Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/564CCA6ECDD311EF8E01E573762E951A.roa
File: 564CCA6ECDD311EF8E01E573762E951A.roa (raw, json)
Hash identifier: /EGk646dM1gdlEv53VoIEcgwWb6vWTal/unhUUFbxEU=
Subject key identifier: 83:91:90:43:67:4B:EE:17:D3:1F:F6:D6:49:FD:4D:FF:0B:E3:D3:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013755
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/564CCA6ECDD311EF8E01E573762E951A.roa
Signing time: Wed 08 Jan 2025 15:15:04 +0000
ROA not before: Wed 08 Jan 2025 15:15:00 +0000
ROA not after: Sat 03 Jan 2026 15:15:00 +0000
asID: 984
IP address blocks: 154.83.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79701 (0x13755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 15:15:00 2025 GMT
Not After : Jan 3 15:15:00 2026 GMT
Subject: CN=677e9678-1232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:67:db:84:ca:42:be:5d:7f:27:4a:06:ff:3a:
b0:ad:b7:44:49:76:d1:c7:98:55:73:20:50:b0:61:
f9:e3:82:d6:17:4b:d0:84:91:8a:ee:08:e8:03:03:
a7:e5:f6:e1:05:66:c0:b7:52:af:a9:d3:eb:a3:f8:
e3:1e:c6:06:31:d9:b9:aa:fa:25:92:17:6a:7b:cb:
78:d6:b6:dd:e7:2f:7c:8a:b5:60:2d:24:92:8d:ee:
5a:62:1d:94:20:8d:54:e3:23:13:4f:8a:6c:21:10:
8b:5e:47:a7:2c:61:3f:19:9b:7c:ae:74:6b:53:d2:
f7:40:64:6a:e5:ca:7d:f3:95:df:06:b9:e4:dd:a1:
5c:d7:74:24:55:2c:8c:23:b7:64:88:3a:9f:bf:3d:
89:90:0e:97:d6:28:68:b4:43:04:db:52:16:66:28:
a4:7c:5e:c5:f3:64:c2:73:7b:b3:06:9d:86:cf:ce:
fc:72:0b:99:ce:22:6a:f2:c6:52:13:82:fb:d1:cb:
5e:df:38:66:10:91:b7:9b:d1:5d:bf:18:03:c1:49:
db:bd:e1:74:d8:be:b8:3d:0a:62:02:a8:ab:ba:0e:
27:49:57:70:78:0f:11:ae:99:80:8d:5d:fa:7d:e3:
84:d6:13:51:f2:2e:42:d4:14:16:47:4c:c8:ed:94:
b6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:91:90:43:67:4B:EE:17:D3:1F:F6:D6:49:FD:4D:FF:0B:E3:D3:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/564CCA6ECDD311EF8E01E573762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.131.0/24
Signature Algorithm: sha256WithRSAEncryption
84:12:c2:12:51:7e:be:ec:b7:f5:2a:f6:44:1b:00:99:63:fe:
9a:f6:77:af:6a:d1:87:63:8c:7d:20:6a:61:58:73:88:d4:99:
e1:53:d6:81:fb:cf:01:e0:f9:43:75:3e:fc:60:f1:88:5e:89:
9c:12:2c:32:33:6b:97:ba:81:fd:06:9f:62:9e:c3:ce:b2:1d:
2f:eb:fe:d6:c2:ba:b0:12:42:6f:9a:79:bb:fa:7f:87:b8:88:
18:2d:d3:db:82:95:d6:42:00:42:c3:57:75:3d:53:35:4b:e0:
43:bc:6c:06:1c:08:5d:dd:87:ee:9c:f6:47:cf:de:4a:98:2c:
15:cf:ef:3b:f6:48:b2:d3:b1:e4:96:f2:e3:b9:8c:1d:bb:b5:
8a:fb:ad:28:98:56:02:44:ab:4e:d5:8f:f6:05:dd:ec:7c:9d:
2d:9f:16:b5:3a:c5:5c:57:59:95:46:d7:96:c2:1b:c6:88:02:
85:16:7b:d2:74:e3:1d:ec:bd:78:78:bc:2d:ec:c2:86:b8:5f:
5f:b2:df:dd:ef:b5:97:c3:99:14:8b:31:e5:e0:0f:f7:b0:0a:
0f:f6:16:e3:d6:d2:fb:06:e0:3b:ab:16:94:bf:23:d5:02:10:
98:43:d4:3b:61:65:c6:08:17:e8:53:8e:fa:b2:50:a5:79:8f:
32:23:6c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:08:06 2025 by rpki-client