Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD47776ADE2611EFBC5C6B43762E951A.roa
File: BD47776ADE2611EFBC5C6B43762E951A.roa (raw, json)
Hash identifier: ZdcL1HYD40kAR9RIazM0E9IEoph/Dh6PvzQmAaUR+UY=
Subject key identifier: 2E:82:B8:18:05:33:EC:3E:01:09:C7:C3:9E:8D:80:DD:5D:94:AC:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D7A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD47776ADE2611EFBC5C6B43762E951A.roa
Signing time: Wed 29 Jan 2025 09:52:24 +0000
ROA not before: Wed 29 Jan 2025 09:52:20 +0000
ROA not after: Fri 28 Feb 2025 09:52:20 +0000
asID: 395793
IP address blocks: 154.193.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85370 (0x14d7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 09:52:20 2025 GMT
Not After : Feb 28 09:52:20 2025 GMT
Subject: CN=6799fa58-7607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:e9:e4:fe:f3:9b:87:95:be:e9:52:62:cc:
ec:f3:9e:88:d2:1e:a7:42:4b:6f:30:90:ad:9d:74:
ec:5a:96:68:19:f8:9e:23:88:e0:15:06:fb:bc:d9:
f2:7a:e9:09:6f:f7:7c:1e:4a:4a:1a:06:b9:43:04:
72:ce:6a:52:b0:c3:fc:6b:a5:09:ca:6d:9a:98:7a:
99:da:e6:58:16:13:78:47:70:a5:a2:c8:91:30:c4:
ac:46:12:4f:26:69:02:a1:2f:9a:f2:7c:c3:e6:9c:
5c:0f:8b:c8:58:d5:5e:ff:02:55:b0:02:14:a0:07:
76:b0:c3:df:d5:ab:3d:e4:fd:62:33:eb:03:e2:9b:
3b:fb:85:d1:bb:4e:31:88:69:21:d7:d9:d6:f3:da:
bb:58:c1:a3:db:c1:ed:15:92:44:e3:ae:08:6a:97:
6f:7d:2f:40:7e:61:46:5e:5f:88:86:76:73:65:76:
9d:33:be:c0:11:a2:90:15:65:20:69:61:6a:d5:de:
5d:c9:11:5f:b4:59:2a:f9:81:f4:d7:92:0c:a3:d9:
67:9d:ea:57:42:45:e4:47:d0:e7:9c:a8:99:ed:95:
b2:bf:a5:56:4b:96:f5:69:35:74:3e:9c:90:d9:08:
8a:2c:02:2a:73:2d:75:31:72:a3:7e:7c:f8:37:d6:
d2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:82:B8:18:05:33:EC:3E:01:09:C7:C3:9E:8D:80:DD:5D:94:AC:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BD47776ADE2611EFBC5C6B43762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.109.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:62:c9:33:17:f0:dc:0c:03:78:d0:8e:f4:24:f5:c1:21:f1:
2f:14:2c:59:8c:06:ca:fe:82:83:bc:3f:0c:9e:67:79:c7:e8:
ac:87:83:18:c6:d1:30:0b:65:95:a7:fa:07:ae:43:a4:84:30:
19:b5:c7:93:0c:35:e6:5d:fb:bb:17:07:0e:aa:f1:65:8a:84:
4a:aa:1e:bc:8f:50:e0:0d:29:fc:95:89:68:01:cb:f6:e2:74:
3f:62:00:fa:8f:ad:3a:66:06:2d:27:7a:f9:2b:28:e8:67:58:
bb:37:66:56:cb:8a:0a:ce:6d:89:98:97:06:93:0a:5a:3f:72:
8a:63:37:34:8b:dd:d7:8a:7b:22:f6:f1:3e:a3:4f:19:f7:c5:
8a:04:5a:af:21:bc:b1:a5:16:5d:2c:44:2d:c2:f4:f4:de:48:
39:81:72:9a:cd:50:be:e2:58:e7:05:a0:4a:d0:c5:b3:5a:34:
b2:fc:e2:4b:f7:9f:3c:6a:ea:7c:ae:4c:8c:35:74:7a:fa:c0:
e8:2b:a6:09:ae:90:a2:78:fe:d5:43:19:d4:43:0c:b3:26:76:
87:7a:55:a7:d1:20:ce:ab:b3:80:46:d7:2f:32:d8:3c:ec:b7:
8b:e3:32:ff:ee:90:09:33:ad:b7:94:af:ef:46:21:50:2e:41:
ba:f3:66:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:55:36 2025 by rpki-client