Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DBE0150F2D111EF9CC76C77762E951A.roa
File: 5DBE0150F2D111EF9CC76C77762E951A.roa (raw, json)
Hash identifier: RqFkxWRj0BnRxiBIZaT7+cmPVxST8JG+klDbNY9wV4g=
Subject key identifier: 77:E1:B1:DF:3A:06:06:F2:6F:86:1D:E4:F1:0B:FE:84:1D:4D:E5:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015C90
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DBE0150F2D111EF9CC76C77762E951A.roa
Signing time: Mon 24 Feb 2025 17:04:11 +0000
ROA not before: Mon 24 Feb 2025 17:04:07 +0000
ROA not after: Thu 24 Apr 2025 17:04:07 +0000
asID: 52263
IP address blocks: 154.194.69.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89232 (0x15c90)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 24 17:04:07 2025 GMT
Not After : Apr 24 17:04:07 2025 GMT
Subject: CN=67bca68b-64b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d2:87:41:b6:9b:95:db:39:c5:45:d6:4a:31:
59:90:47:9f:ca:5f:2a:11:7b:42:b4:0e:96:78:bc:
62:53:50:4e:32:8a:4c:31:20:3b:70:c2:ec:79:eb:
cf:fd:e8:78:ea:c6:bf:8b:d8:b8:de:3c:57:d0:fc:
2a:04:da:f5:88:24:63:2f:9d:86:e2:db:ae:09:ad:
25:37:98:1b:19:30:7e:49:26:3b:19:08:b2:6a:dd:
a3:a0:b9:05:05:7b:93:48:85:f8:91:6a:9d:15:fd:
53:29:8a:71:31:f8:fa:1e:72:eb:4e:6c:2f:e3:e0:
ea:e6:fa:8b:de:1c:e7:34:1e:47:d6:17:61:9e:fc:
26:60:57:83:52:89:4c:24:8d:49:c0:0e:02:fa:04:
dc:c5:29:3f:a4:09:1c:a1:6e:8e:9b:9f:9f:07:1a:
7b:35:71:df:74:ea:77:a9:25:13:b0:41:52:91:d6:
ee:3e:74:3f:51:93:20:98:c9:01:da:8c:7b:89:35:
7c:18:e8:2b:fa:2b:e0:ba:24:48:44:37:df:6d:8a:
53:15:b5:04:39:d3:91:1d:39:11:04:fc:c3:44:cb:
41:79:07:80:26:ef:16:7b:88:b9:9c:ca:e0:36:9e:
e8:bc:9b:b5:d1:d6:b2:1f:97:92:53:30:3a:52:df:
eb:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E1:B1:DF:3A:06:06:F2:6F:86:1D:E4:F1:0B:FE:84:1D:4D:E5:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5DBE0150F2D111EF9CC76C77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.69.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:bc:19:41:7c:94:b6:de:95:6e:f3:e4:b9:70:be:ae:0a:c4:
d2:aa:04:7b:57:3b:35:e0:36:b2:1c:14:8b:45:c1:ab:d6:2a:
e8:8a:cd:a9:40:02:c8:88:52:ed:24:09:d9:41:ef:4a:0a:29:
93:b8:95:e1:6f:32:6f:2d:fc:fe:80:86:a1:4f:7d:6b:2d:06:
e3:34:ec:ab:82:ca:e4:42:20:26:b7:8d:0e:96:56:bd:74:12:
0a:4a:b8:ca:a4:c0:16:36:bb:a7:ae:f4:4b:52:46:fc:5f:c6:
93:12:16:5c:96:38:98:a5:c7:a4:c3:d6:62:a9:72:21:02:dd:
21:91:fd:9d:0d:ea:92:ed:3a:73:11:b8:d0:5f:b8:4f:09:23:
82:67:4d:42:1a:2f:95:01:bf:06:7b:b7:a6:6e:72:ea:10:a7:
94:b8:28:08:a6:fb:8c:e3:b6:6f:13:6c:49:d0:b8:64:2f:13:
01:81:b7:1c:93:d8:8b:43:45:d0:10:54:b3:e3:46:08:43:8c:
f1:a8:b7:d7:4d:be:5d:6b:19:31:aa:31:65:4e:f7:47:54:cd:
38:59:61:ef:22:3d:76:78:5c:dd:14:be:2e:d7:ce:20:95:ca:
92:60:e2:60:e7:39:8e:5c:f4:f4:68:a0:ff:cf:56:55:0b:cb:
3f:2c:ff:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:21:53 2025 by rpki-client