Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/486747D0C1CB11EFBCD5E464762E951A.roa
File: 486747D0C1CB11EFBCD5E464762E951A.roa (raw, json)
Hash identifier: W+20O8gWpStuiTjqSiNbgBXnjljYr9FO1tdZkAfUpUU=
Subject key identifier: 71:53:80:84:C9:DB:A3:DB:B8:43:38:90:19:C5:2C:E6:9A:92:1A:1F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01225F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/486747D0C1CB11EFBCD5E464762E951A.roa
Signing time: Tue 24 Dec 2024 07:47:11 +0000
ROA not before: Tue 24 Dec 2024 07:47:07 +0000
ROA not after: Wed 10 Dec 2025 07:47:07 +0000
asID: 984
IP address blocks: 154.193.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74335 (0x1225f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 07:47:07 2024 GMT
Not After : Dec 10 07:47:07 2025 GMT
Subject: CN=676a66ff-31ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:42:73:21:93:b7:26:3f:6c:2a:92:3f:9f:65:
96:a2:36:56:7a:8c:d8:91:33:0d:60:e0:d2:04:b6:
27:b8:61:7b:ba:82:0e:5b:4f:9e:1c:e6:36:d8:76:
93:09:54:3c:ba:2e:fe:f8:cf:29:ae:61:ad:cc:b1:
2a:fa:bd:6b:72:53:b8:3e:8c:84:99:25:1d:3c:91:
96:ab:f9:33:95:1f:98:da:57:17:fd:e0:64:5e:88:
2f:12:f4:f9:89:d6:65:3d:bc:97:f4:10:49:48:fc:
70:40:e4:f5:91:5c:9a:dd:23:2e:b6:1b:69:db:e3:
d0:1a:b8:ac:ca:c9:83:f9:fd:cf:6e:5e:6b:75:2a:
e5:04:3d:eb:cc:98:98:d9:c6:f1:6e:bb:92:25:77:
e3:84:24:ed:e5:2f:9b:b2:92:0f:44:1f:20:44:f6:
d0:83:8e:1e:66:15:fc:d2:15:9e:7b:6b:73:16:5a:
4a:66:c1:c7:4d:fa:44:d5:0f:c3:cb:74:3b:b9:10:
25:7d:0f:a3:25:82:6d:79:2a:d5:e8:d4:f2:bd:e3:
31:b6:c8:94:ae:04:d6:62:c5:9a:ed:1b:b7:22:56:
a9:f2:4f:5e:fe:cc:a4:68:a7:9e:e0:cb:05:03:dd:
80:40:17:f2:a7:12:f3:d1:aa:01:d8:a0:e0:c5:75:
79:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:53:80:84:C9:DB:A3:DB:B8:43:38:90:19:C5:2C:E6:9A:92:1A:1F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/486747D0C1CB11EFBCD5E464762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.207.0/24
Signature Algorithm: sha256WithRSAEncryption
65:7c:e9:21:09:20:01:5c:2b:b0:c6:c2:1f:d4:eb:fc:06:03:
c4:8c:44:a9:ec:5e:80:0a:09:50:a6:d0:40:7c:27:6e:08:ab:
be:f6:89:87:1e:73:a7:3b:9d:68:75:fb:14:c7:32:8e:27:c3:
98:60:bb:26:dc:00:15:40:4c:55:0e:71:12:c5:80:54:a0:46:
a8:47:d4:f0:ad:0f:44:4f:d4:9e:30:e3:2b:47:6f:e3:f2:06:
03:e2:74:0c:45:08:f0:b4:43:47:04:c7:e6:ec:7f:20:c1:09:
b7:5c:cf:39:05:12:b7:17:ea:95:5c:bd:eb:63:43:ea:84:46:
fc:db:97:1c:82:ab:13:ba:82:06:00:6e:c5:2d:8e:b2:b7:dc:
b4:3b:80:33:69:85:26:51:cb:31:ff:6d:44:42:74:90:95:53:
22:d3:b8:f4:6d:1a:bc:f3:62:d0:40:04:14:b5:25:91:a3:64:
ff:57:a8:da:80:2e:41:eb:1f:ef:d7:3b:0a:ee:6b:95:2a:57:
15:28:3d:95:50:2a:bf:d1:14:74:08:5c:7c:a4:22:91:1a:ce:
1b:c2:d4:63:a3:97:cc:a5:65:c1:f3:26:76:8b:bb:10:e2:d6:
e4:1e:5e:09:f7:69:57:f4:be:ac:70:61:91:ca:f1:da:9c:e9:
42:5e:83:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:22:00 2025 by rpki-client