Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D975CF28BED611EF87826641762E951A.roa
File: D975CF28BED611EF87826641762E951A.roa (raw, json)
Hash identifier: 9GHPUj41KFa/35tU28M4Z6Y3GDztlyv+xeLzjmEYOUY=
Subject key identifier: 89:E4:3D:24:F7:14:D7:75:DB:51:2D:4A:E2:62:1E:9F:1A:63:55:4B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011CE8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D975CF28BED611EF87826641762E951A.roa
Signing time: Fri 20 Dec 2024 13:32:25 +0000
ROA not before: Fri 20 Dec 2024 13:32:21 +0000
ROA not after: Sun 02 Feb 2025 13:32:21 +0000
asID: 49505
IP address blocks: 154.211.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72936 (0x11ce8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 20 13:32:21 2024 GMT
Not After : Feb 2 13:32:21 2025 GMT
Subject: CN=676571e9-f4ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:94:ea:2b:ab:61:9a:2d:cc:3b:72:56:b5:10:
c7:37:3a:97:6c:ac:d7:9d:b7:0e:0c:38:ae:96:4d:
3e:b5:33:11:68:52:7d:93:ba:b1:03:53:d7:2b:bf:
50:fc:6a:ef:3e:32:1e:59:be:73:cd:72:02:ea:47:
97:23:d7:b1:e7:32:ae:26:5d:3f:b5:bb:90:63:24:
c7:c4:83:3f:35:0d:2c:88:09:66:57:1d:72:7e:e8:
df:d5:2d:9b:18:2b:28:b7:47:32:e9:4a:f3:9d:e7:
49:66:1d:da:61:4e:fe:c8:54:02:a0:4f:83:da:a3:
03:ba:f9:ac:3c:53:aa:56:75:42:24:17:f1:98:8e:
c7:e8:5c:fd:4e:d8:a4:cf:33:67:b2:79:f3:e5:88:
99:11:0a:66:ab:94:da:c1:d2:ed:1d:f6:1d:c2:1a:
a0:ac:f7:72:2b:f0:78:c8:69:bb:04:3e:a2:77:4b:
ac:e6:d2:63:de:2e:9d:85:e7:34:bd:4f:7c:59:d1:
4c:41:c6:55:b4:f6:f4:b5:d9:2e:a0:40:5f:04:88:
9a:e7:98:68:17:02:6d:c7:f5:bc:34:0b:58:06:f0:
38:9d:c6:36:a8:16:86:9c:f2:17:51:e6:ad:ca:41:
60:91:43:6d:4a:e1:a4:42:ac:a7:10:92:5f:d6:48:
7f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E4:3D:24:F7:14:D7:75:DB:51:2D:4A:E2:62:1E:9F:1A:63:55:4B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D975CF28BED611EF87826641762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.16.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:0b:6c:fe:30:3b:eb:c1:59:f9:23:0e:b8:4c:0c:50:48:cf:
40:a2:d4:21:2c:f3:91:27:5b:fa:eb:f3:ce:91:71:e3:90:18:
3c:3a:a2:dd:2c:a5:d3:d6:83:fa:ba:d5:72:9e:cd:b8:7b:f3:
c6:4a:72:08:d4:57:20:ea:f3:7a:73:8c:0d:93:a8:19:b3:fa:
6f:6b:36:64:b2:ff:0d:1a:e6:93:a5:33:78:c1:d2:a2:01:1c:
23:46:2a:52:14:d2:3e:0c:11:ed:95:88:58:e2:cb:9b:04:76:
79:08:f8:83:c1:1e:d5:db:b8:09:13:89:a6:f5:61:f7:0e:cb:
8f:a6:77:d4:b5:e7:dc:f2:48:5a:b6:88:a5:6e:1a:bd:31:61:
ab:9d:e0:89:c5:b5:6e:f2:79:05:75:d1:8f:72:f9:f0:f8:b6:
fb:3f:7c:95:71:1b:cf:bd:1a:f8:c9:0b:7a:e8:5d:28:b1:87:
9a:9c:27:59:46:a5:0d:7e:9c:31:53:f3:e4:2e:8d:fa:05:44:
c7:7a:1d:22:a5:83:4a:12:b9:bf:b4:49:ea:0d:45:2a:de:82:
66:ca:f2:34:8b:70:ae:56:f3:76:90:68:36:92:1b:99:43:cb:
ce:8f:9c:76:91:8b:f1:a4:3d:be:ad:d7:30:1a:0e:d9:4a:ea:
0d:90:be:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 07:32:06 2025 by rpki-client