Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FCEF526C19D11EF8BB198B8762E951A.roa
File: 1FCEF526C19D11EF8BB198B8762E951A.roa (raw, json)
Hash identifier: qSKzHPk5i9JNjUJlavogYtUw1GtQyd3Dpr5sVD9jT2o=
Subject key identifier: D2:72:7E:CB:AE:91:93:40:89:DD:69:9D:5E:F7:17:69:9E:C1:28:43
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012083
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FCEF526C19D11EF8BB198B8762E951A.roa
Signing time: Tue 24 Dec 2024 02:16:46 +0000
ROA not before: Tue 24 Dec 2024 02:16:42 +0000
ROA not after: Wed 10 Dec 2025 02:16:42 +0000
asID: 984
IP address blocks: 154.90.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73859 (0x12083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 02:16:42 2024 GMT
Not After : Dec 10 02:16:42 2025 GMT
Subject: CN=676a198e-9218
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:33:35:16:1e:76:0d:e2:89:47:7a:b6:50:9b:
fb:cd:ba:ac:c2:53:d7:a5:e1:89:f5:ac:96:fa:e1:
2b:79:48:e6:eb:ba:71:24:99:e7:e7:f2:00:dd:2d:
16:f0:4c:7d:3c:3a:e7:24:36:f1:ea:03:ff:dd:d2:
b4:27:13:8a:9f:68:48:30:f9:ae:3a:2e:fe:1e:28:
65:e3:01:a4:38:8a:80:cf:1b:c7:3b:b9:18:50:8b:
84:b0:1a:27:19:08:05:20:f8:ec:2c:65:77:10:c5:
ef:eb:f3:41:87:2b:50:e0:f2:4d:35:87:06:b0:51:
d3:1d:e9:48:aa:97:ea:dc:83:5a:13:d0:4c:61:01:
15:b3:4e:5b:2a:da:50:1d:f0:e6:90:5b:d3:f9:f2:
6b:de:19:6b:66:87:9d:45:82:f3:93:0d:b1:17:3c:
ad:cd:56:1d:22:fa:2b:ba:06:8b:dd:ed:6b:9a:81:
65:da:c4:07:46:d8:49:78:1e:81:42:d2:14:03:88:
6a:95:ec:79:62:09:bc:1d:5a:46:e6:19:3a:e9:b9:
15:26:ff:19:04:c2:3d:f9:64:7d:a5:8e:c5:e4:4b:
4f:f7:41:32:3d:f3:77:72:59:3b:26:a8:49:37:c1:
b1:3d:ac:46:02:58:64:57:26:f2:28:84:86:07:04:
7c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:72:7E:CB:AE:91:93:40:89:DD:69:9D:5E:F7:17:69:9E:C1:28:43
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1FCEF526C19D11EF8BB198B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.221.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:71:ef:98:e4:06:1f:d5:a5:10:c8:83:aa:53:70:30:63:27:
2a:a4:62:7f:94:91:03:b5:c9:42:04:93:88:b2:78:41:7b:2e:
f7:92:d7:08:67:50:79:28:ab:66:6f:d1:c0:b3:ba:5c:e7:87:
75:9e:e0:19:bd:cd:9a:da:b3:bc:7e:df:07:ae:06:4e:75:a0:
95:03:5a:c5:c7:bf:05:41:22:6c:6c:b7:01:91:65:37:a0:6c:
fd:09:dc:ed:d5:4a:c5:f9:72:69:0e:50:5d:ec:4a:a8:8a:5f:
77:71:8a:d2:41:fd:7c:76:8c:8d:a7:f0:27:7b:2b:ab:cc:36:
b1:0a:cd:10:95:df:54:61:73:eb:b2:fc:b7:28:b0:f0:a0:87:
b8:12:e8:59:62:5b:7f:5e:f3:05:49:91:f1:27:3e:65:7e:42:
e8:ec:86:c6:8b:19:cb:99:0a:34:55:c8:55:32:83:00:c4:db:
1e:d6:48:0f:7f:89:5c:a1:65:c9:bf:05:d7:5b:6d:ef:88:1e:
99:46:19:4a:53:16:1a:3a:a1:54:e9:f2:5d:6a:d4:66:03:22:
26:38:93:4b:50:8e:bc:63:38:f0:ce:f4:42:98:35:f7:97:17:
96:ea:7e:9d:7a:88:69:7f:5a:c7:d4:6e:f3:a0:3b:7c:2d:0b:
7f:27:17:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:39 2025 by rpki-client