Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4A55BC4D96B11EFBB509050762E951A.roa
File: F4A55BC4D96B11EFBB509050762E951A.roa (raw, json)
Hash identifier: ASMr0JUz1Mj5uFqb7MAP61SQZ+4r3LNBgVmJ+0/P2FQ=
Subject key identifier: B7:B1:EB:56:56:AF:8C:F8:75:D6:64:01:B6:3E:90:63:2F:BF:25:59
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0140E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4A55BC4D96B11EFBB509050762E951A.roa
Signing time: Thu 23 Jan 2025 09:25:16 +0000
ROA not before: Thu 23 Jan 2025 09:25:12 +0000
ROA not after: Fri 28 Feb 2025 09:25:12 +0000
asID: 62240
IP address blocks: 154.194.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82150 (0x140e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 09:25:12 2025 GMT
Not After : Feb 28 09:25:12 2025 GMT
Subject: CN=67920afc-c8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9a:bc:23:db:14:ad:d2:de:ec:a6:b2:c4:74:
43:2c:1c:a1:6a:58:ae:95:2c:be:be:a1:2a:08:4d:
18:e7:b6:76:29:04:93:97:39:62:77:d6:e0:f3:03:
2f:e9:36:d5:ac:69:bf:ff:c9:f4:7b:96:37:d2:e4:
f9:cf:1f:63:5c:5e:71:4a:d8:45:7d:d9:b5:41:bf:
d7:24:16:87:db:9d:f6:10:56:c1:42:c6:12:e6:15:
99:09:9a:b7:32:6d:c2:5b:c9:6e:66:fc:f2:f1:18:
b4:2d:82:b5:61:2d:4d:09:53:90:f2:61:67:35:40:
64:5a:8e:31:be:f1:f6:37:39:e4:eb:d2:ae:22:3f:
6e:56:99:c0:55:5b:a3:69:1c:7a:9b:fd:78:c8:0b:
bc:82:b8:63:7d:c6:ac:3f:89:34:87:7d:20:6f:60:
6e:09:ea:c3:d7:94:7e:26:16:d8:a7:92:13:12:87:
d2:45:e8:7e:2f:a3:82:97:bd:ba:78:61:73:9f:d2:
7a:00:4f:c7:9d:98:d0:2c:cd:54:6e:1b:58:60:bc:
b7:3a:03:a1:20:e0:c7:3e:b6:cc:06:9c:00:50:c3:
9b:a3:e6:7f:da:cb:c9:8e:d3:e3:69:d0:c4:fd:7d:
19:9d:85:a5:ba:eb:3e:d0:48:59:c8:bb:dc:4f:9c:
62:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B1:EB:56:56:AF:8C:F8:75:D6:64:01:B6:3E:90:63:2F:BF:25:59
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F4A55BC4D96B11EFBB509050762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.109.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:0c:e9:a3:62:1a:f1:b6:8b:80:61:7a:7d:38:e1:cc:ce:fc:
b7:17:ed:00:0b:c5:45:5b:ac:f0:8d:89:3e:2e:1d:73:3b:9c:
64:b7:3d:e9:29:8c:47:ad:b2:b5:48:d7:05:a8:af:f6:da:6b:
eb:eb:d2:f6:c0:f7:6f:e2:d4:24:a3:7d:3e:e9:5e:d5:78:d3:
1d:ea:e0:45:ea:f8:41:dc:ee:f7:e0:0e:b6:e6:b1:8c:ba:1d:
8e:ba:5c:a6:b4:b7:53:aa:80:2f:d3:b8:2f:d3:f1:44:ba:1f:
f2:70:dd:3b:eb:9a:89:f3:be:ac:3c:cf:15:32:1a:69:8d:01:
1a:9d:cf:b0:7a:20:87:c4:ca:4d:dc:d4:1c:8c:dd:ce:d9:3f:
9f:72:b9:4d:42:ce:70:e8:2c:ba:2c:6d:26:38:70:8e:ca:12:
c9:13:33:9e:ea:e0:0f:81:fb:49:e7:e9:d6:22:f2:86:cc:02:
82:36:f9:de:0c:a2:e1:68:b5:50:76:14:a0:f5:2e:87:22:b4:
6e:f0:16:9f:26:59:16:54:9b:04:3e:d7:1b:2b:fc:f3:64:cb:
4a:e3:6f:d5:e3:11:f2:18:4b:46:63:97:5f:d2:a0:29:02:3b:
b0:29:5c:09:f3:29:a0:96:7a:af:06:5d:41:03:98:b9:59:15:
62:fd:8e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 14:23:47 2025 by rpki-client