Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65CC09D4F44111EFAAA50F50762E951A.roa
File: 65CC09D4F44111EFAAA50F50762E951A.roa (raw, json)
Hash identifier: RWKG7Cf97oMgsvFw6WAPFKuoiXpeZwEFnnpb/Q+v4M0=
Subject key identifier: 3A:7F:B1:CC:6B:6B:E0:E9:A2:09:E4:6E:3A:63:B3:2B:B3:D3:7D:FC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01636C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65CC09D4F44111EFAAA50F50762E951A.roa
Signing time: Wed 26 Feb 2025 12:58:39 +0000
ROA not before: Wed 26 Feb 2025 12:58:35 +0000
ROA not after: Sat 19 Feb 2028 12:58:35 +0000
asID: 17561
IP address blocks: 154.82.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90988 (0x1636c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 12:58:35 2025 GMT
Not After : Feb 19 12:58:35 2028 GMT
Subject: CN=67bf0fff-2848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ca:fe:b3:64:9b:1a:ba:98:07:92:4a:79:d8:
aa:68:65:81:2e:b4:44:b9:db:ed:e6:db:b9:2a:40:
f0:c7:43:35:32:fa:39:c7:77:91:1d:f1:ce:94:c5:
11:30:73:6a:73:93:1f:5e:c3:43:53:c2:19:69:f9:
c8:4e:6d:91:ae:fd:2e:60:c4:ce:24:ce:fd:8d:96:
d8:0a:fd:ba:5f:f1:37:1d:2b:52:63:78:7e:61:52:
32:b4:67:3e:aa:f4:a0:c1:d8:c1:d1:5a:2c:89:84:
12:f0:59:8b:93:d5:7d:70:cd:f7:3c:97:cd:a6:36:
b9:c7:7a:4e:ac:00:20:1e:1b:1a:ea:91:4a:34:66:
5a:d1:db:8e:9a:c2:29:5d:d9:f6:05:57:a3:f3:76:
a5:98:f8:08:3b:c4:f3:fe:23:29:1c:61:77:48:39:
3d:0b:24:5d:db:0f:20:7b:02:f5:c0:ff:c6:57:ce:
b7:7c:35:06:c5:66:a1:c5:db:c2:54:af:2b:76:ce:
a6:01:86:fe:7e:e1:a2:2e:c0:5d:5d:5c:37:d5:f5:
ea:ce:37:90:a8:36:f2:e4:42:df:38:17:d4:f5:5e:
aa:7e:d7:3e:6b:cf:9f:f3:3b:9b:af:df:ff:72:ab:
d1:c5:6e:d9:9d:a7:b6:e1:31:85:91:17:56:54:44:
2d:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:7F:B1:CC:6B:6B:E0:E9:A2:09:E4:6E:3A:63:B3:2B:B3:D3:7D:FC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/65CC09D4F44111EFAAA50F50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.82.150.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:13:07:ed:e9:98:f7:a4:d5:48:45:d0:79:92:bc:8b:0b:72:
80:86:4b:93:8d:45:c3:21:1d:7d:68:0d:80:a9:ae:71:b1:87:
8d:ea:c8:c1:2b:e9:3b:ec:11:51:89:80:f0:22:69:a5:a1:46:
64:60:4a:a7:ad:b9:73:e3:33:f8:1d:ba:f2:c4:64:db:fa:d9:
c4:d7:52:05:da:0e:30:45:90:e0:d9:0e:79:7e:25:97:88:93:
0f:18:e3:df:9a:ab:77:9d:e8:fc:91:9b:2f:7b:e4:4a:90:94:
a6:2a:c1:cd:73:de:ad:34:f5:1b:8e:05:18:7d:30:fd:9e:9f:
7c:d6:95:00:c9:cc:0b:40:12:f0:74:50:db:d0:c9:ea:10:f3:
1b:19:d9:6a:ec:95:f9:3f:df:7b:6d:ea:cf:2c:25:44:66:24:
e3:5b:7c:c2:80:53:40:a1:f0:d1:3c:79:1d:f9:20:a9:47:c5:
d9:12:07:85:1c:24:d8:9e:8e:27:fd:86:a5:34:30:f5:ae:94:
09:8c:2b:8a:1b:20:b4:05:dd:24:cc:04:d0:25:9a:2d:de:77:
22:d6:bd:b6:63:59:99:56:8c:08:7b:37:5e:97:ae:0e:f7:e0:
b1:a5:e2:c0:ae:8e:bb:3c:b1:df:58:99:c4:f1:25:64:2f:84:
47:b6:e5:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 10:34:34 2025 by rpki-client