Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61CD77BEC91C11EFB5C33070762E951A.roa
File: 61CD77BEC91C11EFB5C33070762E951A.roa (raw, json)
Hash identifier: mm4rGl6GqZCgjeYV5hCXXXu2RtnVTB1ywau6v+342UI=
Subject key identifier: AD:0B:50:52:67:30:0F:1D:7F:42:D0:34:A9:82:32:77:22:14:C3:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013305
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61CD77BEC91C11EFB5C33070762E951A.roa
Signing time: Thu 02 Jan 2025 15:15:21 +0000
ROA not before: Thu 02 Jan 2025 15:15:17 +0000
ROA not after: Sat 13 Dec 2025 15:15:17 +0000
asID: 984
IP address blocks: 154.222.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78597 (0x13305)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 15:15:17 2025 GMT
Not After : Dec 13 15:15:17 2025 GMT
Subject: CN=6776ad89-794d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:22:7a:bb:60:ff:d3:76:f9:72:a7:84:a3:78:
db:c8:2b:91:cb:f1:01:10:4b:aa:a9:13:89:b7:fb:
c6:66:2b:d8:0d:b4:26:05:fd:64:34:8b:63:3d:47:
22:08:7a:8d:cb:b6:6c:52:bc:fb:20:4f:3c:b6:40:
c7:e1:51:0a:8b:5e:d5:dc:1c:a5:52:4a:ce:a8:90:
3c:4c:bf:c8:1a:cd:0d:63:ec:ef:fd:78:e6:be:7d:
44:d9:76:cb:a7:6f:65:2c:93:68:e5:06:17:59:05:
35:e6:96:82:5f:8c:2c:e9:3c:06:76:c2:b9:48:22:
62:cc:1d:0c:cf:dc:cd:49:78:e5:23:40:f5:da:0e:
27:ec:10:5f:12:25:83:25:af:b9:d8:83:1c:30:9f:
b2:e1:02:75:1f:48:84:ff:b0:2a:9e:98:61:35:ed:
2d:10:45:fb:17:65:8f:04:16:a8:8a:8c:e6:a2:3c:
9f:1c:55:83:09:60:26:ee:c7:ad:ac:6a:20:78:2a:
7a:51:62:72:49:36:4d:a5:26:bb:c2:1c:3f:c6:47:
15:96:71:f7:bf:17:ee:20:5f:af:bd:6d:a7:75:58:
66:9c:7b:b0:ab:02:08:ae:da:ef:16:64:3f:18:f0:
66:ec:07:b2:98:4e:f0:2f:8f:c1:a6:a9:d6:fb:81:
c6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:0B:50:52:67:30:0F:1D:7F:42:D0:34:A9:82:32:77:22:14:C3:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61CD77BEC91C11EFB5C33070762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.71.0/24
Signature Algorithm: sha256WithRSAEncryption
13:1b:e9:17:91:74:6c:76:32:bc:0c:b8:17:6d:ce:fe:9d:7c:
80:a8:c6:bf:c6:6d:96:d3:80:f7:5c:8a:90:e4:4b:09:18:8e:
8b:4a:e0:32:41:d5:c1:12:94:13:4a:14:22:2e:af:7f:f6:ce:
ea:0f:6e:56:96:3b:8e:ec:b2:d5:ed:3f:5f:6c:18:3c:26:64:
86:9a:c4:ff:21:1c:a0:bf:c5:3b:1a:9c:3d:20:af:a2:5c:61:
cb:df:aa:78:e1:63:e8:3b:eb:b6:28:46:0b:25:16:e1:44:ff:
dc:e3:af:f6:a6:47:50:d9:5e:e5:45:25:df:f9:b7:4d:1a:25:
55:e8:44:dd:6a:9f:bc:68:aa:eb:fc:0f:2c:9b:eb:d0:d6:90:
83:b7:ac:21:1f:88:e6:e6:65:ff:35:d2:c4:61:11:50:d3:83:
b3:fc:72:ef:c2:8c:84:9d:71:f5:8a:ed:b4:5c:26:91:44:f1:
ad:07:81:2e:7e:4d:c6:53:ba:15:41:54:73:36:d4:77:f1:11:
8f:b5:41:81:84:9c:af:d4:8f:ba:28:c5:9b:8d:b0:3b:97:9d:
dd:8d:64:0e:a4:06:30:cc:3e:41:6e:30:98:3e:4c:89:1c:22:
04:ec:30:fa:ce:fa:5d:47:69:17:d0:3e:25:6b:78:1c:0c:e2:
7e:80:8b:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:48:12 2025 by rpki-client