Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6E20A000CDDA11EF840B19A0762E951A.roa
File: 6E20A000CDDA11EF840B19A0762E951A.roa (raw, json)
Hash identifier: a7WD2y0oFhzfh19MDakSRxoX6KklW22Rm3poZo/kKig=
Subject key identifier: F0:BA:24:9E:55:E8:67:C9:E4:0D:44:2C:A6:BA:E1:F1:7E:79:9D:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01378D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6E20A000CDDA11EF840B19A0762E951A.roa
Signing time: Wed 08 Jan 2025 16:05:51 +0000
ROA not before: Wed 08 Jan 2025 16:05:47 +0000
ROA not after: Sat 03 Jan 2026 16:05:47 +0000
asID: 984
IP address blocks: 154.89.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79757 (0x1378d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 16:05:47 2025 GMT
Not After : Jan 3 16:05:47 2026 GMT
Subject: CN=677ea25e-2bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:eb:d6:4f:e3:75:a1:e4:90:91:2e:6d:99:e0:
e4:d9:79:56:11:95:bf:22:d3:7d:df:6f:c6:c0:11:
23:83:5a:d0:1e:3a:54:79:e4:34:7d:48:d2:d4:be:
b5:d4:bc:a6:1a:25:05:d3:92:e8:a8:61:39:d4:ab:
a8:b7:da:6c:35:c3:d7:27:f1:f6:08:98:38:79:e4:
77:12:fc:95:c5:89:cc:12:48:52:87:b8:a5:4d:2b:
46:2e:7f:a7:6b:e7:d0:0f:ba:30:b6:66:56:4d:69:
3f:78:d7:7e:ff:da:dc:c1:2d:56:ee:0e:ac:06:f7:
d7:98:cd:11:98:a0:40:e4:e7:80:82:61:1e:02:2f:
ad:4a:29:43:47:3e:62:e2:61:a6:bb:64:f9:a5:94:
2f:b0:54:fb:6c:c8:9e:50:de:ba:6d:b6:1d:71:99:
0a:41:d2:39:75:d8:24:b4:79:63:fb:0f:47:23:94:
b3:68:4c:06:2a:a7:f4:c6:0e:d1:7d:41:cd:0e:a7:
3d:98:60:ce:01:11:de:ef:11:b6:43:e9:2d:4b:26:
8a:2d:77:04:ee:4c:25:f0:6b:aa:9f:71:d1:8a:eb:
aa:25:54:ad:2e:57:25:97:5d:bb:d9:40:99:22:68:
08:f8:38:bd:9e:8d:04:4c:fa:76:d0:70:73:be:a4:
4b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:BA:24:9E:55:E8:67:C9:E4:0D:44:2C:A6:BA:E1:F1:7E:79:9D:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6E20A000CDDA11EF840B19A0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.149.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ad:b0:64:98:fc:0d:68:13:af:56:66:21:ec:1f:99:3e:d9:
2a:ac:07:1d:47:34:3f:90:6a:e8:60:23:a7:60:83:29:ff:fd:
08:26:9f:15:4b:d9:00:bb:d3:dc:6a:a8:ef:42:c5:24:63:d7:
7f:69:03:ca:56:af:ba:d0:2d:23:79:3a:d4:f9:05:64:7a:76:
9f:2c:07:c5:10:74:3a:41:e0:12:3f:71:c9:23:8d:04:d7:cf:
85:79:da:f8:17:a2:9f:f6:98:3a:81:26:2c:e9:ff:a6:64:79:
73:18:a4:10:a2:69:7d:cc:5f:bd:d2:e5:bb:b1:d9:e7:35:22:
78:01:e1:91:dd:eb:c2:19:bb:bc:ca:0d:a0:c3:8d:67:3c:1a:
72:11:36:d9:d3:76:21:39:90:05:fc:98:90:d5:05:a8:39:74:
8e:d0:7e:c3:7b:44:79:3b:33:7f:11:51:69:e2:af:97:04:c1:
74:ea:2b:b9:78:66:b9:ee:1c:03:10:4a:de:4b:13:b5:61:df:
c6:89:bf:9b:52:95:97:78:50:ab:53:83:16:38:43:91:e9:3b:
7b:1b:b6:ce:78:fd:21:ad:fe:ba:b9:00:4b:4e:f6:d3:23:90:
8e:c4:2f:0b:9a:b3:91:78:87:a4:cb:60:41:44:9f:7e:43:62:
f9:23:91:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:02 2025 by rpki-client