Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F29E21B8D96511EFB5193EA7762E951A.roa
File: F29E21B8D96511EFB5193EA7762E951A.roa (raw, json)
Hash identifier: p6WjO6tkfZQYUSfTp+1JPwRtTT3l8IxqZoJ9DMWj6NI=
Subject key identifier: 6D:65:51:E5:51:95:63:90:22:14:42:A9:5A:81:30:69:BB:2C:50:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014095
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F29E21B8D96511EFB5193EA7762E951A.roa
Signing time: Thu 23 Jan 2025 08:42:16 +0000
ROA not before: Thu 23 Jan 2025 08:42:12 +0000
ROA not after: Thu 27 Feb 2025 08:42:12 +0000
asID: 59187
IP address blocks: 154.221.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82069 (0x14095)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 08:42:12 2025 GMT
Not After : Feb 27 08:42:12 2025 GMT
Subject: CN=679200e8-7c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:17:a5:18:f5:32:31:f1:ca:14:fd:f5:4f:02:
2e:c0:37:7e:4d:bd:91:15:b0:27:8e:97:10:c1:82:
65:ab:38:8a:3a:66:fe:f3:38:69:a9:76:4a:ca:db:
15:9b:ef:c4:e7:9c:f7:a9:5c:55:fd:78:28:2a:b5:
e1:44:c2:04:e2:d2:cb:74:a1:99:ad:97:9a:cd:a3:
d1:e4:d4:bd:26:a3:3e:b1:54:d8:ff:e9:ab:b4:9e:
89:74:89:6e:6a:d2:48:45:f7:1a:22:42:7c:7b:b6:
ab:a3:a5:6a:71:49:79:94:78:44:63:fb:e0:5e:13:
ec:a8:36:59:0a:3f:e4:ff:ca:9b:3a:7c:65:ef:62:
b0:69:28:f9:0b:41:1e:56:4c:a1:dc:8d:1a:a5:61:
44:6d:13:d0:f3:71:3b:11:c3:b2:b7:da:04:7f:2a:
9d:a5:c0:5b:94:0b:05:ef:ae:42:1e:43:ba:fd:e9:
05:d0:be:85:09:05:0e:2f:45:7d:7d:23:5a:81:01:
ed:a1:01:bf:8c:95:55:52:80:5d:02:c6:0c:e3:7f:
7a:97:03:55:3e:85:7d:af:1b:aa:26:29:e6:2e:61:
68:74:c3:35:a6:a8:a0:5b:61:cb:98:09:dd:0e:2c:
f5:ef:65:de:fa:b6:e3:aa:c5:bb:a5:78:f8:95:30:
bc:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:65:51:E5:51:95:63:90:22:14:42:A9:5A:81:30:69:BB:2C:50:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F29E21B8D96511EFB5193EA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.32.0/22
Signature Algorithm: sha256WithRSAEncryption
47:0b:fa:64:b9:08:d5:5a:e4:02:71:4f:f6:ba:f6:32:fe:bc:
1c:c5:43:3b:f2:b6:f8:37:92:56:fd:ab:90:2a:6a:e6:39:f7:
60:d8:27:b0:6f:ed:0f:2f:cf:8b:ad:11:fb:bb:1c:bf:f2:ae:
0f:83:04:22:11:88:f2:62:8c:51:4a:19:89:9a:b2:e9:6d:eb:
19:0f:78:d4:5e:30:c8:83:08:9d:9c:b1:d7:09:40:02:cd:88:
2f:2c:7e:15:1c:cf:12:a9:2f:85:0a:49:a9:1e:85:b9:33:04:
86:fa:ab:2a:6c:fc:e3:75:93:88:7a:a7:51:54:60:f3:f6:e2:
96:5c:3a:35:a7:c0:40:d6:dd:5c:ca:e0:42:c4:1b:57:7f:bb:
00:75:3a:c3:dc:d7:91:0c:9c:db:98:19:fb:72:be:0a:b4:35:
52:42:5f:d9:93:e9:9d:01:f0:0f:d0:0c:55:f7:db:b6:37:ad:
a5:8f:58:3c:6b:bf:58:e4:af:d4:25:c7:2d:ab:42:52:4c:bf:
a3:c6:86:33:5e:10:eb:cd:d1:25:46:b4:8c:a3:6c:70:3e:16:
9e:cd:ef:89:51:df:c5:50:f5:2b:56:e3:14:78:c5:74:be:c8:
59:bc:14:33:e1:7e:9c:2e:a5:73:a4:50:4a:04:08:d0:dd:79:
f4:50:b8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:59:35 2025 by rpki-client