Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1792ACB2C63511EFB1404E71762E951A.roa
File: 1792ACB2C63511EFB1404E71762E951A.roa (raw, json)
Hash identifier: oJXDifb+AIM2B6P/krTNf9xyO5Mske99kJvDm19FdUc=
Subject key identifier: 91:90:55:F9:04:FD:4D:29:3E:59:06:48:A4:89:6C:93:81:73:B2:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013014
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1792ACB2C63511EFB1404E71762E951A.roa
Signing time: Sun 29 Dec 2024 22:34:40 +0000
ROA not before: Sun 29 Dec 2024 22:34:37 +0000
ROA not after: Sun 12 Dec 2027 22:34:37 +0000
asID: 17561
IP address blocks: 154.217.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77844 (0x13014)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 22:34:37 2024 GMT
Not After : Dec 12 22:34:37 2027 GMT
Subject: CN=6771ce80-0e05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ee:1d:19:e0:07:c1:56:0c:47:c9:13:17:bd:
41:c5:f8:6e:c0:06:8e:30:51:94:aa:c4:cd:14:73:
7d:d9:16:c6:7b:44:18:95:a7:a2:84:3c:d9:02:01:
30:67:93:b4:eb:c7:5d:25:f6:9c:f6:52:86:4c:ec:
90:7d:b1:c3:35:29:90:fc:85:b8:12:25:21:7d:5e:
a6:a5:a7:15:46:e5:a3:c6:c8:3f:15:06:01:25:e5:
51:02:0a:71:c6:4e:cf:ae:08:b5:62:be:67:7a:ad:
13:f3:e4:fd:cb:e2:32:68:54:da:24:e5:23:38:32:
44:da:ad:97:69:5f:68:1b:6b:63:a6:93:fe:37:a2:
50:99:62:17:34:19:50:b3:76:ac:96:bc:f2:59:fe:
6f:0b:9c:4b:47:28:bf:17:57:51:b5:85:05:06:04:
06:cf:6d:fa:4a:16:ce:1e:62:1f:a0:3d:8b:fa:e6:
43:f2:e0:d6:a7:97:ec:ee:ab:3e:89:23:15:26:63:
bf:a2:70:40:69:3d:36:da:37:7a:cd:d8:93:6c:f0:
4b:e0:7d:95:a8:fe:08:4d:eb:a1:4e:2d:ca:bb:81:
b2:db:77:d3:26:e5:0b:7c:9d:7f:c9:9d:b0:8d:67:
ac:63:42:c4:f4:ee:3e:76:7b:c7:07:12:68:44:a2:
62:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:90:55:F9:04:FD:4D:29:3E:59:06:48:A4:89:6C:93:81:73:B2:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1792ACB2C63511EFB1404E71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.237.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:cb:ff:c9:db:25:d2:9d:aa:11:c8:bf:f0:6c:c4:17:75:cd:
bc:6d:d7:7e:58:9a:53:4b:25:69:7a:39:7a:bf:40:f4:c4:b9:
9c:4b:21:38:00:7c:c7:94:68:ba:fe:08:b6:7f:80:f8:6d:34:
c8:ea:63:c5:ba:ce:4f:20:12:56:05:19:e8:ea:f9:e2:27:82:
a6:62:db:2c:57:fb:a1:41:57:35:07:85:0b:55:f2:bf:26:04:
f0:1b:06:43:85:75:1d:2d:51:74:53:b9:98:23:58:ad:93:31:
bf:99:ba:12:bc:6d:99:4f:b2:bf:d6:35:f2:b1:a3:3d:d3:65:
4f:ff:ad:76:4b:c1:4f:a8:73:5e:57:c3:62:f7:ca:24:1b:7c:
bd:b2:a3:03:1a:c0:7b:ae:22:04:e8:d5:69:92:59:c0:43:65:
90:08:c7:70:4e:d8:01:31:66:85:35:88:fe:73:86:30:6c:4f:
6a:ae:5a:52:39:11:5b:db:d2:9c:7c:5f:a8:ac:d4:52:8c:82:
5d:22:7f:75:dc:a7:00:6a:57:98:3d:49:90:eb:62:f3:83:a3:
fd:44:49:86:6f:77:bc:e6:0c:ec:06:0b:7a:53:ce:27:fe:11:
4f:11:cf:d1:04:b7:6f:a9:2b:56:90:ca:bc:2b:29:99:2b:03:
c3:ed:a3:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:26 2025 by rpki-client