Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48B280F2F45111EFB6761141762E951A.roa
File: 48B280F2F45111EFB6761141762E951A.roa (raw, json)
Hash identifier: KD6RmCfuuVSy0HpNNqyHo4E2LWdafyq+lZQ9pDXb0w4=
Subject key identifier: 9F:D5:3D:13:51:20:99:FE:9F:44:E5:D9:AF:B1:C0:C1:A0:D1:C7:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016485
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48B280F2F45111EFB6761141762E951A.roa
Signing time: Wed 26 Feb 2025 14:52:22 +0000
ROA not before: Wed 26 Feb 2025 14:52:18 +0000
ROA not after: Sat 19 Feb 2028 14:52:18 +0000
asID: 17561
IP address blocks: 154.82.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91269 (0x16485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 14:52:18 2025 GMT
Not After : Feb 19 14:52:18 2028 GMT
Subject: CN=67bf2aa6-4220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:24:90:87:12:bb:7b:44:8d:51:32:de:33:d2:
fc:4a:2a:55:2b:29:3b:25:e4:81:55:ac:d8:1f:f2:
11:34:98:2b:67:0e:f9:ab:9d:2d:90:00:f8:7b:c4:
32:b5:a3:e7:06:96:7e:31:b9:3c:bd:68:4c:74:a5:
1e:12:e0:a4:9d:79:14:fc:ee:69:74:36:c7:6f:3e:
58:2e:e1:e5:bf:b0:f7:49:ea:da:60:6f:00:0c:7f:
b3:2a:d7:05:00:7a:0f:3c:2d:73:12:9f:d1:0b:32:
73:02:84:98:57:02:72:8b:3b:bd:e3:21:fc:2d:ec:
2f:51:8a:d0:71:12:42:aa:71:e7:ca:d3:b6:3c:9a:
b2:a8:b0:80:7d:43:a2:06:10:0e:17:8d:54:d8:66:
25:c1:9f:71:97:9b:87:a9:ee:6d:d1:5b:82:ec:5b:
42:8c:d5:03:31:52:67:da:0c:1f:60:53:b0:a2:8f:
34:d5:1c:36:28:94:e9:6d:a1:66:ca:dc:b2:44:d8:
13:b9:e8:d1:fd:b9:f3:65:d0:c0:bb:68:ad:52:e7:
71:e1:91:a9:9a:fc:14:89:0a:73:61:0a:c6:96:5f:
fd:7a:8b:e5:d8:8b:d9:b7:75:bf:6c:ab:ed:95:85:
3b:c9:ad:5a:da:4e:64:2d:9c:45:63:d2:18:4e:de:
9b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D5:3D:13:51:20:99:FE:9F:44:E5:D9:AF:B1:C0:C1:A0:D1:C7:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48B280F2F45111EFB6761141762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.220.0/24
Signature Algorithm: sha256WithRSAEncryption
81:83:80:cc:e9:10:1a:41:25:16:7b:d5:9d:cd:ac:3c:d8:33:
42:16:19:58:c4:21:01:e6:27:42:c4:20:bb:1a:eb:30:65:c5:
a3:bb:6f:95:2b:7c:7c:d1:12:e5:66:37:d3:86:c2:66:50:6e:
0c:73:6f:dd:7d:f4:0c:76:2c:16:f0:fa:6d:7d:ad:fc:8e:80:
30:35:9f:ce:09:8f:02:e7:bf:92:5f:65:7f:52:5a:26:47:7d:
82:b8:ea:49:ba:9a:c3:f8:77:3e:57:39:db:0d:25:4c:93:ee:
a9:63:f5:73:9e:ff:50:19:cb:44:4d:d2:09:0f:29:dd:5f:ae:
65:39:9c:bb:cd:84:fc:6d:cd:53:5f:33:6e:01:77:b0:d4:40:
01:6b:cd:5a:9a:22:c5:f9:6f:4c:c7:9c:8e:0d:24:3b:5f:9d:
ee:28:ab:44:ff:31:e4:9b:8b:33:f2:4e:b5:7b:11:e5:05:18:
48:53:1b:97:05:7b:9a:96:45:5a:c9:be:75:0d:8b:b0:28:70:
01:08:8a:aa:77:27:d7:fd:e0:a3:3e:ca:c2:bc:4f:e7:d3:05:
ed:2a:2d:30:bc:12:60:cd:70:a5:b2:e9:71:5f:23:59:9d:8b:
fd:fc:f4:99:13:a6:d4:08:2a:d8:e0:47:eb:5e:52:99:cf:50:
19:f0:fe:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:34 2025 by rpki-client