Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D67B94CD9CA11EFB04EFB44762E951A.roa
File: 9D67B94CD9CA11EFB04EFB44762E951A.roa (raw, json)
Hash identifier: LWxLY4AYLzh7CL7bupT+nxF58VQhTqPOIAw+/jSmQP4=
Subject key identifier: ED:0C:F1:9B:D8:B3:7D:90:91:85:A3:F8:7E:F8:69:6D:98:AA:3E:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142E0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D67B94CD9CA11EFB04EFB44762E951A.roa
Signing time: Thu 23 Jan 2025 20:42:52 +0000
ROA not before: Fri 24 Jan 2025 20:42:48 +0000
ROA not after: Fri 28 Feb 2025 20:42:48 +0000
asID: 62240
IP address blocks: 154.196.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82656 (0x142e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 20:42:48 2025 GMT
Not After : Feb 28 20:42:48 2025 GMT
Subject: CN=6792a9cc-187a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:51:68:af:e7:1b:2c:3b:b2:8a:de:ec:b3:ed:
9f:71:9d:12:80:b4:bb:65:9b:17:01:c2:c8:a6:d6:
49:d9:f1:a8:06:1b:b0:1f:e1:d3:76:fd:83:a7:62:
05:cb:58:8d:42:5e:82:29:78:97:ba:7f:c7:1e:ef:
f3:90:27:b6:a7:6a:bf:6d:2c:a0:83:38:a0:05:0b:
9c:a2:6b:31:17:96:33:4f:bc:dc:3d:a8:ab:b5:3e:
70:50:9e:68:68:ca:9e:3b:d0:ee:28:64:c4:4a:3f:
50:d0:38:77:ef:05:36:59:02:ab:5b:ce:fb:b7:aa:
16:1d:d2:41:70:8d:ff:22:cb:b7:12:c9:58:5c:d9:
14:54:71:86:01:e3:95:83:8c:aa:c4:a6:14:97:df:
48:57:77:0a:1c:91:d0:a1:f1:a6:8f:df:c5:3a:65:
85:ec:2d:93:17:97:57:6e:bd:8e:db:1e:94:0e:e0:
46:b1:19:20:82:bb:b9:a9:70:7f:82:a4:2b:f2:b5:
ce:b1:45:75:06:42:3b:02:d6:36:0f:35:f1:61:c5:
bb:83:0a:29:12:01:56:4a:22:50:9b:b3:97:a0:c1:
15:31:5f:1a:6a:e3:5b:ed:8f:80:02:41:f8:21:1a:
49:e3:5e:84:48:b5:7d:76:76:96:04:ed:7a:fa:11:
a0:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:0C:F1:9B:D8:B3:7D:90:91:85:A3:F8:7E:F8:69:6D:98:AA:3E:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9D67B94CD9CA11EFB04EFB44762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.60.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:b5:bc:6e:d9:f5:03:2d:e3:b8:9d:99:1b:98:28:73:2a:a2:
32:03:0a:2c:2e:8a:3b:cf:98:fb:46:3b:40:e7:95:e3:9a:94:
8d:f8:3b:3f:73:e8:d2:43:34:b5:bf:30:74:c1:76:a3:73:7c:
72:5b:08:2a:c2:25:48:77:bd:06:5e:72:b0:28:09:85:36:44:
70:3d:be:59:4d:f0:05:26:7c:ac:28:90:08:7c:eb:c7:f8:90:
2c:2c:8c:48:ef:b0:2a:2f:2b:f7:3c:77:df:31:f0:3a:bd:63:
45:dd:02:0b:17:58:07:b2:af:e3:97:3b:1b:2c:4a:4a:b5:6a:
52:60:87:f9:93:d1:ab:5f:2e:55:b8:dc:16:16:39:ee:58:4d:
f8:99:11:f9:b1:db:a0:07:01:37:56:49:41:7b:41:de:a1:5d:
00:61:8a:5e:9a:39:3b:72:b8:88:8d:88:3e:d7:eb:5a:32:55:
64:14:75:98:22:95:5f:fc:e8:f6:cf:02:9d:4c:ac:a9:09:b9:
5f:da:22:6f:c8:7b:0e:ed:79:cd:34:3f:cb:e6:fa:0d:7b:8e:
c4:da:db:8f:25:38:46:32:f4:c3:f0:a5:29:fb:24:79:3b:7c:
6c:e2:22:3c:ba:2a:23:84:4b:01:e9:1a:40:23:d0:76:c1:bb:
b1:b4:81:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:11:44 2025 by rpki-client