Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F7DDFC8DA4211EF85D02F79762E951A.roa
File: 8F7DDFC8DA4211EF85D02F79762E951A.roa (raw, json)
Hash identifier: 8gOLxUFIHOfXDz6v0s/Bk7MNTwHTFBxkBp9AZT7V8mA=
Subject key identifier: 1A:65:AC:7E:4B:74:7F:CB:13:F4:AA:68:8B:7A:01:1A:38:2A:F9:AB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F7DDFC8DA4211EF85D02F79762E951A.roa
Signing time: Fri 24 Jan 2025 11:01:28 +0000
ROA not before: Fri 24 Jan 2025 11:01:25 +0000
ROA not after: Wed 05 Mar 2025 11:01:25 +0000
asID: 202656
IP address blocks: 154.219.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83420 (0x145dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:01:25 2025 GMT
Not After : Mar 5 11:01:25 2025 GMT
Subject: CN=67937308-23d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:45:31:e8:23:ce:da:b2:e1:e3:f7:6a:c9:8f:
3a:24:ea:04:e3:2c:7c:fd:cd:dc:7f:6d:99:9f:fb:
12:2c:73:07:2b:9d:f5:7f:9f:ad:ae:4c:93:f9:42:
05:8d:b9:64:96:44:7c:3c:47:d5:62:98:1b:a1:51:
bd:76:f6:21:97:12:b8:9c:b7:ca:22:87:e1:55:6a:
4e:b0:6e:9b:2b:6b:10:60:f9:dd:3d:dd:a7:34:b7:
ca:91:29:a4:0b:1c:a7:5b:c0:f8:b6:e4:07:66:89:
7e:1a:0e:af:3c:a2:3f:7b:63:27:d0:0d:3d:1c:2c:
4e:5e:cf:7f:a7:f3:c9:8a:65:10:3e:ee:24:f0:f2:
c1:ce:61:5a:6d:a7:63:17:bd:9f:5c:bc:0a:2a:2c:
b6:ed:93:7e:82:c0:34:71:30:d5:56:dd:b7:09:26:
f9:d1:64:d5:ef:8e:e0:36:96:ea:93:d8:9e:ec:11:
d1:36:13:24:c9:72:6c:67:30:ae:24:48:8a:90:13:
61:4b:91:15:18:59:32:e4:10:22:d9:d6:b1:b9:7b:
c2:0f:7c:0d:01:1d:35:45:63:13:19:13:48:cc:7b:
bc:e2:70:c3:d7:47:77:f1:8f:8c:c9:b7:6c:d3:68:
e4:b3:b8:84:15:43:2e:cb:0e:07:5c:2d:c9:07:05:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:65:AC:7E:4B:74:7F:CB:13:F4:AA:68:8B:7A:01:1A:38:2A:F9:AB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8F7DDFC8DA4211EF85D02F79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.31.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:32:11:7a:01:9f:b4:58:1d:78:4e:c6:c1:99:83:1c:3a:82:
24:97:43:02:ef:3b:8d:ef:6d:e9:aa:6c:ab:7a:81:af:df:e7:
2a:1e:70:0a:1c:47:01:6a:33:cd:8c:64:7c:5e:35:68:59:b4:
df:b5:4d:96:8d:7a:58:44:2f:53:37:95:c3:01:4d:e5:f6:6c:
f8:8e:0e:aa:23:85:fc:db:9b:59:e4:a4:1d:4f:b0:68:bb:bf:
d2:4d:e3:51:0a:74:d6:59:68:72:b3:e3:d1:88:11:cf:b8:34:
d4:cf:10:d0:12:9a:6d:76:6e:17:96:b8:e7:b8:30:4d:71:3d:
67:d0:de:b7:7d:e4:af:0a:b7:07:88:e9:4d:4e:eb:c9:92:35:
ae:af:82:c0:93:28:02:b8:51:63:86:c4:1c:b3:39:e1:b6:ea:
77:f7:f9:f2:2a:d2:2e:1d:c5:09:03:3e:88:41:97:2c:cf:0e:
61:4f:b5:5c:61:b5:ba:39:23:38:20:7e:24:7e:6f:ca:21:71:
9d:f4:71:61:a6:f2:f8:1a:45:2f:c0:2e:a2:e1:b1:04:eb:9a:
7a:ad:77:4c:0f:77:09:84:08:62:c7:f2:34:8f:3b:c4:a9:57:
e9:13:a4:f6:42:a3:30:e6:41:c2:31:f2:a7:41:c9:fa:d1:9a:
04:1b:e5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 07:27:20 2025 by rpki-client