Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7FFBD2AC25D11EF9DE21389762E951A.roa
File: A7FFBD2AC25D11EF9DE21389762E951A.roa (raw, json)
Hash identifier: adwf8rDSHJkvgHa/T/Q+E/0CYUdry5Y5VO7Rilht5ZY=
Subject key identifier: 54:3B:3A:6E:4C:F1:AD:19:03:64:EF:70:3E:EB:9D:14:C7:0C:21:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01238A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7FFBD2AC25D11EF9DE21389762E951A.roa
Signing time: Wed 25 Dec 2024 01:14:58 +0000
ROA not before: Wed 25 Dec 2024 01:14:54 +0000
ROA not after: Wed 10 Dec 2025 01:14:54 +0000
asID: 984
IP address blocks: 154.199.82.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74634 (0x1238a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 01:14:54 2024 GMT
Not After : Dec 10 01:14:54 2025 GMT
Subject: CN=676b5c92-857b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f9:47:ea:e6:27:3f:83:29:05:06:81:53:d5:
7b:6b:30:ad:69:69:08:76:c9:02:d2:d9:0f:e8:61:
4f:b9:d2:ea:d2:3f:af:e3:35:db:ef:20:20:28:ea:
53:52:46:7f:e6:75:84:78:93:a8:58:aa:48:e6:c6:
e0:19:48:c4:92:79:c0:1f:b9:5d:ff:f0:06:16:b5:
71:01:71:c9:83:07:6f:ec:fc:a0:c8:80:56:eb:fd:
46:05:06:9b:65:2f:46:0a:9a:63:fd:a5:7b:76:9f:
8b:33:ae:ca:ae:2e:76:bb:84:93:90:f7:f8:7e:c1:
6e:57:34:be:21:75:65:64:3b:8f:e4:2a:2f:8f:66:
b2:f4:80:87:ab:ae:e1:eb:e4:c6:9c:c5:77:b9:d4:
f6:7c:23:62:82:c1:05:9b:e7:37:3c:c8:0e:34:f2:
1f:8b:82:cc:60:5d:c8:4c:c8:21:07:1c:35:6a:d3:
fe:e4:4c:02:ea:9d:63:a9:26:ae:9f:a4:d6:64:ef:
29:b0:0e:56:a1:49:e4:cf:7a:db:76:57:30:d6:d1:
65:1e:fa:38:b5:6d:9f:ba:d2:e2:bd:df:9b:ec:77:
12:cf:00:97:88:ce:cc:f7:a3:99:35:75:73:42:95:
48:1e:14:56:f4:c8:97:19:20:d9:f1:56:6a:53:8e:
91:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:3B:3A:6E:4C:F1:AD:19:03:64:EF:70:3E:EB:9D:14:C7:0C:21:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A7FFBD2AC25D11EF9DE21389762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.82.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:4a:32:f4:35:d2:6a:14:ac:13:6d:12:2f:1e:32:8e:fc:77:
3a:db:cf:3d:72:09:af:ca:0b:aa:87:c4:7a:92:49:58:bd:b6:
48:41:5b:f4:b5:85:c7:87:ba:97:df:28:bc:ca:f5:03:70:a3:
4e:0c:d9:b6:21:b9:91:df:8c:b1:db:d1:b6:68:38:33:29:96:
2a:36:8d:f7:10:20:ea:c2:de:60:6c:8c:2f:5b:4f:19:28:2d:
f1:46:99:76:b2:03:6d:23:7a:89:73:54:24:f6:59:c2:c7:2a:
c1:65:d1:5b:8c:33:ce:96:b0:a4:eb:c5:0b:f9:47:c2:59:fe:
62:bf:08:ab:f8:ee:96:42:cb:08:db:73:2c:bc:98:ea:05:5e:
10:10:5c:8a:0c:fa:98:c1:80:c8:20:32:90:55:2c:ce:8e:8a:
ea:b0:ed:39:19:8c:21:45:c9:f3:91:39:39:52:96:c2:5b:47:
f4:53:fe:d9:e2:63:7a:cd:43:77:2f:b6:d8:e0:26:b4:e8:53:
c7:c5:d3:e8:2d:c8:9e:0a:45:95:45:4b:c3:37:a1:33:0f:b2:
28:62:dd:d4:50:ae:82:33:10:05:d3:80:0a:1a:b1:bd:da:11:
58:13:af:91:59:2b:7d:e8:8b:df:33:ec:87:08:6d:2c:20:6f:
5a:6f:c7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 21:02:11 2025 by rpki-client