Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64BB4942C41711EF9D799294762E951A.roa
File: 64BB4942C41711EF9D799294762E951A.roa (raw, json)
Hash identifier: FTaDhdSuaenpiXGE5PlGDh2mgz5rTgNbNTgRRXaOFIk=
Subject key identifier: EF:4E:B7:B0:59:DA:EC:52:A1:2E:23:E6:06:86:30:DD:D8:10:D8:12
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012969
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64BB4942C41711EF9D799294762E951A.roa
Signing time: Fri 27 Dec 2024 05:57:03 +0000
ROA not before: Fri 27 Dec 2024 05:56:59 +0000
ROA not after: Fri 12 Dec 2025 05:56:59 +0000
asID: 984
IP address blocks: 154.197.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76137 (0x12969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 05:56:59 2024 GMT
Not After : Dec 12 05:56:59 2025 GMT
Subject: CN=676e41ae-d07b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:3c:4c:e5:17:f1:0b:3f:e6:9a:cf:a7:3c:fc:
5f:0f:e0:fc:58:a1:80:2e:ff:2d:eb:0f:21:15:cc:
3b:f7:f5:cf:72:33:dc:7b:0a:9a:fa:11:e0:30:f5:
9f:fa:f7:51:2c:62:80:3b:6f:87:b7:65:66:03:2b:
08:b4:29:89:c1:fb:fc:8b:ee:53:25:2f:fe:2c:69:
62:2f:75:97:fc:ab:4f:b7:b4:e3:3f:63:31:0c:cf:
1c:79:29:ad:e8:87:7d:68:8c:a8:ed:38:01:c9:36:
6a:c7:02:fa:bc:a2:42:a7:f7:ee:12:27:3e:e5:df:
2e:4a:dc:35:5c:cf:a6:80:47:67:ad:4c:fe:71:0b:
c2:42:16:96:5b:bc:99:bc:09:2d:d7:80:19:93:23:
c8:55:c0:ec:24:37:24:fd:67:a7:01:11:b4:8c:94:
01:94:16:ff:80:f4:01:fe:b7:d3:22:ff:10:c7:77:
b0:36:7e:27:b6:2c:d8:52:a3:55:bc:56:69:d4:28:
6e:48:15:f8:fd:41:a3:d5:5f:08:b8:2c:7c:c7:ed:
93:46:a8:27:42:b4:f2:9b:63:f8:14:ee:a1:09:c4:
8b:60:e1:63:36:94:b0:91:97:61:c1:9c:a9:be:65:
ad:e8:f4:8e:15:06:ed:24:e3:46:fd:4e:dc:04:09:
e7:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:4E:B7:B0:59:DA:EC:52:A1:2E:23:E6:06:86:30:DD:D8:10:D8:12
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64BB4942C41711EF9D799294762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.97.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:91:62:57:d0:40:c9:d1:6b:53:ab:a7:d2:81:c4:1f:b9:fb:
d8:f3:df:fb:13:9e:d0:09:ce:07:dd:e8:e2:47:f1:5e:84:ae:
cb:7f:55:0b:32:e1:d9:b1:fb:15:67:53:a4:8b:84:91:cf:ee:
87:c1:05:63:d2:e1:6e:8f:b4:dd:06:80:4e:14:fc:76:cc:43:
02:d9:50:8d:1f:da:4e:c6:ee:ec:97:52:fa:7b:19:24:4d:73:
ff:14:a9:b6:25:4a:ce:d4:d0:47:03:ed:a8:75:ef:32:18:94:
d8:15:45:c1:b8:af:0f:9e:9f:7e:b0:7a:10:1a:dd:cb:98:c5:
f1:17:4e:c3:9a:6a:7a:de:ed:a8:b8:b1:9d:6f:09:47:2e:ea:
67:36:5e:f4:82:70:13:25:4c:25:82:5d:ff:b9:86:90:72:2e:
1c:47:25:d8:05:44:82:e6:7a:e2:c8:5a:7d:75:ce:50:c3:c2:
e7:99:15:97:42:38:e4:ec:8d:27:5d:4d:1b:ff:7e:e2:11:b2:
42:8e:d6:4d:54:13:1d:4b:a0:7d:ab:51:35:d7:44:bd:01:87:
0f:27:8d:99:e7:e0:f7:02:c9:bb:ff:ec:2f:75:d8:c1:c5:29:
7d:40:d5:c2:7d:d1:3f:95:77:32:b8:7d:a8:07:6d:e5:e4:08:
53:9e:e2:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:34 2025 by rpki-client