Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/173217ACC8AC11EF82FC22A3762E951A.roa
File: 173217ACC8AC11EF82FC22A3762E951A.roa (raw, json)
Hash identifier: yLPAWyTsKCR1u5KmntEBI31u4sSJt0a2TPhUl3uNzW4=
Subject key identifier: EA:FE:64:B0:26:02:C1:42:32:5B:55:17:98:9E:F2:65:97:4A:0E:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01317E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/173217ACC8AC11EF82FC22A3762E951A.roa
Signing time: Thu 02 Jan 2025 01:51:32 +0000
ROA not before: Thu 02 Jan 2025 01:51:28 +0000
ROA not after: Mon 13 Dec 2027 01:51:28 +0000
asID: 17561
IP address blocks: 154.220.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78206 (0x1317e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:51:28 2025 GMT
Not After : Dec 13 01:51:28 2027 GMT
Subject: CN=6775f124-8a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7e:48:2d:fd:3e:81:19:79:48:d2:64:56:7b:
8e:c1:22:b3:b0:df:ea:8a:2b:57:ab:46:30:af:91:
e6:aa:59:57:71:09:2e:a1:f6:f5:8a:6c:46:f0:0e:
b4:eb:b3:ed:47:c3:e2:92:ef:3b:7a:c4:80:89:61:
fa:b6:1f:3a:27:e8:1c:ee:98:a0:9c:98:2e:48:f3:
c2:dc:60:8b:19:74:08:05:9a:8b:40:7b:60:0a:2c:
99:2a:4e:90:96:08:36:b1:10:4a:fe:fc:6a:97:87:
0a:66:be:20:f6:a6:43:69:fd:0a:13:a3:9d:d5:82:
f0:de:72:b8:0f:29:98:39:cf:6c:15:09:40:86:ca:
9d:c0:0b:92:11:6e:78:f7:40:a5:fd:fe:93:ba:c8:
bb:49:17:6c:84:2c:4e:e7:92:7d:ca:9c:1f:c7:cb:
60:38:df:2e:0a:77:d2:f2:d7:67:03:3d:3e:75:c5:
d0:f5:3b:07:93:21:54:16:94:65:e5:2f:64:ef:01:
aa:90:fe:bb:77:c2:40:30:59:2e:e0:f3:84:dd:d8:
29:f7:b7:8e:bc:ab:8e:04:3f:51:84:7a:7d:91:f3:
b6:a7:b2:20:a5:62:4c:01:93:08:39:d1:cc:8f:d2:
f6:f7:f6:36:3e:da:d0:f8:73:a1:ee:72:d2:2b:93:
08:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:FE:64:B0:26:02:C1:42:32:5B:55:17:98:9E:F2:65:97:4A:0E:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/173217ACC8AC11EF82FC22A3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.154.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:0a:4c:03:63:12:eb:7d:3b:aa:fa:58:38:ad:39:55:7f:96:
d1:37:97:20:c1:8b:78:12:10:2d:0c:58:a4:6a:b9:ae:4e:10:
07:7a:75:b9:db:8a:4a:14:56:cd:75:46:f5:c4:e3:75:bb:37:
01:1e:79:9d:dd:f4:59:7e:28:27:3e:ed:46:c5:c3:bc:bc:42:
14:d7:92:4c:72:f8:84:78:b5:90:04:d8:12:11:d2:7d:e0:b5:
b7:de:6e:37:ee:85:5f:fa:c6:16:d4:e1:5b:f3:d4:73:ea:18:
d9:db:51:2c:ec:3e:b8:d4:4d:90:a8:f7:d7:03:db:13:e0:41:
19:52:e2:e5:fa:1a:e0:ee:01:6b:11:d4:c7:3e:5b:45:58:17:
c4:5e:e9:14:a2:a8:14:f0:60:09:4e:a6:d2:4a:0f:58:a5:21:
0f:2a:b1:da:1e:2b:5c:5c:34:bf:03:ed:77:05:d5:eb:7d:33:
14:72:f8:61:9b:ef:51:87:be:af:5f:bf:a2:18:f3:6c:5e:fc:
a6:7f:50:60:b6:ed:d0:7a:1c:cd:69:f2:b4:21:d8:db:be:d2:
52:9d:ca:98:cb:8b:ab:df:55:52:4f:79:e4:3c:7f:1d:3f:f2:
17:43:df:57:ba:12:9e:4f:27:39:a4:2a:97:b9:d0:55:5f:ca:
df:92:7d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:59:49 2025 by rpki-client