Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36138680CDE111EF982FB24A762E951A.roa
File: 36138680CDE111EF982FB24A762E951A.roa (raw, json)
Hash identifier: qpJFRk9bjwE3Hy0qZkki2paQsL+vYjuGopfx1z9Sp50=
Subject key identifier: 32:3B:1E:2B:C0:C0:62:F0:E2:93:DF:B5:44:57:16:CE:21:FC:A0:6C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0137C1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36138680CDE111EF982FB24A762E951A.roa
Signing time: Wed 08 Jan 2025 16:54:23 +0000
ROA not before: Wed 08 Jan 2025 16:54:19 +0000
ROA not after: Sat 03 Jan 2026 16:54:19 +0000
asID: 984
IP address blocks: 154.89.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79809 (0x137c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 16:54:19 2025 GMT
Not After : Jan 3 16:54:19 2026 GMT
Subject: CN=677eadbf-37bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:4e:38:06:64:fd:3a:86:5e:67:47:72:64:c6:
4b:9b:df:79:05:1a:41:0d:d7:1d:37:3d:bf:7a:8b:
11:b9:06:00:9c:29:e7:3b:da:16:ab:a0:bb:ae:25:
d9:18:cd:1a:2b:be:17:40:a4:2c:29:6e:c2:a9:49:
17:06:00:d0:2d:3a:6c:7d:ff:ba:e8:a4:39:9f:33:
ce:49:fc:34:29:e4:91:e4:29:f9:f7:9a:dc:d0:bf:
84:13:37:7f:ee:e2:f0:b0:06:92:05:66:cf:25:59:
d5:7a:f2:f0:b3:3d:66:bf:25:4c:d3:50:86:b2:00:
5e:b6:d8:bf:fe:15:e3:87:2f:6c:4a:e0:cd:ac:2a:
98:97:9d:20:d9:d6:57:0c:a6:8e:15:b4:26:6a:53:
9a:5d:0a:fd:2b:f1:0a:eb:e2:48:a6:41:9b:28:97:
39:f5:71:31:eb:eb:26:48:19:dc:b6:48:44:b6:11:
fc:1f:d6:62:ba:18:26:d0:c6:5f:77:e1:0d:b6:5a:
3c:0d:0d:3b:42:5d:d4:e7:fb:77:d8:41:b5:34:ad:
84:3e:df:b5:90:e5:33:67:f7:4a:8d:a0:58:c3:1f:
b3:64:ef:7a:4d:7d:65:fa:4d:aa:a4:34:9e:ed:b5:
36:9e:c1:aa:5e:cb:91:3c:df:3b:a4:4e:4e:c2:e1:
72:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3B:1E:2B:C0:C0:62:F0:E2:93:DF:B5:44:57:16:CE:21:FC:A0:6C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36138680CDE111EF982FB24A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.175.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:dd:d2:6d:36:62:64:39:cb:db:e3:7f:c2:17:17:47:d4:7a:
ed:8e:77:fa:d7:dc:3a:d9:d2:4c:82:bb:e9:8d:e7:76:c4:21:
80:93:85:61:68:e5:8a:b5:0e:97:36:98:51:56:05:d2:3d:19:
16:fc:b1:02:7c:a5:93:bf:bc:2d:c2:fa:ff:ba:b6:28:6d:36:
e8:c4:9c:67:68:3e:8d:b4:d7:f5:5f:ab:13:98:aa:56:3e:a8:
1e:9d:d6:58:38:75:81:44:c3:d0:5b:5d:3b:0d:70:e4:23:e4:
64:c1:b6:b0:cd:01:1a:c8:5d:30:8c:ee:63:34:76:8f:3e:fb:
e4:97:94:2f:8b:e1:cb:d0:11:14:21:f7:a3:e6:45:d9:6f:bb:
ed:22:8f:fb:5a:ed:65:17:8b:9d:97:67:5e:23:17:ab:e3:53:
46:ac:72:5d:45:2d:9d:04:f4:f7:7d:42:14:7a:56:47:39:95:
5d:c1:a3:92:cd:03:6f:2b:8a:6b:fa:34:73:18:8d:fc:56:84:
06:78:db:45:c6:89:30:bf:27:15:c3:47:4d:cd:93:bd:50:94:
fc:08:39:fd:14:13:0c:ee:e4:a1:12:65:cc:01:e6:39:af:b3:
3c:aa:50:b2:fe:c8:94:6a:8a:03:e1:b4:11:52:b2:01:61:f2:
01:8a:3e:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:37 2025 by rpki-client