Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/681D6CF4BEAA11EF8D49EDAD762E951A.roa
File: 681D6CF4BEAA11EF8D49EDAD762E951A.roa (raw, json)
Hash identifier: 93eeQdbzGFGM/lftdvU6Ef2HiwR6ztGOJOZkksG5+xY=
Subject key identifier: 4F:2C:54:F2:1C:D1:C4:A7:B2:93:B7:3E:E1:97:62:F3:13:2D:84:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011C8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/681D6CF4BEAA11EF8D49EDAD762E951A.roa
Signing time: Fri 20 Dec 2024 08:14:17 +0000
ROA not before: Fri 20 Dec 2024 08:14:14 +0000
ROA not after: Thu 20 Mar 2025 08:14:14 +0000
asID: 328608
IP address blocks: 154.214.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72844 (0x11c8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 20 08:14:14 2024 GMT
Not After : Mar 20 08:14:14 2025 GMT
Subject: CN=67652759-ab35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1b:81:68:89:ea:bb:11:cb:06:be:81:92:dc:
05:c2:4b:16:8b:db:ca:ff:34:39:09:56:a4:08:58:
a6:74:ac:d1:48:19:de:3a:dd:be:42:2e:de:77:28:
f7:c8:d1:9f:69:e4:1d:db:5e:a4:8c:d2:92:db:7a:
d9:79:22:67:a5:e1:9f:fd:7f:c1:0c:4a:1c:a0:5b:
31:82:30:4d:cd:61:60:ca:a6:5c:7c:26:79:64:62:
46:67:bd:a4:85:cc:91:17:22:cb:e1:1b:ec:2d:6c:
8d:3d:04:c7:e6:8d:40:61:fe:6a:1a:bd:fd:87:2a:
af:b5:26:61:2a:94:a2:55:e6:26:3e:fb:c1:70:b6:
bb:ae:5d:30:66:4f:8e:50:0a:07:fc:85:79:e5:b8:
e6:79:45:17:63:9e:d6:ef:39:c5:87:da:d3:96:47:
ef:37:4d:1f:4f:8e:95:90:2a:0c:0d:9f:b4:18:f0:
1e:e5:a3:5d:bf:2e:00:b6:bc:45:e0:12:d9:ff:59:
bd:ad:bc:d6:26:84:d7:28:02:b8:02:f5:fb:c9:18:
13:2a:23:2b:1d:b4:e6:9f:7a:6d:b3:e8:3d:37:fa:
27:2e:21:d0:31:bd:75:c4:8a:95:b4:ac:57:0e:2b:
1f:4c:a0:f6:9a:4c:36:36:dc:6a:05:77:98:0e:8f:
88:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:2C:54:F2:1C:D1:C4:A7:B2:93:B7:3E:E1:97:62:F3:13:2D:84:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/681D6CF4BEAA11EF8D49EDAD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.214.0/24
Signature Algorithm: sha256WithRSAEncryption
19:04:b7:cd:03:b7:15:19:1c:83:93:21:8b:76:a6:5f:48:0f:
5f:f2:f8:d9:25:c9:b5:93:4c:4a:f0:b4:cc:96:fd:22:63:4d:
88:5c:cd:9d:b9:80:8c:4f:87:30:e3:55:6e:91:fb:64:51:46:
2f:09:91:13:f4:56:5d:13:88:f9:a7:ad:c9:2c:57:46:5e:21:
be:bb:f0:75:d3:a3:64:50:5d:e7:e1:99:ba:9f:6f:55:e1:56:
5d:76:89:bc:bd:18:2d:ee:e7:a6:5d:be:7b:5c:70:3f:da:e9:
ee:0d:07:90:83:e3:b1:14:95:8d:94:14:7f:2e:a3:ba:0e:b1:
9b:ff:97:d0:73:3c:ae:bf:58:b6:da:b1:8f:64:e2:27:5c:84:
e2:ee:24:8c:51:ce:58:16:25:2a:9a:2a:60:15:15:d2:07:ee:
88:e7:ff:6c:3f:a3:b6:76:cc:74:e3:4f:61:17:0b:df:96:3b:
cf:b0:64:2d:32:ce:a4:b0:11:ef:b9:8b:55:c3:4c:7f:16:53:
7f:71:1d:9a:73:8e:8f:69:51:63:ba:9a:16:ba:86:89:03:fb:
e6:e4:28:3c:d1:fc:ef:ed:2c:0b:c8:4f:6c:12:ea:f1:57:fd:
6a:4d:ed:71:b1:0b:3f:ed:6b:2e:bc:5e:62:fa:08:f9:f6:25:
40:f4:d3:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 02:13:39 2025 by rpki-client