Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAAB7E4EC29911EFBD55EF95762E951A.roa
File: DAAB7E4EC29911EFBD55EF95762E951A.roa (raw, json)
Hash identifier: DhklcgpbeWoxBuiryOacc9RkIbYrnEAsbpoNfXD8spE=
Subject key identifier: C6:F6:DC:D6:E0:6F:1C:9A:82:9C:98:60:77:81:98:73:8F:13:D9:34
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0124F6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAAB7E4EC29911EFBD55EF95762E951A.roa
Signing time: Wed 25 Dec 2024 08:25:53 +0000
ROA not before: Wed 25 Dec 2024 08:25:49 +0000
ROA not after: Mon 03 Feb 2025 08:25:49 +0000
asID: 21859
IP address blocks: 154.83.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74998 (0x124f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 08:25:49 2024 GMT
Not After : Feb 3 08:25:49 2025 GMT
Subject: CN=676bc190-b730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:60:b1:6f:eb:71:cd:92:38:c6:ca:95:19:1a:
b0:ce:88:7a:33:88:37:1d:3d:8c:2a:dc:ba:b5:a4:
22:ed:2a:af:ad:f9:ff:56:d9:cc:ae:44:ce:22:60:
70:1d:d9:a2:d3:c0:ae:6c:4c:06:f8:2f:4e:0c:84:
64:95:46:09:95:f6:08:97:88:97:c5:c6:a3:ea:a8:
0d:ae:93:ee:f8:46:ff:cc:17:ab:cf:e0:fb:17:90:
8f:e0:7f:61:6f:17:4a:ad:fa:8e:b2:fd:f2:19:42:
9d:11:83:9b:56:bd:7b:c6:b0:3d:2b:c4:77:92:1c:
a5:43:78:4d:09:8a:47:a1:da:e8:8c:7b:07:10:4d:
ee:92:39:cc:20:bf:d7:2b:2f:47:3b:b5:e4:ee:f4:
aa:85:7a:70:6b:7c:7a:a2:eb:31:31:d5:fa:50:81:
99:9f:41:6c:a2:b2:f4:a8:db:46:ca:6e:eb:20:a0:
09:0d:26:71:08:a0:ac:4d:5a:64:07:9c:97:27:0f:
7f:be:64:f1:3e:32:b1:94:df:9f:9d:da:34:f2:d9:
14:19:48:fb:a1:0a:b6:ba:d5:1b:e2:c7:73:20:f5:
58:6c:a7:b9:5d:1b:c4:91:ed:b9:ac:09:77:0e:33:
73:47:14:86:8c:3d:90:15:aa:b2:5d:df:5f:00:6e:
35:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F6:DC:D6:E0:6F:1C:9A:82:9C:98:60:77:81:98:73:8F:13:D9:34
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DAAB7E4EC29911EFBD55EF95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.71.0/24
Signature Algorithm: sha256WithRSAEncryption
34:4a:e1:69:65:bb:46:37:a1:95:82:bb:7d:6c:db:3a:ae:2c:
1a:da:a6:dc:4a:d6:f2:96:ca:a1:d0:a3:cf:69:91:51:ca:69:
b8:08:ed:89:ff:b9:58:8e:59:1b:42:d9:5b:c5:ec:54:ac:12:
8e:89:14:e5:cc:a5:12:46:94:46:24:c6:48:31:b1:1c:4f:39:
f8:b7:5f:c0:da:11:49:46:5b:a8:e5:9e:73:a3:20:68:c3:9a:
6b:b6:37:ac:3c:f3:44:26:72:e8:08:00:22:54:98:a6:e9:af:
a9:e1:df:da:c4:a5:ba:74:a6:5e:b0:e8:0a:5f:3a:f5:b6:c1:
cb:71:dc:9d:04:11:b4:04:cf:ea:b3:d2:70:e1:61:6c:cb:f0:
69:f4:07:e7:28:ef:71:06:46:ca:9c:56:4d:bf:88:b5:eb:d3:
c4:53:f3:f3:8d:19:e3:b8:2b:ae:9a:b6:d7:e1:c6:46:2d:67:
40:c8:b5:9e:66:09:fe:c6:bb:69:5f:39:f1:25:1b:80:d6:56:
0f:09:d1:44:e3:6e:67:9e:ea:63:e4:77:00:ef:60:ed:4d:2a:
2f:e0:6a:d0:c7:62:d2:90:56:95:ae:89:ab:a9:b2:8c:1c:5e:
27:97:7d:ee:fd:9c:39:8b:18:d3:18:b9:a8:82:ef:48:7b:d4:
36:bb:91:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 21:35:20 2025 by rpki-client