Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEAE578CD97111EF9A9B687A762E951A.roa
File: FEAE578CD97111EF9A9B687A762E951A.roa (raw, json)
Hash identifier: yhy1mjCnPVUhl/kKQsM+gPKBT0qA1G2VTFM/y46+wx8=
Subject key identifier: 33:EA:B6:23:93:F2:98:57:2E:2B:CC:2A:FF:A2:A0:DF:A6:05:C7:D6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014114
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEAE578CD97111EF9A9B687A762E951A.roa
Signing time: Thu 23 Jan 2025 10:08:30 +0000
ROA not before: Thu 23 Jan 2025 10:08:26 +0000
ROA not after: Fri 28 Feb 2025 10:08:26 +0000
asID: 62240
IP address blocks: 154.194.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82196 (0x14114)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 10:08:26 2025 GMT
Not After : Feb 28 10:08:26 2025 GMT
Subject: CN=6792151e-37d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c7:f3:f2:b5:09:ce:b0:95:db:e6:50:61:c4:
16:14:70:86:02:40:eb:ab:8e:fa:e5:b8:da:48:6f:
3e:4e:de:4b:d1:56:b0:1a:c1:8a:a2:6a:07:f9:d8:
9f:f1:04:0c:d4:24:68:7f:21:af:6e:ab:4a:03:83:
3d:a2:1a:3b:47:ce:fe:ee:f6:95:bb:f3:13:ed:30:
b9:0f:fb:69:a7:30:93:09:4a:78:fb:1b:f0:69:4f:
25:49:fe:81:e9:e0:b3:be:38:48:c0:e0:56:58:c9:
79:46:7b:50:b9:d3:cb:46:03:7e:19:99:81:b6:d9:
40:40:5c:af:7f:39:b2:1d:1d:d9:ce:aa:f3:20:a5:
82:4d:b3:3f:a6:b7:c6:9b:de:3d:b9:c8:26:0d:72:
65:87:05:1f:07:f8:a5:e5:4a:0d:89:8f:3b:60:15:
2c:6c:53:d9:55:c0:d9:f9:a2:be:30:84:c2:ff:24:
0b:f6:c9:3d:5a:3a:0a:3d:eb:84:80:7f:d2:74:e7:
3f:df:8d:52:8d:5f:d9:4c:36:ab:b3:27:13:6a:31:
32:d6:f9:60:e0:ba:26:be:eb:0a:e5:a3:7f:01:68:
19:3c:d9:a8:69:ac:bb:ee:67:fd:73:ae:f9:42:12:
c7:58:cd:4c:76:85:7a:4b:05:96:c8:cb:56:68:1e:
22:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:EA:B6:23:93:F2:98:57:2E:2B:CC:2A:FF:A2:A0:DF:A6:05:C7:D6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/FEAE578CD97111EF9A9B687A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.70.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:43:e0:eb:57:31:b4:6f:31:79:c9:8c:f6:bd:8f:92:7c:ee:
18:f3:22:9a:38:94:83:4a:35:a2:d8:39:10:80:be:4a:a0:fe:
b4:9a:cc:fb:67:dc:21:59:36:dd:dd:96:8e:13:9c:21:23:67:
46:ee:34:c4:14:53:3b:97:a2:59:6a:d8:9c:e9:79:bb:40:25:
26:fe:26:ba:9a:36:ef:a4:40:2e:ca:85:f6:5c:2c:30:23:d7:
b3:73:f3:e5:8e:2d:f2:81:d9:3d:10:4d:e8:13:69:b5:59:55:
1f:ec:ca:fd:8c:10:a9:ea:81:f5:2a:fc:af:a0:8d:a9:c5:ac:
8c:6b:67:59:e0:49:0d:67:1d:c8:51:be:84:38:5f:43:b1:62:
4e:24:1d:1a:e8:22:e7:7d:60:1b:73:70:82:66:6c:7a:de:f1:
44:ce:5d:78:99:f6:cf:ea:aa:0e:ab:7c:1d:0b:e3:b6:9b:e7:
c6:39:22:93:81:d8:94:aa:0c:99:30:99:00:b9:93:ef:5b:d5:
7e:00:ca:32:4e:8d:a3:f2:de:88:7b:6f:64:ff:f9:90:d4:f3:
40:46:67:81:27:77:fd:ea:4a:39:f8:0a:d2:7f:e4:0e:ac:a4:
03:3b:b2:5b:28:dd:09:a0:de:d6:de:2f:48:5f:8c:44:45:74:
af:16:fe:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 12:17:55 2025 by rpki-client