Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F40581D6C9CA11EF84075453762E951A.roa
File: F40581D6C9CA11EF84075453762E951A.roa (raw, json)
Hash identifier: ow8PbQ6T2Dv3RKoY+Uy0e1S3NadzBizjoEtH8+F7EKY=
Subject key identifier: 90:90:1D:AB:66:4B:32:F2:0B:ED:52:A2:4D:77:0E:23:DE:CD:84:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0134CA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F40581D6C9CA11EF84075453762E951A.roa
Signing time: Fri 03 Jan 2025 12:04:59 +0000
ROA not before: Fri 03 Jan 2025 12:04:55 +0000
ROA not after: Tue 04 Feb 2025 12:04:55 +0000
asID: 203020
IP address blocks: 154.207.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79050 (0x134ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 3 12:04:55 2025 GMT
Not After : Feb 4 12:04:55 2025 GMT
Subject: CN=6777d26b-5ead
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:28:c8:4c:4e:36:30:00:2d:f9:34:e2:26:52:
c7:4e:bd:5c:07:76:53:84:b1:f2:59:e7:88:89:9b:
4c:ee:2f:84:95:21:55:98:d6:08:64:bb:19:32:f7:
ad:3a:46:c9:4c:b0:c9:79:50:21:b3:4f:8d:2e:98:
23:28:bb:cb:df:e9:fd:1c:12:f7:ce:f3:55:7d:ca:
b2:d8:b1:e5:30:1f:e0:c1:22:9b:58:73:c1:65:a7:
7f:8d:ad:23:0f:bb:35:08:a2:fa:5f:17:0a:7d:85:
d1:05:64:ad:93:fa:ef:81:85:92:93:8a:03:5d:4d:
3a:2c:b7:79:06:82:d5:41:46:f5:3c:11:2a:5a:c0:
2a:3d:c0:1f:00:e8:0b:f3:f0:48:1c:c4:4a:06:04:
86:2e:68:08:f2:b6:8c:ff:75:6a:ad:a4:d5:58:d0:
35:73:b2:35:bf:b2:18:1a:c9:a3:52:5d:52:c5:3e:
77:b3:c2:53:32:86:57:b3:97:85:9c:63:21:c3:15:
4b:43:40:d4:9c:d4:53:10:81:a2:57:6c:0d:04:a9:
e4:03:c9:27:95:41:e4:71:96:82:1f:42:b8:d0:ae:
64:1d:18:83:a7:ac:9a:15:22:a8:78:ac:5a:41:97:
ef:57:bc:f9:12:1a:17:3c:21:de:17:7f:eb:e6:f2:
9c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:90:1D:AB:66:4B:32:F2:0B:ED:52:A2:4D:77:0E:23:DE:CD:84:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F40581D6C9CA11EF84075453762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.207.84.0/22
Signature Algorithm: sha256WithRSAEncryption
58:21:35:ae:cd:a6:13:62:10:a8:c5:29:2a:63:16:3f:8f:47:
60:67:76:cd:5e:f6:04:69:ea:e5:c1:f5:43:6d:f0:a0:57:c8:
3b:39:78:ff:0d:6a:e7:01:01:b6:70:b8:28:76:a7:7c:ee:55:
f4:df:c4:f9:61:18:6a:10:c1:2c:35:ea:2d:96:02:7b:79:5e:
2c:40:4e:3e:b4:14:e5:6a:1e:33:75:ec:60:f8:f2:76:79:ff:
36:65:c1:79:6b:b6:26:ee:d6:92:48:4c:45:3a:a4:85:35:70:
35:73:52:dc:49:18:5f:f4:a5:f5:26:2c:9c:8f:53:78:b9:f4:
53:dd:ea:80:e1:d7:ef:92:a5:87:7c:f6:73:ca:3d:fb:10:e0:
33:f5:36:29:3b:ec:86:bb:c4:8b:22:41:44:b7:0f:52:df:a7:
0d:ea:d4:df:d7:82:9c:fd:df:d3:23:7c:43:70:d4:b8:51:11:
d5:03:98:f4:12:5c:80:e0:be:26:78:fb:4b:0a:1d:ca:a3:72:
53:b4:36:aa:c1:3c:d9:33:85:96:44:cc:56:f0:3f:c4:67:13:
c0:9a:b2:0d:06:13:d4:9c:d3:56:ad:df:94:90:c5:c6:e4:96:
9d:a8:ef:79:39:48:ad:d8:a2:76:3e:0c:df:e6:ec:34:0d:e4:
0c:04:74:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:58:07 2025 by rpki-client