Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B137410ADA3C11EF96F59550762E951A.roa
File: B137410ADA3C11EF96F59550762E951A.roa (raw, json)
Hash identifier: 4q3kcuQImc/ZrE8yQkgwqmy1i/zfHC/AT/WX5txD7Rw=
Subject key identifier: 52:3E:AC:55:92:ED:A5:A1:A2:10:17:DA:69:E6:D0:F1:42:FD:AA:28
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014573
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B137410ADA3C11EF96F59550762E951A.roa
Signing time: Fri 24 Jan 2025 10:19:28 +0000
ROA not before: Fri 24 Jan 2025 10:19:24 +0000
ROA not after: Tue 11 Mar 2025 10:19:24 +0000
asID: 138915
IP address blocks: 154.95.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83315 (0x14573)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 10:19:24 2025 GMT
Not After : Mar 11 10:19:24 2025 GMT
Subject: CN=67936930-728b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ea:b4:a7:d5:1e:f9:75:b0:fe:54:7f:f3:3e:
15:f8:d9:b9:f4:68:af:41:a1:48:39:34:81:ed:a4:
22:d4:f9:aa:8d:c1:4a:8c:69:37:30:cd:ab:30:48:
c1:5e:15:fc:35:90:bc:d4:87:cf:28:7c:26:12:f4:
31:26:69:c8:b9:c0:6d:d9:e5:b7:bf:90:c6:a1:63:
a1:d8:2e:e8:9f:3d:3f:ec:d5:45:af:4a:bc:90:4f:
08:bc:6e:1c:56:30:e3:e9:12:3c:2a:90:4c:7f:3c:
9d:a2:d2:ff:90:77:34:f9:b7:9f:0c:7b:6e:b5:f7:
0c:c1:d3:cf:b5:8a:35:48:a2:d3:1b:d5:da:b2:01:
09:25:d4:1a:ff:a9:5f:27:6d:5e:69:d0:c0:ee:76:
55:86:4c:c4:8a:b5:4d:44:d7:a4:e2:38:46:11:8e:
73:84:61:1e:1e:7d:89:ac:1e:70:13:05:0b:49:59:
d4:09:25:a5:2a:86:4b:1b:b5:80:a8:ec:95:c3:a4:
76:c3:c8:af:35:81:c3:04:b5:e6:6e:0f:09:3a:8a:
1f:9d:94:8b:86:b6:53:a9:4a:65:61:c4:f9:6f:7a:
a5:76:f8:49:8a:13:0b:7e:aa:0a:71:d3:89:f2:e4:
8d:af:c6:74:dc:7e:1f:bc:38:9f:52:53:9a:a1:9a:
34:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:3E:AC:55:92:ED:A5:A1:A2:10:17:DA:69:E6:D0:F1:42:FD:AA:28
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B137410ADA3C11EF96F59550762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.82.0/24
Signature Algorithm: sha256WithRSAEncryption
23:3f:fb:c0:fe:4c:96:91:a2:49:9c:d1:a0:3d:5c:cc:3f:38:
e0:e8:12:be:7b:d5:e4:91:d3:4d:51:98:f3:fc:a6:86:d7:e0:
1d:18:a3:d0:d6:6f:31:4b:9b:bb:46:00:f3:e7:89:0e:8d:97:
10:15:33:4e:ee:a2:5c:ba:a5:6c:23:86:16:83:b2:20:16:20:
49:d3:82:fa:c0:ae:ef:ff:d6:df:3d:18:52:fd:cb:aa:f6:10:
19:17:55:31:a7:1e:5d:d0:60:a4:89:00:db:10:08:b7:07:22:
fd:30:eb:93:31:ac:ef:d1:cc:84:37:96:e3:be:24:44:9e:26:
91:e3:fc:bc:bf:c3:4f:ec:05:33:f0:9d:6a:cc:b9:e5:a7:e4:
2f:e7:9f:52:ab:8a:71:83:8a:e1:b9:c8:7b:ee:d9:5f:54:ac:
18:c0:c5:f3:d4:a8:73:39:90:9a:94:e2:9e:19:2c:32:e9:07:
6e:d9:63:99:13:45:4d:56:77:e1:0c:94:5e:e9:fe:af:75:4c:
ec:b6:7b:05:ad:be:b1:53:bd:68:58:4b:49:19:64:1c:bc:d5:
69:84:3f:e1:5e:e1:ab:f4:75:72:08:84:3d:9d:02:91:72:11:
84:cb:c9:6e:87:62:41:b8:49:a4:56:d5:a6:5a:29:ae:03:ad:
7c:4f:3a:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:44:21 2025 by rpki-client