Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77D83830C0E011EF94A59D99762E951A.roa
File: 77D83830C0E011EF94A59D99762E951A.roa (raw, json)
Hash identifier: UtUC5m2Np5NN6a5rI+ExtFG/M7PcbdPM5SumPXpdAfs=
Subject key identifier: BC:DF:9A:59:7C:F0:1D:49:3E:DE:5F:AD:50:73:8C:AD:B2:5F:6D:10
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011EE4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77D83830C0E011EF94A59D99762E951A.roa
Signing time: Mon 23 Dec 2024 03:46:19 +0000
ROA not before: Mon 23 Dec 2024 03:46:15 +0000
ROA not after: Wed 10 Dec 2025 03:46:15 +0000
asID: 984
IP address blocks: 154.89.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73444 (0x11ee4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 03:46:15 2024 GMT
Not After : Dec 10 03:46:15 2025 GMT
Subject: CN=6768dd0b-8935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c8:f2:ba:b7:6f:ff:f1:eb:6c:2f:ec:cd:bb:
13:4b:7d:e7:fd:42:fa:4b:32:f1:e2:57:ac:06:41:
8a:32:19:a0:4a:8a:88:b1:b7:9f:a3:17:c3:e5:92:
cf:14:d1:48:fa:22:01:1c:b8:5b:6b:f7:ff:fc:01:
3b:33:00:26:56:90:16:ff:b1:89:36:e9:a6:87:3c:
7b:1f:e3:bf:28:26:76:42:4f:6d:10:88:46:08:ea:
1f:1a:8b:31:32:29:d9:39:aa:11:1d:13:e9:4a:a7:
73:c1:a6:5e:ef:b2:29:01:72:4e:89:6b:00:92:62:
94:62:5b:50:7b:20:fd:0f:80:2f:96:58:22:d0:37:
30:55:ff:52:8a:e7:ac:a8:f6:59:dc:79:35:c0:cd:
f4:21:5d:8f:21:79:eb:24:f7:00:1a:bf:cb:43:d0:
e2:39:2d:25:07:ea:4c:13:db:a2:b3:7f:1a:c3:46:
5f:5d:c7:f5:d4:02:5b:7d:df:48:9f:f5:c8:0d:65:
07:e0:4b:a6:66:5d:ba:0a:53:23:cd:dd:c1:e0:d7:
27:1c:8d:35:0a:b6:78:a3:ef:8c:04:0d:7b:8a:68:
e1:07:23:53:00:99:36:31:0e:7d:a9:47:54:df:b6:
24:91:da:99:c4:e4:19:45:a6:4a:8e:c0:87:90:ad:
a0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DF:9A:59:7C:F0:1D:49:3E:DE:5F:AD:50:73:8C:AD:B2:5F:6D:10
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/77D83830C0E011EF94A59D99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.208.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:46:a9:6b:6b:bd:96:38:df:86:c2:04:5f:47:37:7b:6b:25:
85:d0:d5:ea:5c:b7:2c:4e:3b:c5:b4:0f:9e:fa:72:bf:8d:87:
bb:a2:1e:6d:10:94:5b:b4:d4:af:bd:1c:5a:64:83:3c:fa:9f:
ca:b8:b7:40:55:bd:81:f8:65:79:df:20:17:e3:49:5b:69:23:
17:4d:3c:f1:df:3f:7b:24:36:07:02:c3:73:75:7a:b8:aa:e0:
ce:cb:d7:64:57:42:a1:28:11:25:fd:cc:6d:fc:0a:98:36:d1:
8e:12:0a:af:46:94:dc:27:40:65:ca:dd:a5:34:b1:c1:ee:34:
8a:8b:22:17:c9:55:e5:48:fa:15:f0:4b:61:40:db:9a:f0:0c:
f7:0f:bb:ed:b7:87:85:28:bf:2e:81:ab:ce:91:29:27:6f:a3:
f4:f5:6e:c1:33:3b:29:61:f1:60:e4:3b:5a:df:d7:ab:b8:5c:
4a:70:3d:6c:41:71:58:8f:95:5a:6e:10:cb:4a:93:ca:c6:02:
54:cd:25:83:1c:2e:16:e8:c7:e2:0f:e0:b6:25:66:09:9e:c4:
cf:93:f8:4e:4e:02:74:48:f5:1e:ee:8e:a7:75:c3:78:08:08:
2f:72:15:53:da:89:2f:40:f2:7e:66:de:4d:8e:c6:97:e9:24:
91:ce:f2:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:57:49 2025 by rpki-client