Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55208490D2DE11EF97139960762E951A.roa
File: 55208490D2DE11EF97139960762E951A.roa (raw, json)
Hash identifier: UEyxGc0RbDcRHO0mkfDnh0+/x41vFYWOWrDwLuoOemM=
Subject key identifier: 36:8D:B3:F1:67:44:C7:B8:7E:A1:7F:93:8B:16:A4:4F:9C:34:5F:64
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013B78
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55208490D2DE11EF97139960762E951A.roa
Signing time: Wed 15 Jan 2025 01:16:22 +0000
ROA not before: Wed 15 Jan 2025 01:16:19 +0000
ROA not after: Fri 12 Dec 2025 01:16:19 +0000
asID: 984
IP address blocks: 154.218.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80760 (0x13b78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 15 01:16:19 2025 GMT
Not After : Dec 12 01:16:19 2025 GMT
Subject: CN=67870c66-bfa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6a:70:7a:3d:75:06:ac:a3:dc:b2:0f:f6:08:
39:e1:d7:f6:64:91:22:a3:36:1f:3f:a1:e0:ea:a4:
0d:71:c9:74:6b:ca:db:e8:55:11:f9:14:b5:93:95:
9c:49:fd:af:ea:20:53:11:9a:bc:cf:34:46:b9:55:
55:f5:7e:53:07:56:e4:c1:ed:98:66:20:9b:9b:71:
3c:d8:34:bd:fc:33:b5:8f:d6:2c:4b:84:23:17:04:
8b:dd:7a:32:ec:df:e4:5e:5f:d3:59:f2:69:4a:78:
73:bb:ee:10:27:5d:c7:36:07:dd:29:78:ae:42:33:
21:ca:23:75:3f:85:da:92:68:e5:a2:d5:f0:08:9b:
50:04:bc:02:21:d3:dc:e2:b1:1c:2b:5f:9c:7d:5b:
9d:a5:3c:91:c6:73:18:8c:92:e8:fe:72:5a:db:62:
25:f5:e0:ea:cd:55:e6:ea:45:47:fc:f6:dc:47:46:
22:e2:84:67:c0:ac:fd:c7:03:b0:12:83:be:f1:54:
e3:45:91:94:e1:37:27:c3:d4:e6:3f:fc:0f:5c:ad:
07:19:92:03:66:29:45:51:54:0d:0c:d0:00:61:85:
5e:5d:ee:5a:84:41:8e:01:27:e6:1b:ad:49:49:ce:
b8:9d:86:b9:f8:40:d2:74:77:dc:d6:31:69:85:81:
32:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:8D:B3:F1:67:44:C7:B8:7E:A1:7F:93:8B:16:A4:4F:9C:34:5F:64
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/55208490D2DE11EF97139960762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.62.0/24
Signature Algorithm: sha256WithRSAEncryption
43:31:4f:e5:7a:33:47:3d:8e:59:87:4c:a3:40:e6:b7:7b:a0:
54:b6:3d:3e:38:ba:50:12:29:97:55:bc:92:48:bc:68:24:fd:
b5:7a:8b:ea:7c:39:a1:9e:72:c2:13:50:2a:e3:2f:9d:6e:80:
91:f8:7d:42:e2:dd:d9:37:d1:6e:c1:51:17:15:ff:e7:01:c4:
b2:6a:f8:45:a1:d3:87:cb:79:a0:1f:1f:88:f4:48:70:85:25:
0c:53:2e:55:a1:93:43:8d:a4:2c:09:09:8b:02:ed:4b:5f:5a:
6c:dc:b9:ca:7e:04:12:2e:64:ca:ec:0d:3b:29:62:7b:07:1b:
5d:74:2f:43:58:0d:69:dd:3d:76:ce:72:91:33:e3:b7:d2:c6:
a3:00:52:49:f4:b2:04:07:0c:22:71:1a:1e:06:d5:35:a9:3e:
4c:3a:89:27:fd:e5:00:05:4f:8e:47:20:8a:ff:c9:72:88:59:
28:4a:a3:17:a5:67:93:f5:f2:b3:88:72:c9:c1:29:cd:1d:66:
7f:d9:ad:ad:2a:52:7f:d1:77:c6:f3:ce:ce:08:ec:9c:06:58:
34:30:d9:7b:29:2b:24:f3:b9:0b:19:3e:fb:67:d9:ad:e3:86:
4b:7c:f7:e7:5b:d8:43:81:3f:0e:fc:5c:f0:ec:fa:b6:44:1c:
cb:b2:eb:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:18:37 2025 by rpki-client