Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64DA73C6F82911EFBA398C8E762E951A.roa
File: 64DA73C6F82911EFBA398C8E762E951A.roa (raw, json)
Hash identifier: NCqAftN1dp7vW2w1ps440Cz+XKv9sz7tupbZN+v75tk=
Subject key identifier: A5:AE:B4:52:85:77:66:9B:2F:81:27:5A:58:EC:B6:42:F2:44:2B:CB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017088
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64DA73C6F82911EFBA398C8E762E951A.roa
Signing time: Mon 03 Mar 2025 12:16:54 +0000
ROA not before: Mon 03 Mar 2025 12:16:50 +0000
ROA not after: Wed 30 Apr 2025 12:16:50 +0000
asID: 138915
IP address blocks: 154.93.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94344 (0x17088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 12:16:50 2025 GMT
Not After : Apr 30 12:16:50 2025 GMT
Subject: CN=67c59db6-fd3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:f2:72:b7:9a:3e:01:11:3d:4c:27:f3:b6:
a3:9c:e4:99:74:14:02:ea:05:5f:a8:3a:d8:c9:21:
1f:66:2e:fc:bf:f6:33:02:b9:6b:37:80:2a:6f:6f:
fd:ef:f0:84:fc:9e:f7:26:cf:8a:03:3f:bf:84:95:
26:44:ca:93:02:b8:84:9d:4a:6b:b6:60:6b:3c:82:
a1:4a:c9:c3:9d:01:f9:09:e4:24:dc:fc:07:54:4c:
2c:0f:e0:8d:d6:55:b6:59:3e:7a:85:82:5a:1b:61:
e0:ad:64:4f:5d:9f:d5:e5:7e:b5:9b:09:56:ee:36:
00:83:f2:c0:7b:8e:b4:88:84:17:d9:45:6b:8e:de:
68:bd:63:69:c6:26:1a:9e:8c:a3:97:59:1d:10:3c:
e3:da:2d:c2:88:27:5c:84:a8:21:97:25:af:94:27:
79:20:aa:b3:15:20:d9:85:75:9d:9f:63:56:36:ba:
46:4c:02:e0:51:92:38:16:a5:01:0d:fe:f9:60:52:
98:d4:1d:f4:91:10:71:63:d4:fc:bd:d4:8b:b5:de:
04:c7:4a:68:0f:6f:7b:48:d2:53:8e:21:fa:c5:c0:
d4:4b:5f:02:0d:f7:02:8d:0a:2f:9d:2d:08:ea:7f:
67:40:1d:37:63:8f:b5:2c:a3:f1:9a:93:2a:d7:17:
89:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AE:B4:52:85:77:66:9B:2F:81:27:5A:58:EC:B6:42:F2:44:2B:CB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/64DA73C6F82911EFBA398C8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.72.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ce:60:b4:05:c5:97:37:34:8e:7d:00:df:23:34:2d:cd:ea:
0a:34:47:e9:d4:f3:61:b7:e7:bc:d0:e6:37:00:77:2b:18:b4:
87:70:1e:c6:b4:31:ea:21:12:69:a7:ad:43:83:c8:10:af:7f:
a7:29:02:b9:da:1b:f8:26:33:74:dc:04:09:19:e2:f8:26:7b:
d3:d0:c8:78:64:7c:25:c6:ef:f2:9d:99:ef:96:5f:5f:99:fa:
09:b9:75:0f:19:90:9b:ef:02:3d:cc:3c:a3:de:e1:6f:73:f4:
03:cc:67:df:2e:05:fd:da:51:28:3c:7d:43:3d:50:4f:1f:ab:
0e:37:1b:67:76:a1:f1:d9:b4:19:aa:dd:5d:c9:f8:04:30:a8:
18:ac:5b:9b:7b:47:93:f6:ea:a8:0a:a5:84:cd:37:65:4d:e0:
01:4b:fe:47:eb:e6:5c:f0:ce:c5:0b:c4:b3:51:02:c0:5f:a0:
7e:ad:53:24:e6:1a:ff:b9:7d:65:4f:13:f0:68:e2:bb:ff:07:
1b:80:de:a8:d8:bc:53:ad:05:fd:6e:c2:19:29:a1:93:8d:98:
3a:b8:27:bf:95:7d:67:f2:a1:70:04:0e:cf:53:9f:66:38:82:
25:fa:7b:0f:9d:e0:bc:12:ef:fb:5a:6c:bb:b7:75:25:c4:d5:
53:3a:78:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:51 2025 by rpki-client