:3b:da:38:f4:47:
c7:ea:d8:3b:bc:99:af:e7:c2:cd:aa:fc:41:cd:c2:
dd:b4:90:43:04:77:2f:fd:b9:f1:e0:fd:8e:3b:7f:
94:80:37:49:fe:ed:b3:0f:9a:07:47:79:a6:c8:13:
99:1c:c6:10:6d:53:f7:eb:43:92:40:ce:c9:a0:a0:
71:69:41:c2:f7:fd:8b:aa:f8:02:53:c9:5f:de:b3:
b4:72:47:29:e5:7e:1d:ba:40:24:89:66:e3:3e:af:
a4:7f:ec:0e:d4:51:05:04:9d:ea:ac:8d:06:52:4c:
28:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8A:25:44:B6:2E:AD:6A:4F:04:CF:FD:2C:D8:F2:EF:99:C7:E4:B8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64E14E56DFE411EFB53A3A78762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.224.0/21
Signature Algorithm: sha256WithRSAEncryption
6d:be:74:a4:e9:f3:41:e7:15:0e:6b:ff:fb:ad:e5:dd:f4:75:
66:40:72:ad:d4:a8:c8:f3:e7:cd:14:70:b2:a1:ee:a6:a9:b8:
ca:8d:0b:9c:67:5e:7e:99:0c:90:78:f9:bc:55:7f:88:e1:8f:
38:9c:9b:6a:41:90:7a:c4:20:c1:69:98:76:81:bc:a6:b3:01:
0d:aa:94:83:0a:12:3f:e9:38:eb:be:87:e8:c7:25:b0:44:00:
a5:22:6d:b5:e9:43:75:af:87:87:0e:a7:fa:66:1a:d0:16:1b:
43:57:39:37:6d:c5:f3:8f:07:36:d7:18:d3:39:cb:8c:97:d2:
94:49:2b:d8:f7:9e:ea:10:79:40:42:52:c3:90:ee:b8:b4:c2:
df:f2:50:e8:24:ad:e3:da:c6:5e:30:36:31:12:96:99:38:2e:
d2:99:61:ca:a0:3b:e6:99:17:51:ff:27:d8:90:45:74:64:29:
90:ab:66:91:43:11:9d:16:eb:3a:f7:61:3e:fb:fe:53:87:83:
51:6a:32:bd:16:c1:57:fc:01:07:3b:34:5e:da:bd:1b:24:19:
4d:5d:45:df:c2:72:e8:38:b0:2d:1d:bc:f8:ff:3b:b2:9c:fb:
b8:06:fe:13:4a:ac:2c:88:6f:fb:4f:bf:87:f6:54:3b:cf:25:
e8:3d:29:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:38:51 2025 by rpki-client