Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E63520EAD8AA11EFA7FF2ABD762E951A.roa
File: E63520EAD8AA11EFA7FF2ABD762E951A.roa (raw, json)
Hash identifier: pUJl+vS4+kq4N2bNtFuk+qUZpMUT8Uun1czjN4H8xoo=
Subject key identifier: 2F:2A:79:02:E4:3C:FD:9C:11:42:72:2D:1B:13:32:FA:4E:04:BE:9C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013EBC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E63520EAD8AA11EFA7FF2ABD762E951A.roa
Signing time: Wed 22 Jan 2025 10:23:19 +0000
ROA not before: Wed 22 Jan 2025 10:23:15 +0000
ROA not after: Sat 08 Feb 2025 10:23:15 +0000
asID: 150008
IP address blocks: 154.209.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81596 (0x13ebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 10:23:15 2025 GMT
Not After : Feb 8 10:23:15 2025 GMT
Subject: CN=6790c717-3648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d7:c4:e8:4d:06:77:62:1b:25:0d:03:c8:9e:
d4:1e:84:72:20:e8:a1:d7:86:b5:1a:4c:ec:43:8d:
88:f2:a2:fb:8b:0f:f6:b0:eb:0b:3e:67:d0:3f:a4:
54:4a:61:79:ab:36:43:13:f2:49:45:5b:41:1d:8a:
94:f8:7d:15:f5:8e:f5:d3:e6:f5:30:f3:59:51:ad:
43:02:31:66:b3:f6:e6:26:1e:dc:d0:b5:2e:25:dd:
1e:0c:45:64:29:5b:1f:86:7a:40:74:63:c4:ac:7a:
c7:a5:b2:d3:b9:21:fb:70:2b:c0:37:11:b0:5d:9d:
e2:14:3a:ff:85:b1:3a:2b:7d:80:4f:36:45:19:c8:
f0:1d:ea:94:ff:13:00:8b:57:96:0e:54:af:7d:83:
ae:96:4e:3d:da:8f:25:0c:46:8b:bd:c1:dd:3f:6d:
c0:05:3d:b3:35:2a:f6:92:9e:74:aa:54:0d:c3:14:
c4:d3:a8:3c:8b:03:ab:3c:5c:06:74:1d:fa:e8:50:
da:38:26:ff:87:a8:22:68:cd:dc:b7:9e:56:99:9d:
90:35:d6:1a:3b:3f:2c:47:a3:10:63:34:6c:29:62:
7a:ce:c7:03:31:ef:76:ad:50:7c:0e:cd:3f:ea:11:
b4:51:62:83:b0:69:37:41:11:be:dd:b1:ac:87:01:
21:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2A:79:02:E4:3C:FD:9C:11:42:72:2D:1B:13:32:FA:4E:04:BE:9C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E63520EAD8AA11EFA7FF2ABD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.252.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:c2:0d:fc:7d:6a:8e:e8:6b:fb:76:0f:c7:8e:54:4a:92:a7:
52:96:83:c9:9b:d4:c3:c9:c7:85:29:8a:9d:4f:50:b5:69:4c:
73:2e:ec:72:ad:48:13:a5:e4:6c:e3:f9:00:95:e5:ba:e4:c8:
62:89:55:b6:12:96:bb:a4:ed:ba:40:c1:08:b5:1f:b6:30:25:
87:ed:34:cc:19:9e:b5:66:0a:ca:47:32:13:95:54:1d:d8:68:
f2:33:81:51:41:d0:fe:c6:aa:fc:9c:1d:e0:fc:48:7d:01:46:
2c:cc:8d:ba:14:ac:7c:7e:7a:78:42:b0:0f:c2:1e:04:db:ea:
15:c0:be:aa:10:0a:6a:87:fa:56:f9:76:0a:2e:86:3b:ea:a5:
6c:5d:d3:36:f2:35:28:5b:37:30:0b:f0:dc:ef:a4:aa:94:d8:
ae:1e:24:eb:b2:0e:01:89:6c:e4:df:9d:66:74:32:7b:82:e6:
3b:6e:4b:f7:61:5b:15:9c:48:5b:76:e2:b0:cc:97:85:de:04:
ab:7f:73:69:20:63:5a:c1:37:b5:cb:3a:95:73:95:1d:c7:a4:
28:c1:71:ae:22:ad:ca:20:69:11:ce:ff:a2:79:3d:3d:d0:c2:
4d:36:54:67:25:a6:c2:fe:c4:e5:a0:aa:78:f3:f2:95:a0:f4:
64:e8:76:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 15:45:04 2025 by rpki-client