Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9425726AC26F11EF9739FF8C762E951A.roa
File: 9425726AC26F11EF9739FF8C762E951A.roa (raw, json)
Hash identifier: z8BgJq0p/iH/+54CODoz65cfkk7l71Kj/8n1dUYlrXE=
Subject key identifier: 6A:7D:2D:DA:3E:B5:8A:6B:95:A1:E0:E1:95:82:66:F0:C9:D2:14:8D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012454
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9425726AC26F11EF9739FF8C762E951A.roa
Signing time: Wed 25 Dec 2024 03:23:15 +0000
ROA not before: Wed 25 Dec 2024 03:23:12 +0000
ROA not after: Wed 10 Dec 2025 03:23:12 +0000
asID: 984
IP address blocks: 154.211.193.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74836 (0x12454)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 03:23:12 2024 GMT
Not After : Dec 10 03:23:12 2025 GMT
Subject: CN=676b7aa3-282a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8a:81:12:40:7f:9f:a7:e4:03:7e:b5:e5:6f:
bf:3c:9b:4c:87:00:2c:2d:7a:22:27:a1:10:17:90:
60:75:5d:2c:53:a6:d2:61:ec:f6:12:5a:4c:57:8a:
3b:75:b7:da:c6:21:90:f1:9b:5e:ff:11:32:1a:29:
d8:03:4a:9f:14:90:61:b5:76:7c:cb:cd:dc:81:66:
38:14:75:80:37:99:53:42:ad:44:84:f6:c1:6b:f1:
aa:5e:b6:fa:39:59:03:fa:4d:a9:23:fd:98:2e:c5:
55:d3:16:94:10:fc:f6:63:8f:4b:ab:0d:b3:b5:f2:
b1:a0:1d:a9:14:a6:46:07:ea:c4:97:82:d9:5c:fd:
07:60:5d:4c:0b:1c:23:10:29:b3:b6:00:ad:23:bc:
7e:22:a0:2c:87:d2:1e:ed:ee:2e:ce:e9:04:39:65:
ca:9d:f0:34:10:d6:cb:63:db:fb:7f:be:7b:2d:4a:
f6:06:ed:bc:95:56:25:12:60:27:1c:4d:c8:ad:12:
da:04:8b:52:30:d9:64:f2:b4:f9:e2:d8:50:a6:ae:
d6:e0:0d:bf:e8:81:2c:99:a9:45:3f:f2:21:2e:d1:
1a:d4:02:f7:cb:e8:3a:18:15:d2:d0:00:e8:c3:89:
cb:b7:f0:8c:66:c4:48:27:a3:ff:ff:54:c6:66:7c:
3e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7D:2D:DA:3E:B5:8A:6B:95:A1:E0:E1:95:82:66:F0:C9:D2:14:8D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9425726AC26F11EF9739FF8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.193.0/24
Signature Algorithm: sha256WithRSAEncryption
71:92:7b:cf:af:b8:4c:4a:04:dd:07:2a:e0:06:aa:e6:8a:32:
94:ee:8b:b0:ad:e7:a6:3d:7f:98:9d:04:33:61:12:96:8e:56:
71:0b:10:6d:dd:94:8f:7a:38:fa:79:56:81:0d:7d:b5:bb:8a:
ba:0f:9b:4d:7f:0d:38:45:2d:b0:45:43:03:fa:89:ea:b3:27:
1f:c6:b5:3b:06:8a:0c:dc:7b:ac:86:a4:d3:b5:4a:00:da:cc:
ae:db:b5:bb:cc:87:dd:b4:f9:6d:11:84:8f:25:50:db:7b:8d:
10:00:32:ef:0d:c3:cd:b7:56:70:c8:f1:86:1a:bc:e2:d6:a2:
eb:27:74:5d:5d:e9:9b:ec:d8:b1:4c:2c:1e:cb:50:6b:91:1d:
98:fd:d7:3a:6e:35:ca:e3:84:c3:dd:68:e0:b4:6b:b2:1d:74:
ee:c4:e4:8c:93:e8:77:5a:1a:0d:59:19:49:4f:2f:a6:51:6d:
e3:b5:1c:ee:d0:65:46:37:ce:1b:df:7a:fb:4a:8d:c5:9f:80:
c2:3d:8b:3f:f6:22:27:b8:05:2d:c2:b4:c9:42:7e:eb:fa:d5:
55:88:2c:b0:a9:66:05:34:e2:c1:ef:3a:34:d4:b2:d4:ad:60:
12:46:8c:12:af:bf:b5:a1:c2:33:15:78:2a:e3:ab:fd:f4:1c:
54:49:74:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:11 2025 by rpki-client