Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B64C7BD4D8A611EF905F23A2762E951A.roa
File: B64C7BD4D8A611EF905F23A2762E951A.roa (raw, json)
Hash identifier: Ae6ppT2vi9NgcbKGQst/936od8ypDJbS/bCdZiq1oSs=
Subject key identifier: 09:C9:E1:79:BD:7A:B7:B0:09:6A:1C:10:4A:12:3C:28:93:40:FD:46
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013E9E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B64C7BD4D8A611EF905F23A2762E951A.roa
Signing time: Wed 22 Jan 2025 09:53:21 +0000
ROA not before: Wed 22 Jan 2025 09:53:17 +0000
ROA not after: Wed 05 Feb 2025 09:53:17 +0000
asID: 395793
IP address blocks: 154.200.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81566 (0x13e9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 09:53:17 2025 GMT
Not After : Feb 5 09:53:17 2025 GMT
Subject: CN=6790c011-60f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ae:2f:8c:45:e1:1e:8f:30:67:19:36:6c:ab:
32:62:5b:f6:f2:77:a1:6e:23:b8:97:90:51:a6:3d:
a3:04:c3:f8:ed:a7:1e:1a:eb:04:91:9f:c6:dc:f8:
9e:2e:48:05:36:13:48:1c:42:09:45:17:9a:68:74:
5f:cc:65:2c:b7:74:fa:59:fa:e2:16:27:fa:5c:a3:
de:57:c4:3b:17:94:b3:18:32:a2:48:d1:6b:7a:36:
b2:65:49:a0:ab:b7:ae:1a:92:df:d8:e7:7b:2b:3c:
c0:e0:1b:69:55:37:36:1a:e0:15:f9:26:24:d4:46:
f4:0d:8b:b4:3a:f2:43:fc:d1:07:27:ef:54:bd:e1:
bd:91:d7:81:f1:c4:ef:d8:1e:f4:5c:89:42:fc:60:
da:37:6c:79:67:9a:1e:9c:d3:ad:7a:1b:0c:ef:f3:
4f:fa:fb:2c:d1:ea:6d:e6:45:d0:ae:7e:77:8c:de:
8f:58:11:53:51:20:85:d3:a8:e5:2a:bd:e6:a5:d8:
e0:b8:af:03:51:5a:09:6f:65:f0:e8:d6:13:41:98:
fa:f9:d7:24:35:31:49:a3:1b:ce:63:ba:ff:b9:10:
96:b5:3e:90:33:52:99:70:82:a4:11:42:77:fd:68:
7b:dd:7b:b7:6a:c1:f3:c4:61:43:89:e7:e6:d2:02:
31:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C9:E1:79:BD:7A:B7:B0:09:6A:1C:10:4A:12:3C:28:93:40:FD:46
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B64C7BD4D8A611EF905F23A2762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.55.0/24
Signature Algorithm: sha256WithRSAEncryption
83:bd:8b:43:b6:e2:a7:48:ca:3d:50:9a:35:9d:98:fb:40:44:
dc:85:74:f2:e0:fe:2a:f0:05:9d:9c:d6:6d:1a:be:31:be:9c:
8a:3c:36:82:bd:54:0d:22:41:e3:4a:5f:ae:e6:d5:8e:d1:3f:
a2:e7:6c:87:eb:8f:5a:94:3a:dd:17:d4:5c:31:a0:34:5b:21:
ab:5f:c4:52:48:75:73:94:bf:9c:1f:74:93:e8:79:fe:ac:6f:
7f:07:86:1b:a9:db:df:12:64:9f:dc:75:e5:9e:11:62:a5:7d:
fb:09:59:66:12:f4:ab:b1:da:fb:f0:59:92:cb:58:88:52:da:
a0:29:77:af:35:2a:a4:f6:71:ae:26:9b:25:c7:15:6f:ec:0c:
b8:0c:ec:fb:2c:a1:3b:8a:66:20:4d:50:7a:bc:30:c1:7d:be:
71:95:c4:9a:57:f4:94:22:9b:f5:dc:05:da:cf:73:8b:4a:5c:
a4:28:a8:9c:50:27:ba:28:f4:92:53:06:bf:ba:02:ea:ed:3c:
40:89:e5:2b:89:fd:9d:7a:b4:58:01:ea:16:3c:a0:fb:5b:96:
26:7c:3d:d5:47:6d:ad:a6:95:2e:f8:a5:64:22:4f:49:22:08:
03:1d:06:66:77:34:0b:a8:8f:b2:82:d2:aa:b6:9e:ca:88:07:
c4:70:94:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:51:34 2025 by rpki-client