Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFCB5A04C60511EFB30EA34A762E951A.roa
File: AFCB5A04C60511EFB30EA34A762E951A.roa (raw, json)
Hash identifier: eHW8YzabBhcrmN4jm/HlA7vBpMaPNNi3Ez9jAA3HKo4=
Subject key identifier: 7D:A9:1B:F3:E1:25:D0:C6:C8:26:CA:E5:BC:18:20:79:02:F0:1A:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E86
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFCB5A04C60511EFB30EA34A762E951A.roa
Signing time: Sun 29 Dec 2024 16:55:20 +0000
ROA not before: Sun 29 Dec 2024 16:55:16 +0000
ROA not after: Sun 12 Dec 2027 16:55:16 +0000
asID: 17561
IP address blocks: 154.217.38.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77446 (0x12e86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 16:55:16 2024 GMT
Not After : Dec 12 16:55:16 2027 GMT
Subject: CN=67717ef8-5a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:84:b2:f9:1b:a7:df:c5:a9:13:5c:04:45:49:
e0:9b:c2:f9:06:46:67:55:8c:9c:d7:55:45:ed:ef:
ba:f0:54:dd:87:bf:23:85:d6:e5:c7:5c:78:1d:c9:
74:b6:dd:82:51:b0:21:9a:55:13:62:79:19:db:cb:
89:34:f6:09:a2:00:08:8c:76:45:7b:a8:27:74:fe:
2a:de:b5:5b:73:56:8f:17:7e:18:d0:2a:33:98:84:
1a:89:3c:ed:94:c1:df:d0:9d:54:cf:6c:75:ef:29:
9a:97:53:ae:cb:39:ca:e6:33:b8:8d:fd:48:9f:8f:
e9:73:51:b8:17:e3:96:a7:ac:a2:c6:c3:c9:7d:9c:
3e:55:00:ba:e8:0c:c5:82:8c:e9:78:70:e5:42:51:
87:d6:6d:c6:2f:b9:ee:f5:6b:00:10:8a:23:20:c0:
8e:ec:ff:df:1b:ca:3b:4e:7e:bf:a0:a2:2f:f0:4c:
b7:87:fb:f6:79:ce:bf:c3:7f:e4:ad:91:78:8e:dd:
f0:51:bf:e4:4e:da:93:ce:78:53:7d:e3:3c:c1:23:
11:0f:0b:b0:ef:3b:20:9f:84:eb:5f:37:8c:b2:4c:
39:c5:67:11:9a:db:2a:9f:42:c0:a6:01:f4:2a:5a:
1b:1e:bb:b9:ce:59:5e:87:2f:6c:76:b2:c9:58:c7:
aa:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:A9:1B:F3:E1:25:D0:C6:C8:26:CA:E5:BC:18:20:79:02:F0:1A:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/AFCB5A04C60511EFB30EA34A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.38.0/24
Signature Algorithm: sha256WithRSAEncryption
81:8a:d6:a0:0b:15:7c:8d:e5:8c:6a:cd:46:36:62:06:0a:65:
68:18:4e:e2:07:8b:e9:1a:8e:9b:ee:0c:98:13:b1:6e:6b:fc:
72:55:3d:af:98:14:31:26:ba:37:38:98:48:7e:43:45:78:0c:
88:87:6b:de:dc:33:99:d8:be:e1:07:ed:55:26:12:78:de:66:
90:e8:5d:72:6a:32:43:14:94:bc:03:50:82:d1:45:c8:68:f8:
f9:a1:33:cd:cb:9f:47:5c:4b:f4:35:95:1a:87:89:a5:de:b9:
12:cc:d1:bf:d6:bc:5a:fb:1a:9c:3b:6f:a7:30:6a:ce:ee:2f:
5d:2e:ba:4b:dd:82:7a:ad:8e:e6:e9:8e:9d:a9:6f:27:a8:9f:
50:e8:1b:5b:71:04:81:f1:f9:c6:29:7f:c6:74:73:fb:b4:2f:
1c:f3:38:9f:60:06:b5:cf:a8:b3:c9:7c:44:45:2e:10:eb:4f:
36:89:75:c8:fe:2d:ff:a6:1e:81:e2:64:7d:b6:82:4b:0b:8e:
7c:11:de:a4:0d:74:81:f9:27:f5:bc:62:8b:7a:a7:02:24:ba:
3d:6f:18:03:90:45:76:b2:42:94:1f:f2:90:97:97:83:21:68:
b5:37:87:37:15:18:a2:3a:12:23:00:2e:c7:ab:6e:bf:ea:f4:
a5:da:8c:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:53:59 2025 by rpki-client