Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F5C8F04B20F11EFBC374663762E951A.roa
File: 8F5C8F04B20F11EFBC374663762E951A.roa (raw, json)
Hash identifier: hNnAEIwL0LizqZG/FDOOqbNS4GMuHhueITNKmGQaw/g=
Subject key identifier: 89:DB:7A:C1:98:DD:58:B3:DC:CE:15:AD:47:38:30:51:5C:6F:48:17
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0117A0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F5C8F04B20F11EFBC374663762E951A.roa
Signing time: Wed 04 Dec 2024 07:15:37 +0000
ROA not before: Wed 04 Dec 2024 07:15:33 +0000
ROA not after: Sat 01 Feb 2025 07:15:33 +0000
asID: 46071
IP address blocks: 154.209.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71584 (0x117a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 4 07:15:33 2024 GMT
Not After : Feb 1 07:15:33 2025 GMT
Subject: CN=67500199-476e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e5:f0:7a:e9:c2:3e:e8:d3:41:6b:84:96:80:
09:fe:f0:0e:d0:82:3d:d8:e0:d1:a7:02:6d:fd:ca:
31:10:5e:3d:b7:d1:a2:71:3e:49:29:7c:27:1b:5a:
d3:91:70:2e:71:47:1e:64:47:2f:3e:4f:47:d9:90:
6d:5b:50:a5:f2:82:83:7d:94:60:60:b8:10:74:4b:
c7:d6:21:a4:65:29:ee:99:75:c7:8d:7b:22:97:be:
e0:ef:26:34:aa:af:af:22:20:b7:fa:62:82:ac:80:
00:d9:03:72:e8:1d:03:d4:8b:17:cc:81:56:f1:45:
0c:88:64:eb:e6:93:51:e2:19:a4:b4:14:eb:86:12:
80:82:e6:bf:5f:9d:d8:e9:3c:45:68:f0:5f:25:83:
4e:87:ff:01:9a:7c:b9:2f:26:59:0d:10:27:aa:0a:
41:f0:fa:a5:87:52:e4:7d:48:8a:98:fd:c0:07:8f:
f4:bd:e0:01:d3:77:4c:93:0c:75:3d:38:7e:4c:b1:
cc:05:7a:a8:2f:9f:b0:fd:b4:bc:85:08:11:ba:70:
af:27:fa:cf:7d:1d:b8:e6:47:d6:f4:c1:50:82:de:
8b:be:fa:87:1c:05:39:59:78:cd:5c:9b:ca:40:d3:
7b:0b:56:8c:02:2c:9c:8d:fa:d9:ee:e3:00:9d:af:
74:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:DB:7A:C1:98:DD:58:B3:DC:CE:15:AD:47:38:30:51:5C:6F:48:17
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F5C8F04B20F11EFBC374663762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:cf:4d:4e:0c:84:ed:4d:34:80:96:b3:fd:53:b8:1a:2a:e2:
a2:fd:44:a3:9f:11:0f:25:48:f8:51:93:fe:8d:30:f7:d4:1a:
e6:a7:6b:09:dd:19:49:d1:69:c1:5c:69:1e:07:37:25:ee:f3:
ff:c8:8a:66:2e:7a:39:40:c0:45:61:d3:1e:3b:3d:ae:6e:1f:
2e:3e:ed:3e:72:ea:e1:a4:2c:dd:eb:88:e5:08:9e:37:ba:6e:
e0:71:af:e7:74:fa:55:f1:b5:ab:82:71:b8:f3:fa:c4:79:d3:
d0:4f:2a:42:3b:9f:4e:5e:e1:e1:1c:2c:af:04:6b:9d:9b:bf:
ab:06:5f:1b:cb:df:9d:01:7f:95:9c:03:c5:e5:4b:26:70:49:
6e:66:6f:60:49:0a:1d:1f:05:c6:c9:92:e8:77:94:e8:ce:26:
b6:be:4e:55:c6:86:6d:2e:82:28:63:98:1a:bd:7b:30:2f:43:
60:53:18:f1:8f:99:1f:61:09:0a:0c:f5:c1:87:51:80:6a:21:
d1:14:cd:42:26:31:db:67:e4:38:eb:9e:76:5e:18:ce:ad:e0:
8c:ce:5e:15:a3:7a:bd:8d:29:ad:1f:58:12:fc:da:57:a0:23:
18:19:dc:25:8b:d8:43:44:53:e8:84:cd:b1:e7:c7:4f:b6:7f:
1b:9a:ab:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:09:22 2025 by rpki-client