Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D34B1CE2DA4311EFA7437380762E951A.roa
File: D34B1CE2DA4311EFA7437380762E951A.roa (raw, json)
Hash identifier: gAxsWvqw2PPdbZJQRHbb9061IfMUHOLwZqO24fwztyU=
Subject key identifier: AE:CC:9C:16:AC:03:0E:30:16:9A:D7:9C:9A:86:98:66:38:6C:82:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145EE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D34B1CE2DA4311EFA7437380762E951A.roa
Signing time: Fri 24 Jan 2025 11:10:31 +0000
ROA not before: Fri 24 Jan 2025 11:10:28 +0000
ROA not after: Fri 28 Feb 2025 11:10:28 +0000
asID: 62240
IP address blocks: 154.196.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83438 (0x145ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:10:28 2025 GMT
Not After : Feb 28 11:10:28 2025 GMT
Subject: CN=67937527-0143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:07:8a:0c:ba:72:1a:ce:b0:3a:5b:86:fb:2e:
6c:28:29:22:df:23:aa:69:a3:70:73:71:3e:81:0c:
19:6c:cc:f9:9c:f1:2c:00:af:b1:37:df:14:9c:45:
95:4d:6e:bd:a5:7a:eb:4c:6e:f3:90:48:0a:df:f8:
5e:0c:72:05:d8:b8:6c:f1:64:d4:75:bf:5a:81:fe:
3f:03:49:d6:2f:ce:e5:8d:dc:32:ba:4b:cd:59:9b:
fe:8d:65:e4:b8:27:a1:b3:04:b3:7d:ef:67:b5:89:
5c:61:df:e3:10:2e:2c:34:3e:e6:39:3e:17:e5:4d:
10:f3:30:be:2a:50:ce:92:85:54:8d:cc:2e:7b:4b:
53:aa:90:b2:38:c5:92:29:cc:a1:cc:c7:9b:fc:d2:
e5:56:c8:7d:f1:46:27:53:d9:02:9c:69:d0:5d:c7:
75:b8:5e:28:9c:da:fc:36:de:d9:af:cf:f5:b1:66:
47:1f:c5:3a:87:3a:ca:0a:87:7b:ff:1e:d7:2e:a0:
17:9d:84:1b:63:57:b0:fe:b0:e4:74:ea:11:52:d3:
19:d1:34:68:d9:a7:92:8e:37:de:8c:e6:7b:67:ef:
d1:42:84:54:4e:65:79:60:4a:2b:05:83:06:f2:13:
91:5d:61:66:ff:a5:6b:3a:c2:84:51:e6:ae:1d:f8:
f3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:CC:9C:16:AC:03:0E:30:16:9A:D7:9C:9A:86:98:66:38:6C:82:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D34B1CE2DA4311EFA7437380762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.76.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:da:49:f0:ab:a6:98:35:c0:b8:67:15:58:ed:38:b2:6f:2b:
bf:2f:e1:e5:57:85:45:b3:e5:26:2c:81:63:32:87:4b:b0:8d:
f7:85:07:a5:8c:bc:dd:b8:54:fd:09:ac:af:26:ed:d4:ab:3a:
16:2c:b8:77:3f:91:14:db:92:84:30:6a:4e:7c:98:d0:cd:41:
c7:82:37:37:79:a0:17:fc:c6:c9:4a:18:1f:e8:a5:b0:8d:d4:
1a:be:22:c0:3c:e7:8d:4a:f7:72:f0:38:65:f2:55:e3:9e:ed:
5f:b9:72:e6:54:89:cd:44:84:3a:7b:0a:31:e2:9d:17:09:f2:
2c:b5:80:6c:ae:25:c8:70:a4:58:0d:ad:fd:46:e4:e5:d5:4c:
a4:53:71:ef:47:74:96:fe:f9:8f:36:25:a9:30:e4:1c:24:d2:
86:81:cb:68:e1:60:a9:7d:2c:01:8c:58:b3:db:18:c3:99:08:
19:22:e6:62:42:1e:9f:67:a1:4a:89:c6:97:63:97:21:33:84:
33:e7:fd:2d:c0:46:ab:a0:8b:7a:21:45:cb:a1:d0:c4:66:51:
3e:50:6d:6e:45:a4:3b:f4:a2:a4:db:86:df:e3:78:57:af:f8:
aa:28:2d:07:9b:83:df:4b:d8:a8:f0:db:ca:d6:99:00:0c:fd:
cd:0f:00:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:44:12 2025 by rpki-client