Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67800C64CC2B11EFB08A9660762E951A.roa
File: 67800C64CC2B11EFB08A9660762E951A.roa (raw, json)
Hash identifier: qZFMFJQJvujG94bgh53evKdC2277o2dkohi16IS8Cxo=
Subject key identifier: E0:20:85:80:FF:BC:25:80:0F:5E:20:9F:32:7D:BD:02:41:8E:21:EB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01361C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67800C64CC2B11EFB08A9660762E951A.roa
Signing time: Mon 06 Jan 2025 12:40:27 +0000
ROA not before: Mon 06 Jan 2025 12:40:23 +0000
ROA not after: Thu 06 Feb 2025 12:40:23 +0000
asID: 151800
IP address blocks: 154.197.89.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79388 (0x1361c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 6 12:40:23 2025 GMT
Not After : Feb 6 12:40:23 2025 GMT
Subject: CN=677bcf3a-dfe5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:a1:38:3d:22:c9:b9:8c:5d:96:92:35:ea:eb:
56:65:19:19:c4:0f:01:32:b5:38:e1:8c:fb:da:5c:
9c:11:e1:fd:c7:af:07:40:32:48:35:e1:2e:38:e9:
7c:01:11:a9:36:9f:49:81:c3:c5:cf:51:25:a6:b5:
7e:06:55:5b:70:f5:09:9b:b5:eb:af:67:e3:16:74:
1e:76:f3:80:de:4b:6d:d7:cd:42:78:f2:ca:cb:95:
db:aa:e2:dc:c2:13:15:3b:05:6f:ef:4d:28:cb:99:
3e:c5:1f:09:bd:01:82:34:08:68:67:a1:51:ae:a5:
62:a1:b3:74:ed:5d:76:e2:04:c6:1c:16:9d:51:3f:
d7:80:15:f9:c1:ff:b8:62:88:e9:4e:67:48:00:2b:
8b:2d:9c:28:db:80:73:0b:16:ae:c2:43:f9:56:54:
be:6a:24:b5:ff:0c:99:cc:25:db:8b:65:63:15:e5:
6f:18:fe:04:20:b0:f3:e3:0e:ec:cf:96:d4:e7:84:
e2:46:45:21:25:df:b7:b4:8f:f6:fa:a3:02:5b:1f:
f3:d6:2a:d6:1e:e2:75:e4:c6:36:ce:e7:36:94:1d:
d9:cc:04:dd:09:2a:c4:87:9b:46:64:38:43:ee:7e:
5c:82:04:8a:b2:24:9a:5b:f3:f7:5f:dd:53:c2:f9:
e2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:20:85:80:FF:BC:25:80:0F:5E:20:9F:32:7D:BD:02:41:8E:21:EB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67800C64CC2B11EFB08A9660762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.89.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:31:74:87:2c:a0:1e:70:a8:b5:a3:d5:42:f5:14:9c:e5:fa:
7c:e6:a0:2b:cc:b3:49:a1:3c:42:c2:0e:32:af:53:7e:a6:fd:
bd:ff:e6:be:62:8f:2b:50:26:30:18:0d:f5:07:ee:ac:7b:df:
af:85:64:36:3b:a0:6a:88:00:ed:28:d8:66:59:6e:c4:9e:ae:
06:24:37:1d:44:51:1a:1f:60:93:76:e7:bb:52:bd:92:13:19:
37:bc:da:7b:f8:5b:80:0a:3f:53:e1:96:cc:2d:85:92:d1:1b:
e2:cc:b1:a7:97:c0:41:02:ed:7f:ce:11:d8:f5:61:64:3c:e4:
31:d5:7f:f7:18:d4:8b:06:f2:2f:b4:0d:52:43:79:b3:d6:59:
14:ef:28:fc:51:b9:06:b1:d4:13:81:49:c1:78:71:1e:ee:73:
59:bb:55:6c:f1:97:2f:0b:ca:62:f8:68:81:10:18:11:47:f3:
da:19:5d:30:25:72:4d:a7:e4:be:7a:2e:ca:e3:4c:75:ed:f5:
98:6e:41:bb:fd:55:87:d7:9e:d4:9a:69:b4:d8:60:cc:40:3a:
dd:a8:12:ae:d8:28:32:f6:02:02:0e:72:9e:82:ec:cc:8a:99:
48:96:cf:fd:17:18:56:00:f1:e8:2b:c3:f1:3e:62:31:e2:68:
2e:3c:ee:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 01:01:42 2025 by rpki-client