Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8835299CDCA911EFBD8609B0762E951A.roa
File: 8835299CDCA911EFBD8609B0762E951A.roa (raw, json)
Hash identifier: 84h/CPFfl2brzCwUYtlqKEdqb/sPO+ePirvtvrBR3c0=
Subject key identifier: EF:C6:40:89:61:76:4C:CB:B2:96:C8:C1:06:42:A5:CE:DB:D4:C0:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014C03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8835299CDCA911EFBD8609B0762E951A.roa
Signing time: Mon 27 Jan 2025 12:23:37 +0000
ROA not before: Mon 27 Jan 2025 12:23:33 +0000
ROA not after: Sat 08 Feb 2025 12:23:33 +0000
asID: 7018
IP address blocks: 154.214.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84995 (0x14c03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 12:23:33 2025 GMT
Not After : Feb 8 12:23:33 2025 GMT
Subject: CN=67977ac8-503c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5d:e5:f7:06:a4:ff:2c:14:96:0a:07:a9:1e:
e1:83:21:b2:84:ab:67:8d:96:38:82:a5:88:9b:ed:
47:df:b7:ce:68:ac:91:c9:b4:59:8d:61:c8:99:bf:
a6:1b:c8:d1:31:9a:0a:03:63:e9:b1:f2:77:4a:af:
e8:f5:c6:40:92:9c:ae:20:6a:fd:11:d6:08:4d:30:
54:88:80:ac:92:e3:4a:a1:bb:ab:dd:bd:b7:a8:cc:
cb:6e:79:a0:b0:1d:d5:6f:48:3d:df:3f:a9:7e:3b:
9e:14:97:43:3d:e5:e8:0e:ef:5c:43:1e:e2:db:a4:
35:bb:93:4a:c7:f4:c3:81:6c:1e:de:fc:ab:a1:49:
d4:c6:20:69:f7:79:f5:0c:cc:15:c3:2b:6a:ba:b3:
be:47:49:e2:22:68:48:fe:d0:97:62:46:18:d8:d3:
e4:1c:26:67:75:15:79:d1:78:f3:10:53:30:08:df:
5e:6f:f2:3e:23:c6:16:51:a9:3b:6a:b1:99:ac:a0:
3d:23:45:36:5b:a7:5b:90:ed:52:bb:e4:71:f9:73:
ed:6c:03:06:cd:dd:4e:8f:36:d6:3f:ca:90:99:9e:
a4:dd:a5:f3:8b:cb:b4:76:44:4b:c0:bd:4d:aa:ce:
14:3b:a2:ab:3c:2b:23:4a:3e:40:6b:17:f4:71:4f:
97:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:C6:40:89:61:76:4C:CB:B2:96:C8:C1:06:42:A5:CE:DB:D4:C0:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8835299CDCA911EFBD8609B0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.214.24.0/22
Signature Algorithm: sha256WithRSAEncryption
90:94:81:64:7e:c9:e8:1f:b6:46:1c:11:68:41:4c:32:13:9a:
55:e3:71:d2:d7:06:4f:be:d6:fe:92:9f:2e:a7:2b:b6:b3:78:
0b:37:29:4f:fe:62:fc:98:de:49:c5:33:0b:1a:bd:aa:ba:05:
49:c2:87:f1:8b:31:db:4a:f1:66:46:5e:d3:6b:1b:52:c6:1b:
85:43:77:b9:fd:01:52:ab:23:fb:dd:4f:db:db:4b:40:8f:10:
ce:07:b6:f0:90:cd:87:2f:71:c6:3b:9b:fc:f9:f7:1a:c7:e8:
77:3a:fb:8e:08:85:a2:5e:29:19:25:eb:a7:a6:b8:ca:51:d7:
eb:99:09:ba:a1:d5:72:06:d6:e5:ff:03:cd:87:cd:ae:61:26:
f2:8f:58:ca:59:00:5b:0e:31:2f:19:54:91:43:c2:4d:f3:1f:
30:a3:e8:12:9c:fc:a8:0d:cf:72:a9:94:db:e8:a2:32:4b:11:
66:ee:3f:59:56:d4:8b:6f:a2:8c:a7:2e:dd:93:c4:91:5d:5d:
f9:83:ab:96:ea:40:b6:21:98:c4:53:e5:e2:75:e8:1a:6b:29:
c7:fa:35:6b:df:03:8d:51:6c:c5:d5:9e:ab:71:b6:5c:34:64:
b2:2c:30:1f:f8:47:b2:66:d1:83:9a:28:89:af:9e:9a:2f:f5:
f1:91:7d:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:50:14 2025 by rpki-client