Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35EFD09EC42411EFA6299166762E951A.roa
File: 35EFD09EC42411EFA6299166762E951A.roa (raw, json)
Hash identifier: /pO3e/ladNDyp70W1THMu4NwnbHN8yMYlYq6J0hqnqY=
Subject key identifier: F0:39:06:A9:CC:E6:C9:38:80:23:22:7D:36:D9:E3:C0:62:88:C4:57
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0129E5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35EFD09EC42411EFA6299166762E951A.roa
Signing time: Fri 27 Dec 2024 07:28:47 +0000
ROA not before: Fri 27 Dec 2024 07:28:44 +0000
ROA not after: Sun 12 Dec 2027 07:28:44 +0000
asID: 17561
IP address blocks: 154.202.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76261 (0x129e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 07:28:44 2024 GMT
Not After : Dec 12 07:28:44 2027 GMT
Subject: CN=676e572f-20c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:66:6e:b6:cf:d9:e1:3f:1d:b5:d3:bb:d3:a7:
a7:b7:66:21:73:57:28:0a:55:e8:ca:0d:1d:79:c2:
da:10:2c:34:5a:71:57:4a:1d:73:c3:9c:4d:e8:29:
23:5a:38:c3:dc:9d:13:a7:94:89:2e:9a:5d:6c:c2:
b8:6f:ba:fd:80:ab:d0:38:13:3b:26:a5:89:3a:c0:
ea:4f:16:7a:dd:e0:b5:fe:c7:d3:8e:3b:7c:12:1b:
8b:77:18:b2:78:51:c1:50:65:ce:d7:fb:74:03:e3:
8d:95:a4:d4:22:71:87:c2:93:1a:c3:64:7d:23:ac:
f8:81:dd:7f:da:2f:1f:1e:86:80:f6:a0:4d:5a:22:
a3:d6:cf:e3:48:1d:b1:87:46:7f:11:8b:81:a6:b6:
fd:ca:b6:5b:d2:11:7b:4f:08:86:d0:5b:b6:ba:cb:
ff:55:62:c9:3d:dd:79:b3:5e:af:d3:2e:d1:e7:01:
66:3a:ac:64:47:a0:ba:03:9e:4d:21:da:45:e6:6c:
0e:fb:47:c9:db:52:6a:64:a7:7e:cd:45:3f:1d:a5:
42:d5:aa:9c:79:56:5c:da:58:59:e9:32:ca:77:17:
73:02:57:f1:30:83:8e:2a:21:9b:64:9f:dd:3d:14:
15:4c:da:a3:87:08:57:c7:34:ae:3d:4c:a6:c9:bd:
c7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:39:06:A9:CC:E6:C9:38:80:23:22:7D:36:D9:E3:C0:62:88:C4:57
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35EFD09EC42411EFA6299166762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.92.0/24
Signature Algorithm: sha256WithRSAEncryption
38:44:1c:93:cc:af:ed:c3:d8:1e:2f:c4:f4:7a:99:50:66:dd:
b3:1e:83:73:5d:97:77:da:dc:28:b8:80:e9:35:12:bb:dd:7c:
83:01:bf:46:df:99:aa:50:11:fe:03:f0:6a:06:af:7e:43:ae:
0f:77:53:a5:59:4e:80:4a:2b:10:e7:39:f9:7e:79:14:78:dc:
80:a3:2e:c1:c1:2f:0b:c8:6d:0c:5c:9e:54:6f:8f:6e:35:fa:
3e:3d:56:80:6d:b5:c7:2a:f0:54:f5:c9:79:f5:4a:84:39:dc:
85:db:cf:18:85:4b:88:3f:c6:6e:fe:c1:61:e8:ff:6d:5c:0c:
30:e3:64:80:dd:bd:31:29:55:e9:af:7e:99:27:ba:6b:12:bf:
c0:da:c2:ff:31:f7:64:75:57:47:b5:76:f2:7b:b1:e4:6c:4d:
de:c6:ea:76:e3:29:ac:0d:06:83:5c:0f:ed:f4:b7:d4:3e:18:
d4:f1:5a:52:55:74:9e:74:8b:d4:74:e6:5d:59:9e:da:66:8c:
b2:1d:d0:65:d1:68:c4:3d:a9:50:9b:7c:ff:1c:fd:e5:59:c2:
87:0e:c3:ad:33:1d:ba:fd:d1:ee:7c:b1:e1:d6:d9:57:60:2b:
32:10:8b:b3:f6:20:4c:fa:de:17:cf:cc:dc:0a:cd:de:c9:23:
c9:0d:ec:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:24:38 2025 by rpki-client