Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15264A80C52F11EF986AC479762E951A.roa
File: 15264A80C52F11EF986AC479762E951A.roa (raw, json)
Hash identifier: PuEYDliic/Z/7hWA+XYLL26nHmrN41hmyrdWzkC0RKw=
Subject key identifier: 3C:D8:64:B2:B8:78:DF:5E:59:BD:31:E0:A6:67:8C:07:E6:45:E8:38
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012BDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15264A80C52F11EF986AC479762E951A.roa
Signing time: Sat 28 Dec 2024 15:19:08 +0000
ROA not before: Sat 28 Dec 2024 15:19:04 +0000
ROA not after: Sun 12 Dec 2027 15:19:04 +0000
asID: 17561
IP address blocks: 154.204.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76763 (0x12bdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 15:19:04 2024 GMT
Not After : Dec 12 15:19:04 2027 GMT
Subject: CN=677016ec-6787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:bc:0d:ca:34:50:2a:40:9a:6e:0f:2f:20:4b:
70:c8:ed:53:03:48:bf:c7:a1:c2:90:cd:da:0f:de:
54:31:53:20:bb:cc:1a:56:47:fe:df:38:5c:37:17:
9f:52:49:6a:54:4a:12:9c:fc:38:fb:96:7f:9f:c4:
1b:fd:ff:50:84:d6:45:4e:db:80:76:d9:0e:33:4a:
ab:9e:67:c1:8a:2a:c8:f3:b1:e2:46:4f:77:36:39:
e3:54:1b:88:e1:9b:38:1f:1e:29:2b:b7:29:8a:4c:
3e:59:56:a7:ca:c8:63:52:be:94:98:f8:42:0c:54:
f8:8a:3a:fd:c2:00:ef:2d:17:01:51:79:19:b5:7a:
56:2c:38:eb:a4:02:ab:23:33:57:10:dc:c2:22:46:
36:a0:3e:14:95:e6:3f:b2:f2:f9:c8:1f:c0:04:01:
31:86:b1:0a:fa:55:73:84:49:3f:13:00:b2:ee:43:
e7:37:92:73:50:b7:d5:8c:ae:9d:22:25:ce:28:e3:
b9:de:54:ce:db:c4:5b:73:2e:01:11:25:3b:8f:cb:
82:5b:f8:75:72:c0:8f:85:a7:17:2b:69:38:e0:f8:
fc:02:e6:d7:8c:f4:87:02:2b:6d:59:fd:6a:1d:42:
a9:ef:26:b7:71:22:c8:20:aa:e9:92:bf:00:c7:50:
ed:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:D8:64:B2:B8:78:DF:5E:59:BD:31:E0:A6:67:8C:07:E6:45:E8:38
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15264A80C52F11EF986AC479762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.86.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:c2:ff:9d:b5:68:c8:4e:31:1f:bb:e4:a3:63:0b:81:c0:40:
88:2c:0d:b1:99:ae:cb:3b:37:f6:50:97:09:43:bf:89:82:54:
26:c6:a7:49:4b:b7:44:e3:e5:d3:6b:7e:75:a4:9b:de:65:f7:
6b:72:91:cf:b4:65:e9:9f:19:09:e6:aa:b2:64:1f:ab:9e:ab:
49:a7:7a:91:4c:3d:9c:be:97:e7:65:6e:0a:46:2e:77:82:bb:
c4:bb:a3:91:47:05:49:94:b4:b5:15:a7:d0:e9:20:57:5c:84:
25:53:1d:8f:aa:5e:a7:15:e3:97:2c:a0:07:8d:5c:a3:ec:a2:
f7:b9:de:74:3b:18:d1:b7:e5:71:59:fd:8e:14:2b:90:4b:35:
4c:0a:5e:cc:5f:f8:7b:f5:fe:6d:61:91:e3:48:24:1c:97:24:
bf:67:0d:01:2f:01:02:44:cc:9a:11:2c:98:00:74:d5:1a:96:
3e:c3:14:bb:d3:5b:b2:ab:80:1c:33:d1:0a:ef:e6:6f:ac:a7:
01:af:07:c9:dc:26:21:c3:3a:07:4f:29:21:bd:7a:af:d5:ba:
ec:47:fb:e1:26:ee:f5:e8:fa:c8:83:9e:b0:29:53:c0:35:8c:
dd:7c:88:ee:17:f9:b7:c3:e7:af:89:7c:0e:ad:52:e5:67:3d:
f7:c7:25:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:12 2025 by rpki-client