Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A997BBAC19C11EF8BBE2CB3762E951A.roa
File: 4A997BBAC19C11EF8BBE2CB3762E951A.roa (raw, json)
Hash identifier: U75vSC8p1w37i2VDMVJpu0ukgHQaIC8AxVcc7lmFsU8=
Subject key identifier: 17:03:BD:BA:F6:AC:AA:6D:C4:2E:64:DF:45:92:FB:9E:57:8B:39:E6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012079
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A997BBAC19C11EF8BBE2CB3762E951A.roa
Signing time: Tue 24 Dec 2024 02:10:48 +0000
ROA not before: Tue 24 Dec 2024 02:10:44 +0000
ROA not after: Wed 10 Dec 2025 02:10:44 +0000
asID: 984
IP address blocks: 154.90.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73849 (0x12079)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 02:10:44 2024 GMT
Not After : Dec 10 02:10:44 2025 GMT
Subject: CN=676a1828-3915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:11:f4:8b:7a:4f:47:f6:c6:bf:38:db:f1:db:
9b:97:81:c9:cc:b7:02:e0:98:1f:32:15:7a:bd:20:
47:89:bb:ae:8d:bb:19:30:99:3a:0a:5d:70:4d:de:
cb:72:8b:fe:68:7c:89:f1:87:f8:1c:8b:cc:f1:20:
dd:e1:85:b4:83:fc:84:dc:21:1d:2f:92:b3:eb:66:
ce:42:7c:04:6a:d7:2f:16:75:8d:7c:4d:fc:3d:4f:
62:6a:b4:59:63:d9:5a:36:d1:e1:61:d5:fd:ef:59:
8d:db:43:89:4a:07:87:b8:32:c3:e6:14:ad:08:b0:
df:f7:8d:e6:68:17:33:a6:3c:1d:73:af:2e:0d:3e:
23:c5:89:01:d6:a9:01:3d:4b:8e:cf:4f:28:d3:fe:
43:8d:3d:16:f6:0f:bd:be:3b:8a:a1:cf:c7:5d:da:
34:77:7b:e9:b9:e2:3d:5d:55:9e:2a:7a:88:41:3f:
03:6d:f7:25:5d:7e:0c:6c:c6:f1:29:29:1b:fc:91:
f6:f3:8b:c5:16:91:09:0e:6b:ee:fc:ee:72:3a:f4:
97:a7:c4:67:9f:60:9e:7e:27:c0:e4:b3:c9:2f:95:
5f:b8:79:37:79:0e:f7:0d:f1:4e:54:2a:be:e6:5a:
16:3d:4e:6d:1a:a8:08:30:e2:b8:c0:7a:5d:de:17:
5c:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:03:BD:BA:F6:AC:AA:6D:C4:2E:64:DF:45:92:FB:9E:57:8B:39:E6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4A997BBAC19C11EF8BBE2CB3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.216.0/24
Signature Algorithm: sha256WithRSAEncryption
87:d8:94:23:16:35:4a:fa:55:b7:e3:cc:14:69:fb:56:2d:c6:
f1:ed:57:90:b4:55:c3:7f:20:26:9e:23:3a:6b:7c:6d:2f:01:
b0:0b:6f:f3:54:38:96:c4:a0:e3:5b:c1:82:85:8b:fb:67:c7:
97:af:ff:37:c1:f5:73:e1:43:47:62:fc:ca:d4:fe:d0:39:1c:
0f:8c:48:b9:a2:5c:a3:42:1d:b6:c9:d5:b0:53:c2:30:dc:ea:
a2:53:6c:09:c6:5f:67:60:ba:4b:3f:f1:7b:a7:d2:c8:67:11:
7d:9f:61:a0:69:4f:b1:16:74:a5:1a:1a:81:c1:98:ef:c9:8e:
d9:9a:18:e1:2d:86:d9:6c:78:21:21:3f:bb:eb:58:e3:4e:0e:
9e:73:67:82:cc:ea:22:f8:3c:d7:22:a6:cb:c5:bb:b0:4c:95:
a3:71:8a:f1:11:93:cb:13:11:3c:6b:4c:c7:e8:28:48:e7:48:
2b:c1:61:ee:7e:cd:73:c3:1a:ae:53:72:c8:9e:67:4e:9f:bc:
b7:55:59:2d:d0:5c:52:fb:42:f2:7b:70:db:d1:8d:8d:6b:c5:
31:eb:98:b7:a2:07:9a:4e:07:eb:0b:d7:ff:70:91:01:8e:15:
67:52:88:f7:c7:df:5f:06:a0:ea:d2:32:9c:bd:27:d7:32:33:
e5:fe:e2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:10 2025 by rpki-client