Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C2FFFF6C54B11EF8FAF86AB762E951A.roa
File: 3C2FFFF6C54B11EF8FAF86AB762E951A.roa (raw, json)
Hash identifier: bis6O+/Ie8d2GTt8ssr6lk48rnb9XK3iTub1tTSi0jo=
Subject key identifier: 6B:07:A6:61:53:85:9A:A3:74:B8:68:47:59:D1:03:CD:B0:5C:79:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012CDB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C2FFFF6C54B11EF8FAF86AB762E951A.roa
Signing time: Sat 28 Dec 2024 18:40:39 +0000
ROA not before: Sat 28 Dec 2024 18:40:36 +0000
ROA not after: Sun 12 Dec 2027 18:40:36 +0000
asID: 17561
IP address blocks: 154.209.74.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77019 (0x12cdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 18:40:36 2024 GMT
Not After : Dec 12 18:40:36 2027 GMT
Subject: CN=67704627-98d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:24:4b:ce:68:eb:73:d4:1e:8b:85:81:c5:63:
9f:e7:70:38:12:81:ef:0d:db:38:a8:8b:e5:a0:5e:
41:aa:fe:0e:ce:a0:e0:f8:36:ac:b9:97:0e:18:1a:
53:9b:ae:90:cf:84:0c:03:0a:7e:c4:ac:5f:a5:9d:
e4:93:00:a2:cf:17:d9:1f:5e:c7:74:ce:44:26:23:
40:ee:59:f9:c3:1f:52:d4:79:6f:c7:07:78:8b:03:
2a:e9:0b:71:d3:4d:57:bc:e8:fe:35:ac:f8:40:0d:
6d:10:e7:df:78:99:5b:da:3c:95:83:a1:f6:9d:46:
80:ad:ad:9e:14:98:44:f1:a5:b0:28:07:ad:ba:64:
f4:3a:ca:84:e6:54:90:50:52:d0:ea:9a:e7:fd:9b:
e8:ac:54:4e:6e:6e:4e:bf:03:65:e1:74:2e:e9:ac:
6d:be:da:67:27:cd:fa:f0:15:f1:ee:99:bb:c0:b1:
73:ad:12:f6:96:6c:e5:e7:e3:0c:63:ad:43:a4:da:
a5:a4:c7:1f:55:af:c9:0f:e5:dd:4f:bd:e1:6f:8f:
30:94:84:6c:5c:75:86:ad:f7:64:98:c7:79:fc:a5:
37:f2:4c:7d:ef:2d:53:4b:1a:9b:61:3e:c6:50:4f:
5a:32:39:19:a6:f7:09:6b:97:62:f0:95:7d:8a:57:
a5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:07:A6:61:53:85:9A:A3:74:B8:68:47:59:D1:03:CD:B0:5C:79:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3C2FFFF6C54B11EF8FAF86AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.74.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c9:66:f8:9b:cd:e3:19:14:b1:3c:cf:97:04:cb:3f:1a:3d:
14:ab:7f:18:48:10:2c:cc:8a:4a:14:21:0a:0c:ec:dd:b2:fb:
cf:b6:df:f5:8e:96:9b:6a:c0:e1:c5:38:88:23:6c:df:01:79:
4a:42:2c:a8:47:48:75:6e:66:b7:68:1a:98:d7:30:42:3a:38:
b6:93:48:be:5c:78:f9:0a:c2:77:1c:e5:fc:c7:f6:04:1e:e4:
01:e6:d2:c6:32:ac:5c:ea:5d:47:d9:60:89:5d:4b:65:5a:64:
02:59:63:7d:46:73:28:07:5c:7b:96:f6:2d:e7:17:a8:20:64:
6e:06:e4:b1:cd:87:35:0d:8d:c9:8d:0a:08:d6:fd:46:6d:5f:
da:6a:c2:1e:83:4d:25:df:d3:5b:18:0d:24:30:5f:a5:7f:30:
ac:18:a2:70:54:d4:fd:90:53:1f:16:78:6d:c5:a7:ce:e8:27:
6e:69:e3:98:14:87:9a:54:13:39:9e:61:2f:ad:42:8b:5f:38:
4b:73:c8:f5:72:dc:1e:8b:f3:5a:97:3d:e3:46:0c:89:55:e6:
e3:7b:8c:b0:2c:4f:c6:0f:31:7a:77:9b:9c:31:c9:a8:a0:dd:
73:81:40:ee:96:65:09:6d:16:b0:ee:53:0a:4a:5b:fb:a7:74:
fd:86:9e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:14:00 2025 by rpki-client