Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10A5A6CD72F11EF8BC29983762E951A.roa
File: E10A5A6CD72F11EF8BC29983762E951A.roa (raw, json)
Hash identifier: 18iqMQe8FqDz3G3gRskTZNoBULHAWckMusC0MV9/DDY=
Subject key identifier: 1C:F2:36:3C:C0:1A:A4:A5:FD:19:68:CC:23:7A:6C:7B:86:05:1A:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013E36
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10A5A6CD72F11EF8BC29983762E951A.roa
Signing time: Mon 20 Jan 2025 13:10:11 +0000
ROA not before: Mon 20 Jan 2025 13:10:07 +0000
ROA not after: Wed 05 Feb 2025 13:10:07 +0000
asID: 135097
IP address blocks: 154.220.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81462 (0x13e36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 20 13:10:07 2025 GMT
Not After : Feb 5 13:10:07 2025 GMT
Subject: CN=678e4b33-4f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:54:ff:68:a1:56:f2:c3:a9:48:ac:fb:85:25:
93:a4:53:25:b7:22:12:89:f8:91:9a:d3:1a:03:73:
b2:b5:00:6f:35:d1:06:54:8f:e4:fc:17:33:d2:4b:
31:65:7e:ec:84:fa:84:98:5d:57:ee:5c:61:d4:d0:
7e:8e:80:5f:10:ef:47:d4:59:2b:0f:f7:23:89:a0:
b8:30:d9:ce:13:b3:49:18:17:ee:34:54:b9:39:a4:
8e:99:9d:46:b4:24:7d:0d:50:60:fa:b5:35:f5:fc:
2f:d2:b2:50:d4:31:82:22:c7:38:f0:ef:18:5c:94:
68:87:0c:2d:25:1b:3e:e1:58:9b:d3:9d:f4:b7:bf:
3f:3e:af:ba:79:9e:7e:09:8c:70:39:26:a0:f2:05:
42:20:05:13:74:18:34:71:c6:82:ed:e6:54:f8:c6:
5b:ac:36:b8:0c:17:dd:26:a3:f3:22:9f:dd:f0:c6:
c2:cf:8a:54:ff:db:a4:af:63:95:24:5d:57:c0:50:
5c:58:7b:69:7a:c0:d3:cf:42:a1:99:66:42:66:5c:
78:70:18:e4:de:ea:fa:5f:03:2f:c5:80:db:42:ee:
53:61:50:29:5f:53:f2:b7:74:28:b3:9a:be:2b:9f:
9c:cb:1e:7c:34:30:3a:42:7c:c3:3d:a4:e1:52:9e:
ba:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F2:36:3C:C0:1A:A4:A5:FD:19:68:CC:23:7A:6C:7B:86:05:1A:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E10A5A6CD72F11EF8BC29983762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.64.0/18
Signature Algorithm: sha256WithRSAEncryption
29:92:54:97:8f:b3:9e:4d:24:91:80:a3:5c:05:d9:bf:f8:71:
38:85:65:5f:6b:72:05:a6:56:b0:92:27:09:d7:fb:e6:65:3e:
75:91:0c:0a:a9:61:6f:92:b9:1b:17:9e:15:3c:d0:44:da:d4:
57:f6:64:57:7a:78:8c:16:9b:a4:cc:4e:d6:09:67:a8:3d:c9:
72:1d:a1:36:4c:72:1e:d3:36:2b:0c:38:07:a2:69:94:12:2c:
96:78:d3:38:12:76:0f:40:28:02:c4:54:79:68:a8:8a:7a:a9:
34:63:da:c6:b4:40:b0:0f:a1:46:99:18:73:e5:af:66:f6:2d:
56:2e:59:0f:8c:f0:34:5f:03:63:be:1a:75:70:dd:3d:63:c8:
f2:d2:0c:c2:38:3b:1c:bd:3d:f0:a5:35:24:31:15:35:bd:0d:
7b:13:9b:d8:ab:33:2c:04:55:65:37:46:c8:b7:b3:c9:a7:52:
05:b9:22:a8:09:69:c8:c2:2c:78:f5:f2:e3:f4:25:c3:d2:11:
60:e6:d5:0c:b3:df:05:b3:ce:f7:0f:09:08:46:0c:54:34:f8:
b6:51:0e:db:75:0e:24:60:20:f4:7c:a1:ad:db:f8:f0:b6:eb:
79:0a:c3:de:20:db:76:74:ec:da:68:29:77:5d:4c:83:10:3e:
e0:67:b0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:44:59 2025 by rpki-client