Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B7C0022F81E11EF815F1243762E951A.roa
File: 3B7C0022F81E11EF815F1243762E951A.roa (raw, json)
Hash identifier: vyLNU0LtNLzI9e1XMasMP2cOAKsNkktC4m7hAqD9Rxg=
Subject key identifier: 2B:88:39:46:02:0D:43:EB:9E:84:8C:D9:BB:B8:7C:56:A1:23:1C:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017047
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B7C0022F81E11EF815F1243762E951A.roa
Signing time: Mon 03 Mar 2025 10:57:00 +0000
ROA not before: Mon 03 Mar 2025 10:56:56 +0000
ROA not after: Wed 30 Apr 2025 10:56:56 +0000
asID: 63139
IP address blocks: 154.93.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94279 (0x17047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 10:56:56 2025 GMT
Not After : Apr 30 10:56:56 2025 GMT
Subject: CN=67c58afc-3b7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:14:8f:1d:34:b7:34:9e:11:8c:59:20:04:b7:
a4:dd:25:87:37:60:ab:e7:e7:75:27:76:f1:2b:58:
c3:b0:8d:82:0c:d7:c8:da:4b:2f:0e:a8:1a:86:65:
b3:10:84:04:06:fb:0b:59:e4:c7:46:e6:e4:24:26:
b7:c3:9b:1c:ef:bf:c1:54:af:b6:05:67:98:76:1a:
80:c3:9e:ae:d1:4e:11:63:a2:0b:93:38:b5:d4:fd:
39:cc:15:fd:18:35:a9:00:56:b4:e5:0f:ed:69:f8:
52:a6:e7:7e:6b:35:c3:14:23:f8:4c:b0:d3:2b:98:
48:b2:85:3a:a5:d8:d4:4a:93:66:9c:c7:02:07:e6:
46:7f:d5:97:a8:2d:29:a7:fc:a6:14:a6:b6:25:41:
40:05:85:65:c3:84:8d:4b:09:49:3f:ac:dd:82:74:
d5:b4:e4:47:b5:d1:4d:22:70:63:33:fc:41:09:26:
10:62:0c:bd:0b:85:03:0a:13:c5:4e:89:6b:60:d4:
2f:50:b5:33:0a:cb:db:76:24:f3:e6:af:68:01:31:
fa:14:56:ab:0a:81:b4:89:c6:4a:b1:b9:3d:57:8e:
87:b9:88:35:f1:7a:3a:b3:b0:21:15:21:67:8a:86:
d1:d6:b8:e4:10:16:89:86:72:67:72:a4:3f:46:1c:
2f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:88:39:46:02:0D:43:EB:9E:84:8C:D9:BB:B8:7C:56:A1:23:1C:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3B7C0022F81E11EF815F1243762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.76.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:be:b8:5c:75:35:26:b6:4b:07:70:cd:3e:b7:56:f4:39:55:
17:87:4c:33:e2:09:3d:96:58:7b:ef:ce:72:30:9e:50:22:d8:
9d:cc:e6:04:73:24:a5:b6:46:87:2f:df:f0:cf:05:35:16:9b:
e8:34:bd:4d:88:84:30:02:cb:74:b0:23:64:64:ea:13:c7:d1:
69:76:aa:00:48:0a:89:44:b8:d6:88:69:af:21:ec:e4:3d:ef:
f9:d7:6e:11:fd:0d:34:54:65:c9:f0:82:77:e2:41:47:51:cb:
fd:50:55:d3:1c:7f:61:cf:6d:7b:0c:91:db:1b:6c:76:8e:e1:
05:bc:17:e3:af:28:83:d3:cc:9c:f0:de:ec:12:e5:f0:ac:cc:
f7:42:1d:60:2c:13:ca:6a:68:ec:d2:e9:54:ce:d8:4e:00:d7:
35:5d:75:82:25:58:36:ee:51:91:dd:06:12:1b:b8:6f:ce:84:
0d:1d:00:d6:9e:57:a1:29:8d:e2:04:90:48:35:f0:b1:12:dc:
04:0c:67:53:f4:c7:e5:b2:01:41:58:cb:8b:78:17:54:f8:9b:
46:21:39:8a:8e:4f:c7:c9:af:51:97:07:57:bf:d2:0d:f2:8a:
c4:f9:a4:b7:a3:22:64:fe:62:6c:69:a0:fc:db:e9:9e:70:0a:
46:4b:c5:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:44 2025 by rpki-client