Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F19270CC52311EFBE27FDAE762E951A.roa
File: 2F19270CC52311EFBE27FDAE762E951A.roa (raw, json)
Hash identifier: gcARRsMLmegOwnMvoz00nMSRF1hZNSLPc4sI40bZ7cQ=
Subject key identifier: C2:30:99:4C:F5:A6:C4:3D:F8:98:D8:0E:1D:4F:F5:81:1D:18:A3:8B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012B6B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F19270CC52311EFBE27FDAE762E951A.roa
Signing time: Sat 28 Dec 2024 13:53:58 +0000
ROA not before: Sat 28 Dec 2024 13:53:54 +0000
ROA not after: Fri 12 Dec 2025 13:53:54 +0000
asID: 984
IP address blocks: 154.203.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76651 (0x12b6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 13:53:54 2024 GMT
Not After : Dec 12 13:53:54 2025 GMT
Subject: CN=677002f6-fbc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c3:7f:60:b0:2a:ab:81:42:5a:e8:b7:d8:0f:
fc:96:55:90:61:b1:c6:30:b0:bc:1a:a1:e8:29:17:
13:c5:06:28:01:a2:ce:30:87:ae:82:14:e9:ef:8e:
c8:88:ff:4d:c9:ee:e6:f8:41:10:63:02:89:79:18:
d3:44:46:65:d1:62:dd:28:76:20:ff:1e:e1:02:2d:
ae:4a:fe:fe:cc:f2:03:a9:e6:84:95:c1:c8:26:92:
33:cc:2a:f5:3b:03:78:6e:e0:e6:83:26:fe:b3:41:
53:9c:ba:c9:f3:8c:10:58:58:48:85:45:db:30:3f:
18:93:ce:b6:e9:ca:26:79:f1:6c:ef:7b:50:f8:f5:
02:18:ff:09:9b:06:5e:b4:4e:70:ec:9b:50:b6:5b:
26:48:1f:1c:ac:59:7e:40:1a:18:49:ae:de:46:cc:
70:ae:e8:77:db:f7:b2:7c:a2:d7:b4:35:68:f2:bf:
1c:e5:ab:70:7c:be:6e:6b:49:1d:60:67:7b:5f:60:
ec:8a:8a:63:38:f1:3b:c7:0c:7e:38:e1:15:2f:1c:
84:5d:9c:3c:ed:f5:aa:bc:7c:c8:48:f2:ad:71:d0:
45:6c:17:90:be:d3:84:31:f4:94:2b:5a:bc:22:cb:
58:db:d0:03:af:3b:b5:59:30:8f:80:ab:8d:ed:be:
c9:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:30:99:4C:F5:A6:C4:3D:F8:98:D8:0E:1D:4F:F5:81:1D:18:A3:8B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2F19270CC52311EFBE27FDAE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.204.0/24
Signature Algorithm: sha256WithRSAEncryption
41:61:d4:3b:de:df:73:be:1d:c4:2b:f6:d6:5b:71:ee:7c:2c:
73:3e:98:c3:9d:5c:a3:2d:30:67:4b:95:83:82:5d:56:7f:de:
47:b6:9d:64:e8:a1:b7:eb:fb:67:e6:18:b4:c0:7f:8c:25:17:
c5:ca:7d:13:40:e4:5d:c3:8b:85:f9:c5:95:7a:ca:4d:ed:52:
b5:08:27:68:1a:7e:37:54:d1:aa:bb:d1:e8:33:e6:a7:a8:38:
50:78:a2:90:71:ae:c0:11:f4:9f:6e:98:e3:20:37:65:dd:36:
65:9b:15:fc:8e:d8:80:61:87:7d:46:b6:1f:12:7f:c4:0d:c6:
77:2b:bc:94:d6:56:9e:86:f8:44:cb:0f:5a:b8:12:78:06:0d:
96:29:b0:ef:30:1a:ee:27:cc:ab:9a:34:be:4a:26:a8:bc:0b:
4f:d0:bd:76:0d:53:ac:76:86:d1:bb:ab:d4:49:e6:2e:76:5d:
35:25:03:04:84:fd:da:d0:77:9f:5b:80:64:60:30:90:4b:0b:
74:ae:e5:8f:24:05:d9:d0:bf:e2:4e:eb:1e:78:52:d5:24:f9:
ab:57:69:fc:08:0d:35:6f:00:56:e2:58:0c:94:26:ef:c0:bf:
eb:69:a5:6b:4a:8f:e8:51:c4:16:17:06:27:bd:00:3e:4f:c1:
90:87:7c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:58 2025 by rpki-client