Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A14AD4AF06611EFA568D7AF762E951A.roa
File: 6A14AD4AF06611EFA568D7AF762E951A.roa (raw, json)
Hash identifier: 4mGo4xWQ6bEkKUjomfDcvNz1gI057ja38RLOAflJpIY=
Subject key identifier: 99:69:E4:4C:DE:92:56:F4:A3:D8:28:E0:75:23:13:1D:F7:02:54:44
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0159CE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A14AD4AF06611EFA568D7AF762E951A.roa
Signing time: Fri 21 Feb 2025 15:13:33 +0000
ROA not before: Fri 21 Feb 2025 15:13:29 +0000
ROA not after: Wed 01 Oct 2025 15:13:29 +0000
asID: 36671
IP address blocks: 154.210.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88526 (0x159ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 21 15:13:29 2025 GMT
Not After : Oct 1 15:13:29 2025 GMT
Subject: CN=67b8981d-2705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:c7:8e:90:3b:f8:ce:b8:02:49:f0:8c:bc:68:
52:2a:3a:e7:b0:87:89:28:aa:ca:c5:17:e5:23:99:
b4:ee:8b:03:3c:d6:e1:e0:6a:48:80:d9:4c:fc:d1:
01:31:8d:f4:d9:91:0a:be:aa:68:18:7e:c5:80:69:
e8:cc:5f:bb:48:0e:79:d6:29:e6:21:7b:a9:db:f9:
eb:ff:00:38:41:13:b2:f6:66:ea:bf:52:dd:fb:5f:
1a:d1:7d:01:b8:83:7e:27:90:08:bd:9f:f1:a9:95:
7d:7a:24:96:e4:a2:09:a7:1e:e1:3a:30:0d:d2:ff:
15:08:a4:20:0d:e1:ce:3c:23:27:7b:96:2c:0c:6c:
c3:8c:87:f6:28:34:30:1b:64:6b:3a:80:fc:d2:65:
d2:89:2a:4c:b6:d7:59:45:e4:c3:20:93:a7:57:60:
b6:af:6c:38:02:c9:d9:94:01:d7:6a:bb:a8:bb:e6:
f3:76:c2:02:51:86:3a:bc:e2:6d:14:92:01:bc:e1:
bb:77:ce:8a:ec:8d:e6:36:4b:ef:5d:a7:83:3c:c1:
3c:61:84:59:39:0a:d5:b7:60:f0:95:31:e3:0a:68:
12:7e:f5:98:9e:bc:7b:07:c3:46:06:97:59:d5:c9:
ce:c2:2a:3e:2d:68:7d:74:cb:d5:e5:e9:52:60:f6:
2a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:69:E4:4C:DE:92:56:F4:A3:D8:28:E0:75:23:13:1D:F7:02:54:44
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6A14AD4AF06611EFA568D7AF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.0.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:6d:9d:91:0b:92:d5:1f:12:2e:ea:93:9e:8f:5f:fd:f4:63:
c5:76:54:9b:74:56:00:72:ca:0a:6d:bf:2b:c2:ae:15:15:46:
ef:c4:f6:ae:0c:b3:28:a7:0e:56:89:ed:e7:0b:ed:ef:44:d6:
2f:56:60:ca:1b:5c:1e:27:e7:bd:3f:70:da:a3:2b:a1:13:92:
e7:31:78:ed:f8:c1:22:0e:6e:11:60:d8:aa:d9:d1:2f:28:86:
39:7c:8a:3b:1e:4c:8b:1e:4f:0b:61:9c:b8:45:80:9f:13:02:
29:7f:fa:c4:2e:46:ae:2d:01:72:71:f9:ce:fa:f1:82:a5:30:
f4:c7:ca:07:70:0e:50:77:4e:d6:65:44:cb:6b:4f:a1:88:f5:
61:21:e9:92:57:45:b9:a9:19:0c:0f:10:75:87:c8:01:57:81:
7e:25:7c:8f:00:11:10:3b:5f:05:1d:e1:23:0d:71:4d:44:d4:
4b:5a:b8:cf:81:fb:8e:3b:d6:53:e9:fc:63:04:a1:92:c3:d2:
b9:c1:f0:7e:a2:e4:98:1d:84:e5:62:7f:c9:20:fe:9b:59:bd:
85:08:bc:21:3f:6c:26:1d:cf:c8:e9:c2:a6:d4:3e:0f:a5:a3:
20:ae:ee:76:f8:d4:9f:67:ac:7c:5e:38:7c:7e:71:d9:69:84:
70:76:13:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:53:05 2025 by rpki-client