Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/102D8512C91611EFB3679949762E951A.roa
File: 102D8512C91611EFB3679949762E951A.roa (raw, json)
Hash identifier: J35KGlbZApr8PXWqRpgT9qsefkkO0UdrNKPRIBAIaLc=
Subject key identifier: 27:DE:EE:E6:BE:F1:2B:20:B8:FA:32:D5:F7:45:3C:7D:10:B9:C3:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0132D1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/102D8512C91611EFB3679949762E951A.roa
Signing time: Thu 02 Jan 2025 14:30:07 +0000
ROA not before: Thu 02 Jan 2025 14:30:03 +0000
ROA not after: Sat 13 Dec 2025 14:30:03 +0000
asID: 984
IP address blocks: 154.221.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78545 (0x132d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 14:30:03 2025 GMT
Not After : Dec 13 14:30:03 2025 GMT
Subject: CN=6776a2ef-8fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:19:84:94:90:14:0b:5b:90:d4:0c:57:80:f9:
db:9d:17:7b:89:b7:64:1c:b9:95:35:d4:88:53:27:
ee:29:ee:78:32:93:a8:45:df:ec:2a:14:62:8c:a1:
31:b5:44:2f:dc:09:03:da:f0:fb:be:69:de:88:f5:
c3:1e:a4:83:3e:28:a3:02:e7:be:e8:5f:fc:d0:d5:
2a:19:06:f6:00:90:f9:96:93:11:02:68:6b:dc:e7:
65:89:b9:bc:50:41:ef:20:2a:af:a7:94:12:ba:09:
2d:3e:cd:46:7b:83:b3:27:ee:02:18:43:d2:d8:68:
b1:ad:81:38:33:51:b3:25:9e:4b:e6:52:c7:88:40:
81:4a:32:10:60:99:6a:23:51:6a:9c:68:cb:92:17:
86:5c:32:ff:12:c0:2b:22:db:75:48:b4:ca:6c:70:
a1:68:a4:56:32:5d:31:6d:66:3e:8e:05:aa:d4:b3:
47:aa:85:1a:24:14:d2:8d:cc:e4:ca:bc:30:c6:db:
de:b0:1f:34:57:15:21:85:e7:a7:73:97:e2:77:42:
8c:14:ac:a0:cf:52:58:01:be:da:76:a3:e2:4f:6a:
10:d9:43:f6:31:f2:fa:02:7f:23:48:cc:a4:86:49:
a5:90:fc:ce:1c:4c:76:0d:9b:1b:46:29:1a:19:bf:
94:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:DE:EE:E6:BE:F1:2B:20:B8:FA:32:D5:F7:45:3C:7D:10:B9:C3:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/102D8512C91611EFB3679949762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.245.0/24
Signature Algorithm: sha256WithRSAEncryption
14:4f:c7:f3:d8:8a:84:e3:49:26:fd:db:fb:5a:71:8b:ff:e9:
02:22:f6:34:ab:5d:d6:b6:c7:9c:fb:e8:22:8e:af:b3:05:0a:
6a:05:84:6e:6a:6a:19:4b:2d:73:30:47:63:18:12:fd:f1:4a:
29:3e:2b:c2:30:01:35:20:44:5a:17:5e:f7:79:45:71:c7:d4:
20:77:d5:0a:28:ac:5c:1d:95:65:cb:ff:7d:c6:c6:fb:c5:13:
58:ff:a2:65:bc:32:ea:ae:4a:0f:3f:8e:68:a4:1d:a9:14:da:
12:d1:45:eb:57:d2:c0:de:3d:87:a4:67:6b:e1:75:ae:bc:be:
fb:19:25:8c:c9:46:48:a4:d7:9e:81:c3:8b:e8:d8:a7:a2:43:
67:fa:71:0e:98:07:b6:0c:d2:c3:b7:f2:08:4b:4c:bd:32:28:
60:40:74:2c:3f:62:89:8c:b6:38:e0:62:0f:44:99:de:af:b9:
35:f1:ca:0d:ca:ae:3c:7b:76:66:1a:7c:04:33:4a:68:ae:8c:
56:ce:95:ce:3a:c9:fb:32:78:33:82:14:ee:dc:a9:3d:50:96:
db:79:94:15:6a:2c:9b:a9:e1:ed:a4:45:86:58:55:f5:01:b9:
6e:69:cb:fe:62:ad:0e:5b:43:2f:ec:7b:aa:0c:c1:43:67:66:
e7:f5:b6:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:09 2025 by rpki-client