Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D9DD3A3AB21211EFAFEA2B7A762E951A.roa
File: D9DD3A3AB21211EFAFEA2B7A762E951A.roa (raw, json)
Hash identifier: qGhkbG7jGOMn6GEE3Db4AeK3tDDqyd2fNlV4oE4KhG8=
Subject key identifier: 69:74:F2:26:FD:3F:40:51:C7:EB:24:40:9B:06:9E:B3:B0:21:8B:B4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0117BE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D9DD3A3AB21211EFAFEA2B7A762E951A.roa
Signing time: Wed 04 Dec 2024 07:39:11 +0000
ROA not before: Wed 04 Dec 2024 07:39:07 +0000
ROA not after: Sat 01 Feb 2025 07:39:07 +0000
asID: 18229
IP address blocks: 154.210.216.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71614 (0x117be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 4 07:39:07 2024 GMT
Not After : Feb 1 07:39:07 2025 GMT
Subject: CN=6750071e-923d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:d9:70:08:8c:32:a8:1d:68:6b:be:b4:04:
73:b1:cc:f1:c2:8f:7e:f8:da:2a:9f:04:3e:7b:8e:
a4:a1:86:a4:b9:00:21:06:e4:04:c2:f9:03:6e:dd:
05:7a:63:69:35:29:e1:20:ce:d3:83:6f:89:bb:e3:
81:f3:3e:c9:fa:22:00:90:ba:23:2e:25:89:e9:72:
0f:28:97:45:a0:db:60:f3:db:22:ee:62:b1:ab:5c:
2c:86:c4:73:7b:7e:7b:d7:93:53:86:1f:c8:a6:67:
57:4e:69:c3:b7:48:83:9e:d4:81:d0:68:2c:a4:d0:
c1:1c:1c:81:62:f6:ce:4e:12:21:d1:3f:70:6e:03:
10:85:8b:bc:2d:79:4f:6b:39:99:a9:4e:e3:82:bc:
67:ea:1f:2c:f9:e6:f2:59:1d:27:e7:67:f3:fb:1d:
c1:c1:e1:91:14:fc:3a:5d:50:38:b6:f7:20:fd:3c:
e9:43:ff:18:72:48:5d:35:d1:1c:a2:35:03:76:53:
3b:e7:8b:78:a4:6b:07:0a:e8:23:b2:65:cf:88:27:
07:8d:a2:d3:92:0b:4f:8f:b5:78:38:16:f9:0c:8f:
53:7b:4e:c9:69:be:16:34:f6:81:c3:da:34:d9:09:
cd:fa:c3:90:ab:7b:18:04:15:a7:54:02:d1:c2:ea:
70:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:74:F2:26:FD:3F:40:51:C7:EB:24:40:9B:06:9E:B3:B0:21:8B:B4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D9DD3A3AB21211EFAFEA2B7A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.216.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:ed:d2:c7:de:13:40:cb:a4:ab:bf:78:4c:d5:03:1c:b5:ba:
eb:4e:0d:87:dc:33:57:a2:4b:f9:9f:60:6c:4a:18:a1:ab:88:
cb:18:8d:53:3c:c6:57:9c:0a:57:6f:fc:9e:4f:b7:8b:67:75:
34:3b:17:18:bd:98:b7:49:55:c4:2b:14:fc:84:bc:61:84:17:
fa:f6:22:0e:56:34:02:ec:ab:b1:fd:d5:bc:7d:b3:bd:f3:94:
32:d7:9e:3a:89:6d:87:0d:c0:1f:d1:4a:ce:fd:05:56:b4:ca:
35:b8:06:52:0a:5f:c8:42:b3:f8:08:42:3c:87:b1:b5:d1:7f:
e5:ff:45:d0:64:73:57:ec:a7:b6:5a:8b:d3:36:f2:82:d7:98:
c5:86:24:77:e5:b0:08:27:1d:7a:4c:33:30:03:c1:49:35:51:
74:3d:27:46:21:ac:7f:3d:d8:96:9e:2f:c6:09:6f:14:7d:4f:
c2:20:79:e8:cc:02:26:27:20:45:7b:30:4d:4c:be:8c:b2:f6:
b9:11:21:0e:45:a5:63:3f:b3:72:14:dd:61:c0:ed:a7:1e:df:
60:34:c4:3a:73:40:5f:49:01:eb:dd:9e:68:68:52:5d:8b:8c:
51:14:df:96:ff:4b:b1:0c:e0:a7:40:5d:0a:d6:a5:57:f2:8c:
2a:83:85:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:43:05 2025 by rpki-client