Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3C4F2C0D56811EFB44F5868762E951A.roa
File: F3C4F2C0D56811EFB44F5868762E951A.roa (raw, json)
Hash identifier: aOSrOPYFWgihMGut4tHLc7nL60ZcJb2cIjow613bDdM=
Subject key identifier: 76:27:5E:10:26:3C:CE:EB:80:CE:98:40:A4:84:18:F8:3B:42:6A:BD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D84
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3C4F2C0D56811EFB44F5868762E951A.roa
Signing time: Sat 18 Jan 2025 06:53:41 +0000
ROA not before: Sat 18 Jan 2025 06:53:38 +0000
ROA not after: Sat 22 Feb 2025 06:53:38 +0000
asID: 54600
IP address blocks: 154.95.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81284 (0x13d84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 18 06:53:38 2025 GMT
Not After : Feb 22 06:53:38 2025 GMT
Subject: CN=678b4ff5-177a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4a:4f:2b:7f:15:6a:8c:4d:32:85:71:45:2d:
eb:fa:f8:c3:34:e8:7f:1f:fc:18:e0:9c:3f:c2:49:
89:e0:54:a4:d7:df:e1:90:cb:e4:34:27:72:a5:af:
0b:6d:a8:1c:a3:5f:5d:3c:93:07:a1:c3:4d:b3:d5:
02:d1:25:92:27:7d:a4:ee:1a:38:3c:6a:cb:e4:04:
58:56:be:8d:77:a1:7a:c6:e9:8a:1c:8b:0c:a0:58:
ed:96:7b:46:22:d3:b6:71:a5:61:c5:b4:5e:0d:d3:
c4:ee:c1:fc:bc:9c:62:cd:98:3b:1d:b1:35:55:c3:
b4:e6:63:ab:dc:70:d0:cf:fb:5d:02:80:e1:90:42:
3e:0f:fd:c0:44:c4:4a:06:0f:1f:6c:03:17:6d:4e:
b9:b3:b8:74:e1:5f:36:60:74:01:3f:32:19:6d:3a:
7d:ee:bc:c0:c8:66:c8:b3:6f:6b:2f:62:ef:5a:6d:
81:d3:de:5b:c9:f6:55:b0:34:5a:0c:30:41:c3:8f:
67:ab:e5:50:1b:0f:db:a8:11:42:8b:4c:1c:2a:c1:
0e:2e:c4:a4:24:36:9a:7d:26:35:52:6e:76:c0:0e:
cd:26:08:50:d3:0d:cc:90:0c:30:47:91:51:b1:dd:
39:9b:dc:fa:8c:8e:c4:19:50:51:22:16:98:71:eb:
1d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:27:5E:10:26:3C:CE:EB:80:CE:98:40:A4:84:18:F8:3B:42:6A:BD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3C4F2C0D56811EFB44F5868762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.24.0/24
Signature Algorithm: sha256WithRSAEncryption
69:33:a0:6a:dd:98:49:b5:f6:70:26:3e:22:98:e9:f7:7e:f0:
33:55:1a:ea:ae:c4:4e:28:a5:80:dd:7e:f1:a9:b2:da:49:df:
20:23:c6:fe:13:ce:61:20:54:78:1d:a4:e3:c1:23:1d:bc:23:
d5:f5:2e:80:c7:72:23:17:37:a3:e2:ec:c2:04:cc:f7:ec:70:
12:38:3d:3b:a3:93:61:46:1e:db:0d:70:a2:3b:61:77:b5:16:
fe:6b:94:c3:cc:31:26:6d:b0:17:16:f0:c3:c9:cc:15:d5:49:
ac:69:38:04:5f:c8:b9:8f:dc:d7:95:e9:91:0d:4d:96:79:b0:
24:d7:c4:2b:19:e4:52:76:aa:c7:00:10:29:11:f3:ee:4e:c5:
e0:42:28:61:82:71:3c:43:6a:99:ba:ee:4d:4f:64:6e:81:25:
fa:83:ce:f2:f3:d3:5d:24:42:d2:52:6c:52:1a:43:ad:cb:4d:
b3:a4:1b:07:6d:d2:5b:8f:7a:01:42:1a:b1:31:ba:b1:52:75:
8b:56:c2:44:00:43:ab:b0:8f:09:7e:3b:32:36:cb:a5:11:f5:
35:a8:e8:4f:7e:4f:90:82:83:08:ad:86:2b:41:77:75:fb:12:
e8:eb:9a:42:43:fe:60:7f:f5:5e:5c:ec:40:52:1c:2e:c0:6d:
06:f1:4c:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 12:21:11 2025 by rpki-client