Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/558A459EC25611EF9965A555762E951A.roa
File: 558A459EC25611EF9965A555762E951A.roa (raw, json)
Hash identifier: rJDVkPVFnRgMvroj0934XrQGsmq5qeMWN+a0c9bFcHw=
Subject key identifier: A5:D7:1B:EB:D9:E5:92:47:AD:1E:D8:3A:FC:23:EA:DF:35:CF:FE:20
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012335
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/558A459EC25611EF9965A555762E951A.roa
Signing time: Wed 25 Dec 2024 00:22:33 +0000
ROA not before: Wed 25 Dec 2024 00:00:29 +0000
ROA not after: Wed 10 Dec 2025 00:00:29 +0000
asID: 984
IP address blocks: 154.199.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74549 (0x12335)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 00:00:29 2024 GMT
Not After : Dec 10 00:00:29 2025 GMT
Subject: CN=676b5049-ba48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:16:46:9d:fc:53:0f:c5:77:69:19:58:95:e0:
18:74:90:1a:aa:ef:b6:b1:2c:8c:d9:39:d7:cf:55:
a5:c9:49:4c:42:16:7a:88:da:0c:c0:55:1e:fb:10:
d5:31:65:87:a8:fc:87:23:ab:78:4d:aa:b5:57:84:
0e:72:91:93:b4:6e:9f:76:c0:1a:3e:41:95:98:57:
2e:2b:0d:f0:d1:6b:53:51:7b:84:3c:b1:c9:eb:a7:
4b:a1:51:39:8a:c3:a3:18:85:b9:c1:b4:35:64:25:
6e:54:90:90:15:d9:79:f2:3e:a2:b7:4b:ed:81:0f:
47:08:7a:30:11:0f:1b:e6:a8:f8:9f:8e:65:4a:8a:
d9:81:e6:41:04:4e:94:93:be:0d:2f:70:ec:a3:7d:
c0:c4:71:74:cb:09:42:29:62:63:01:3a:9b:32:26:
f3:cf:ed:cc:4e:da:83:44:c7:1c:06:a8:de:ca:03:
79:12:cb:bc:ca:a2:28:29:0d:34:1b:39:61:c4:04:
42:36:d6:93:94:b9:6f:51:49:b0:dc:0c:ba:39:80:
a7:7d:8f:d4:26:f2:fa:cc:67:dd:75:cb:0a:5e:dd:
d7:8b:95:f4:81:e0:87:46:70:59:b3:03:9f:6e:b1:
ef:60:74:fd:9f:f5:35:c2:cd:c9:fa:0a:be:79:ed:
61:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D7:1B:EB:D9:E5:92:47:AD:1E:D8:3A:FC:23:EA:DF:35:CF:FE:20
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/558A459EC25611EF9965A555762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.40.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:0b:a1:53:13:e0:79:b8:7f:c9:7a:1c:c7:b4:44:62:aa:cb:
60:86:00:13:67:ec:d7:18:80:20:35:dc:f2:4c:30:c2:f7:41:
17:8d:8c:ea:3a:63:28:0b:60:69:f9:d5:84:e7:3d:88:e7:48:
dc:72:25:e7:29:34:58:76:76:23:f5:a8:d7:f2:2a:bb:d0:ea:
fe:1f:6d:11:7a:08:8d:92:d1:55:7d:e0:84:df:b5:2a:65:74:
43:ce:f5:cb:25:12:80:a9:a2:e0:b8:a0:a2:73:72:e3:02:19:
a5:84:1d:ad:15:64:8d:f4:84:df:a4:e3:b4:4a:c9:f8:8c:9c:
8a:ae:8b:1e:c5:0d:6b:21:06:31:6e:80:58:a7:62:e7:e7:5c:
35:9c:ba:9c:30:21:ae:2e:65:91:9b:7c:3f:ec:0b:b1:e4:99:
da:93:a2:3b:f0:fd:3f:3e:8b:a2:57:09:4e:f6:98:fb:27:38:
f9:f6:5f:68:54:e1:ea:eb:db:3f:db:e3:2d:5e:b9:4f:a6:08:
20:89:11:40:8e:bc:7f:5a:43:58:b7:c2:70:13:17:58:65:8b:
4f:3a:3f:81:a6:51:dc:a7:7f:ad:fc:8e:f9:8b:d5:18:0a:d9:
d8:1e:fd:a5:4f:d7:0d:cf:62:ce:96:08:bf:5e:2f:2b:e7:f6:
24:28:b2:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:43 2025 by rpki-client