Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5151E710C0E011EFAF4A6E99762E951A.roa
File: 5151E710C0E011EFAF4A6E99762E951A.roa (raw, json)
Hash identifier: UWx5h1DDY6R5cRsfDVkSR5lzPNnew+4aF8IsfAX4N0k=
Subject key identifier: 55:A0:C5:1D:48:F7:2D:59:CE:BB:A7:BA:F5:E5:8A:B4:58:F4:B7:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011EE2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5151E710C0E011EFAF4A6E99762E951A.roa
Signing time: Mon 23 Dec 2024 03:45:14 +0000
ROA not before: Mon 23 Dec 2024 03:45:10 +0000
ROA not after: Wed 10 Dec 2025 03:45:10 +0000
asID: 984
IP address blocks: 154.89.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73442 (0x11ee2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 03:45:10 2024 GMT
Not After : Dec 10 03:45:10 2025 GMT
Subject: CN=6768dcca-97c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:ee:b2:97:1b:aa:58:f6:fd:b7:e3:66:3f:
3c:31:45:d7:78:d4:07:0d:36:31:f6:ea:15:c2:63:
d7:7b:f5:fc:4a:2d:0d:b7:ab:ec:5d:f2:e7:23:7b:
16:48:17:11:23:c7:62:6f:db:c4:fb:f6:5e:65:47:
f8:59:04:db:ca:4f:93:5c:34:0e:94:6f:cc:02:05:
80:a8:66:e8:59:83:fa:41:64:80:2f:d0:13:73:0d:
fb:2c:85:41:31:96:90:50:8b:15:bb:bc:d2:e0:d7:
4a:57:64:bb:c8:84:b4:2b:de:28:1e:e8:0a:b1:e4:
45:9e:b2:d5:3f:e2:7d:93:c3:c4:11:3a:ea:67:51:
cb:9c:a3:ed:83:8b:74:66:74:5a:0e:9f:39:d4:ac:
9c:60:e0:be:b3:d0:65:26:e9:ac:b5:1e:d7:87:fb:
af:de:8f:dc:3c:0b:07:1c:a0:d8:22:5a:9c:0e:c6:
5e:18:1d:57:27:3e:8d:90:48:75:84:ef:cb:8e:51:
04:92:52:bc:b6:8d:8d:ae:a1:14:a7:ca:13:c7:07:
6f:96:53:5f:4f:b8:e0:4e:5c:ab:3c:bc:53:57:92:
90:b6:e2:77:8a:11:73:bc:90:5b:14:1e:a6:1a:c6:
ab:86:66:20:8d:59:df:54:42:f7:ef:64:f7:32:f9:
dd:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A0:C5:1D:48:F7:2D:59:CE:BB:A7:BA:F5:E5:8A:B4:58:F4:B7:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5151E710C0E011EFAF4A6E99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.207.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:6d:4b:dc:bf:f4:d0:58:6a:87:24:d6:a9:a3:96:dc:e2:61:
a3:f9:58:1b:0e:da:a3:e4:04:cb:c1:5b:cd:b7:1d:ea:d6:b4:
2c:3f:50:f5:21:55:1a:28:44:58:41:70:6a:1a:b2:8f:cd:68:
80:ad:0d:d4:5a:c4:ae:34:d6:d7:67:8d:1f:98:04:9c:73:ac:
a4:23:13:39:49:30:0f:21:eb:c9:c7:a3:fa:10:a2:77:fe:31:
b0:75:5e:cd:f5:a4:f6:04:ec:09:63:61:c7:ba:a2:7f:53:20:
91:75:ed:e5:a2:75:2d:ed:44:7f:01:03:23:60:26:71:bc:83:
3b:ce:37:97:06:8d:f6:37:df:b7:6f:d4:21:48:93:a9:04:d6:
9d:c7:a0:49:bb:87:76:47:fb:78:5d:ba:1e:b5:d3:41:8a:1a:
0d:e6:d6:53:f7:be:63:c8:35:7e:03:8a:bc:4f:03:0d:c2:9b:
54:d9:e0:52:2f:6a:8c:71:d1:45:c8:93:b7:e6:fc:fb:88:04:
ee:3c:ab:89:88:57:16:b3:b0:e2:96:ee:13:a1:ce:fc:39:35:
e4:62:cb:c0:03:26:aa:bf:f0:a6:26:f5:d1:da:32:ec:41:55:
9c:b1:80:4d:78:9a:e8:c6:3f:c6:25:67:ec:93:48:48:9d:9d:
d0:46:b0:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:44 2025 by rpki-client