Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/515538DEC8B011EFA60F4E43762E951A.roa
File: 515538DEC8B011EFA60F4E43762E951A.roa (raw, json)
Hash identifier: 4WaF/cHkqHrrac0cqdyb+DjZoffRFK1DZswIKEZJD5E=
Subject key identifier: 05:67:7E:76:39:D7:49:D9:88:37:82:DF:8D:AF:24:CD:85:B8:DE:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131A2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/515538DEC8B011EFA60F4E43762E951A.roa
Signing time: Thu 02 Jan 2025 02:21:48 +0000
ROA not before: Thu 02 Jan 2025 02:21:44 +0000
ROA not after: Sat 13 Dec 2025 02:21:44 +0000
asID: 984
IP address blocks: 154.220.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78242 (0x131a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 02:21:44 2025 GMT
Not After : Dec 13 02:21:44 2025 GMT
Subject: CN=6775f83b-cee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fa:68:0f:bd:8a:df:f4:7a:a4:8e:4e:82:69:
96:38:28:c4:a2:84:bd:38:3a:f8:03:d2:3d:92:5f:
07:19:9a:18:86:20:2d:2f:79:b3:5e:a9:1f:e0:1b:
82:d7:6e:65:7e:1e:79:a6:2f:d9:76:2b:f9:c7:50:
bc:f9:07:bd:38:18:2a:c0:7a:d5:49:bb:35:d1:4a:
2c:c4:b4:c2:1a:55:f8:ef:48:67:13:1f:ca:66:52:
8b:97:8c:47:8e:b2:a2:61:e1:8b:10:9c:d5:62:c0:
06:d1:fc:d6:28:a2:64:0c:09:05:1d:a5:ab:c4:54:
ee:f3:8a:65:97:17:26:e8:e1:8a:06:c7:ba:e0:0b:
0a:b0:b0:08:95:e3:2f:a5:59:fb:21:a1:2d:ba:59:
e1:0c:92:26:97:d2:0a:cf:06:8a:7f:b0:d8:46:32:
8a:67:63:4e:25:5f:70:cc:56:37:4a:60:b3:ff:ad:
43:3b:61:59:e4:3d:c0:35:99:01:4a:f4:9a:19:55:
a0:e0:bc:7a:06:73:f0:78:03:03:b5:6a:c3:d3:28:
62:53:1d:cb:74:a6:c2:74:95:05:28:8a:d5:37:da:
c6:9b:7f:79:cd:14:ad:e5:1a:37:c3:7f:c8:30:5d:
f4:72:de:22:47:15:60:c6:3b:f4:38:2a:f2:4f:01:
37:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:67:7E:76:39:D7:49:D9:88:37:82:DF:8D:AF:24:CD:85:B8:DE:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/515538DEC8B011EFA60F4E43762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.173.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0e:94:7b:64:86:cf:22:4c:6f:41:2e:19:45:90:9e:66:05:
12:50:d3:87:1b:45:a6:44:c5:d3:9f:4d:36:63:cd:8a:0d:51:
17:5b:5b:d1:af:9f:57:c7:17:18:c9:f0:28:fb:e1:b9:81:24:
05:05:e6:8c:ad:f2:c4:f6:66:a1:50:59:74:27:66:39:5b:a9:
6a:c7:95:aa:28:c2:d3:a7:54:39:a5:6c:fd:b6:a2:28:b5:0c:
f6:a3:cb:cd:29:0f:0d:af:8e:70:45:8c:cc:2e:28:95:e6:4b:
8b:20:63:95:d4:21:1e:e2:49:a7:e5:70:de:d9:6c:b0:2e:ba:
1f:94:32:b4:c9:44:e8:37:f3:fd:c8:a0:86:a2:1a:81:9b:f4:
59:9c:e9:c3:5c:db:4a:e9:73:f2:e2:42:7e:da:e6:a3:8f:92:
e2:dd:ab:4f:b1:bc:ef:60:5a:6a:a6:c5:1b:22:1e:25:e4:71:
81:b1:81:ca:12:94:41:4e:8a:92:4e:53:1e:eb:19:4f:0c:63:
d7:b7:f7:92:b5:56:30:23:f3:74:c3:92:95:00:1c:be:df:38:
06:9f:db:cf:6f:eb:db:95:56:9f:46:d9:c9:4c:9a:b0:7b:4b:
b6:06:78:8f:e1:2b:7c:19:21:1f:3e:56:19:cf:40:b3:ea:f7:
2b:dd:55:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:01 2025 by rpki-client