Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/787DD6E6DA4911EFAC0461A5762E951A.roa
File: 787DD6E6DA4911EFAC0461A5762E951A.roa (raw, json)
Hash identifier: V4Tzw4aGbYFN22SJPbS3dKTKwGzRgIG5A/szvGXSlps=
Subject key identifier: F5:70:8E:A3:AB:3B:CC:35:79:B9:A6:4E:CA:14:81:A9:9C:EA:F7:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01464E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/787DD6E6DA4911EFAC0461A5762E951A.roa
Signing time: Fri 24 Jan 2025 11:50:57 +0000
ROA not before: Fri 24 Jan 2025 11:50:52 +0000
ROA not after: Sat 08 Feb 2025 11:50:52 +0000
asID: 18229
IP address blocks: 154.210.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83534 (0x1464e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:50:52 2025 GMT
Not After : Feb 8 11:50:52 2025 GMT
Subject: CN=67937ea1-86ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:df:2f:f9:1e:f8:c9:bd:88:1e:9f:65:b0:92:
6b:59:88:a0:e7:7f:77:de:ed:02:b1:81:ba:6a:9e:
63:66:a6:09:c7:95:96:d4:fe:7a:dc:56:4d:4c:d7:
ff:56:47:51:6d:d3:ca:f6:77:c0:63:ba:09:64:9a:
fa:d9:3b:13:02:4d:b9:10:7d:66:4b:50:2a:f3:96:
7d:6b:f5:d2:b1:ee:d8:f2:f9:0d:43:ac:25:93:73:
05:55:c3:46:62:19:e9:03:e5:b0:5d:39:64:e4:2e:
3b:4c:7b:09:2c:6b:fd:88:cc:ab:5d:7d:24:57:ce:
b8:05:0f:d7:9c:a9:67:ef:1e:f1:16:c1:00:3c:9f:
e6:99:28:cd:c4:6c:3f:a8:e5:37:74:45:ae:ec:06:
19:2d:0e:c5:c0:03:17:2b:6e:e2:e9:4f:76:e6:fd:
71:d4:55:cc:b6:e0:39:1d:2d:56:0c:8f:a9:e4:c5:
4d:00:4e:42:ad:ad:a4:10:a5:68:62:22:ad:d8:79:
b0:45:e1:11:a7:f9:f6:3d:f1:0a:5b:b7:4f:7d:5f:
9a:11:cd:ba:6e:9d:11:95:a7:a4:f5:73:8d:05:8f:
a8:9d:db:d6:48:db:ac:02:af:7d:b7:9b:f9:68:cb:
86:44:4e:86:c6:6a:a8:66:d9:ae:64:2e:96:b2:b0:
cd:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:70:8E:A3:AB:3B:CC:35:79:B9:A6:4E:CA:14:81:A9:9C:EA:F7:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/787DD6E6DA4911EFAC0461A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.180.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6c:7d:8e:dd:be:4c:15:18:ce:32:41:2b:25:66:1f:f6:70:
2d:51:9d:1a:31:23:73:fb:8e:e8:00:f8:c9:9a:59:87:a0:29:
4f:4d:dd:68:e5:22:d1:d6:01:b5:98:00:f3:28:2a:9d:85:d1:
d0:94:53:c4:10:09:18:e9:81:d4:26:48:b5:f7:68:da:55:15:
d1:11:99:58:32:d6:dc:2b:fe:b8:0f:9f:dd:94:96:cf:4c:a1:
39:90:69:30:b8:e4:67:f7:b9:77:ce:36:2e:0f:d4:59:5f:d7:
0d:0a:b2:15:82:62:c9:b3:e8:8b:41:21:fa:2f:87:50:dc:cd:
2f:5d:2a:c4:7a:2b:b2:01:7a:c0:a1:f8:e2:5c:7a:83:9f:8f:
46:1b:3c:e0:97:39:81:a0:0d:66:22:51:fb:88:94:d3:cc:eb:
05:2f:99:fa:e8:79:c3:d2:c1:e4:14:b6:d7:10:94:ac:31:8a:
19:b5:9d:86:ec:ef:5d:de:96:b9:a0:21:81:d5:32:da:b4:71:
45:54:10:ec:67:3c:01:9a:c7:5d:c7:1d:e9:13:f9:65:b5:b5:
a0:5f:4d:d8:b5:84:7a:c7:0c:12:47:b5:6f:fb:3d:8a:d6:0b:
f1:c4:38:2a:90:18:7b:63:87:5f:4a:2a:3b:3c:4d:da:90:2c:
c6:6f:2d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:42:35 2025 by rpki-client