Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488818A6D57211EFA00326A5762E951A.roa
File: 488818A6D57211EFA00326A5762E951A.roa (raw, json)
Hash identifier: xlmakl0FdIsQv0cnIGuF3289rNfBGY5mwj9sJXS0UF4=
Subject key identifier: D7:52:AF:01:C3:2A:A4:6F:5E:0D:C5:4E:40:A9:82:9F:AD:10:19:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013DB4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488818A6D57211EFA00326A5762E951A.roa
Signing time: Sat 18 Jan 2025 08:00:29 +0000
ROA not before: Sat 18 Jan 2025 08:00:25 +0000
ROA not after: Sat 22 Feb 2025 08:00:25 +0000
asID: 400619
IP address blocks: 154.202.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81332 (0x13db4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 18 08:00:25 2025 GMT
Not After : Feb 22 08:00:25 2025 GMT
Subject: CN=678b5f9d-7f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:17:af:da:4e:17:1c:43:99:d5:9c:93:c7:3a:
55:0b:37:91:28:42:e3:9d:69:2b:e2:eb:23:0e:82:
d9:00:fd:05:52:76:dd:89:88:1f:c5:a2:01:06:eb:
6d:52:ce:0c:74:4e:99:2d:85:e5:ff:c7:fc:67:2c:
a9:f5:b1:49:24:82:b1:23:aa:fd:24:89:50:05:a8:
cf:28:eb:f3:c3:7c:95:f0:87:c0:02:02:5a:7b:32:
d5:b3:dd:f7:a5:e4:55:53:8d:2a:c2:81:55:97:dd:
3f:2b:60:28:82:45:4d:f7:f3:37:96:a9:dd:34:0f:
ff:84:06:16:d3:02:04:73:30:d7:b7:9b:d3:f9:6c:
58:ee:8e:65:5c:47:5d:6d:f5:87:90:e5:4f:2d:0b:
c0:31:5f:32:a5:33:b1:cd:2e:b2:d9:1f:37:62:ad:
2b:f3:07:53:b1:7b:5b:fb:51:4d:b1:f4:1f:1b:b4:
f0:6a:d0:33:8a:90:5b:7a:5a:f7:9c:eb:f3:5b:6e:
32:66:65:d0:51:00:05:a6:38:e8:fe:1c:14:54:63:
e5:f1:03:a8:35:c4:df:8f:21:0d:5d:54:b7:6f:d4:
7e:c6:cf:8f:5c:e8:7d:36:54:7e:06:ee:ba:b7:31:
0c:70:30:52:40:4b:b4:d8:ca:8c:f5:09:a7:14:48:
ef:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:52:AF:01:C3:2A:A4:6F:5E:0D:C5:4E:40:A9:82:9F:AD:10:19:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/488818A6D57211EFA00326A5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.120.0/21
Signature Algorithm: sha256WithRSAEncryption
56:12:69:27:eb:c3:3c:8d:ef:90:cc:d0:40:6c:d7:57:42:8a:
6a:11:f6:db:d4:5b:2f:cf:23:fe:b7:28:90:86:d8:ad:e2:a7:
bf:45:4e:84:ce:34:38:32:35:e6:40:c9:75:7a:3f:b1:f9:af:
d4:28:41:8f:6b:fc:b0:ee:c1:87:80:fc:a8:d9:5c:e1:af:43:
bc:01:81:c5:53:0a:59:cf:3d:f2:16:50:e7:39:c0:0d:42:b8:
02:3c:39:da:45:b0:b3:96:85:01:83:39:a1:af:5b:19:cb:a2:
ec:ab:da:0c:a4:ea:3c:17:39:b8:61:5c:a3:66:5c:17:de:4e:
ef:8a:99:fa:b8:d2:9f:33:eb:46:4e:25:7e:51:f5:97:de:e7:
c7:5d:e6:c3:fc:6d:40:c8:f1:83:0d:b3:a6:d3:11:0d:a8:ae:
67:a3:1a:26:f1:5e:c2:5a:b0:49:8f:93:38:83:74:15:29:2d:
95:c8:39:e1:7b:49:5a:d5:4b:6f:12:fc:b8:b7:2e:ec:56:d8:
2d:83:f7:b7:cb:94:f2:fe:78:ee:d6:c9:ca:78:de:a0:77:96:
77:99:27:30:13:7d:d5:28:ad:2c:0c:a2:ae:60:7f:54:47:c9:
81:36:63:21:69:57:30:ee:81:0d:ac:c7:7b:5a:67:a8:8d:ae:
6b:11:74:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:37:12 2025 by rpki-client