Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B13436B2CDE011EF8A746848762E951A.roa
File: B13436B2CDE011EF8A746848762E951A.roa (raw, json)
Hash identifier: gvjjv65s1gqCU3puwfa4GhxaVApbzuBRY5aUWkyKnSY=
Subject key identifier: 85:D0:33:C8:99:31:4C:10:86:E0:B3:00:85:24:1F:D1:9B:59:5D:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0137BD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B13436B2CDE011EF8A746848762E951A.roa
Signing time: Wed 08 Jan 2025 16:50:40 +0000
ROA not before: Wed 08 Jan 2025 16:50:36 +0000
ROA not after: Sat 03 Jan 2026 16:50:36 +0000
asID: 984
IP address blocks: 154.89.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79805 (0x137bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 16:50:36 2025 GMT
Not After : Jan 3 16:50:36 2026 GMT
Subject: CN=677eace0-b6b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:0f:c3:f4:0e:08:74:bb:e9:a5:2a:ca:a4:08:
96:56:fc:12:d7:bc:32:ce:8b:5c:e0:9c:35:46:d1:
ae:bd:b7:ae:6b:16:f0:ab:d8:51:d3:12:9d:6f:32:
eb:17:c6:b2:04:26:b6:de:4c:ad:8d:ba:08:61:2f:
bb:7e:30:7f:c0:71:95:a7:1e:02:01:ab:15:7b:73:
0b:88:ea:b3:72:c0:42:05:bb:a8:b5:59:8d:8c:d6:
f4:a0:0b:38:c4:ef:9e:c7:34:a4:c0:b6:03:c5:7c:
90:4b:3f:2f:cd:b7:09:ec:e1:40:96:24:e4:e2:9d:
cc:ab:09:36:21:73:23:ea:eb:22:2d:a9:6d:02:ad:
1c:57:fc:0c:f4:ce:a2:bb:62:f5:6a:4e:a2:d7:95:
81:c3:e7:9a:17:95:29:7a:49:52:f7:1b:0e:90:a9:
3f:41:cc:6e:de:98:b9:c8:69:2d:3a:53:c1:af:02:
07:6a:2b:95:a5:78:5e:59:57:48:7f:30:5a:41:c5:
47:56:4d:31:4a:b8:1a:79:51:f8:d0:62:04:5b:84:
4d:a0:6d:20:4b:f8:ac:63:dc:5e:2d:3e:aa:f7:83:
2c:6d:74:76:df:f8:c6:d0:5a:aa:56:07:a9:49:31:
09:29:a7:8a:dc:9e:2b:f3:35:fa:e6:3f:15:fa:88:
cc:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D0:33:C8:99:31:4C:10:86:E0:B3:00:85:24:1F:D1:9B:59:5D:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B13436B2CDE011EF8A746848762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.173.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:2e:0b:4b:4f:25:0c:68:ba:e8:42:6c:66:bb:51:0f:b8:72:
32:e1:01:77:cf:e8:3b:72:0c:1a:54:17:50:25:54:8f:d7:45:
9a:41:df:d6:4a:63:19:af:cc:94:1e:f0:5b:0a:ec:6b:e8:5f:
4f:d9:57:53:12:ac:12:72:f4:25:3e:e2:11:a0:59:33:3c:1c:
d6:5a:3b:62:40:de:a2:ee:03:a1:7f:11:44:e7:62:5f:62:aa:
96:76:c6:84:86:8b:bb:cb:f6:81:b9:cf:b5:06:9f:09:fd:f7:
77:c6:86:c2:77:d3:d9:4c:31:c4:5e:92:60:89:93:a0:66:57:
c7:09:a9:73:55:f1:09:c1:d5:5b:a4:07:77:32:a1:77:f6:e6:
97:89:dc:90:74:5c:db:d3:2e:02:86:cf:d5:5d:2d:b8:ae:eb:
d5:34:fe:bb:7f:c4:ba:cb:08:34:b1:79:fb:30:8f:91:1f:6e:
08:49:02:5d:19:0f:b5:98:75:1b:72:7d:bb:e2:b8:bf:2c:4b:
8c:3e:d2:32:3b:13:ae:12:17:14:62:6b:94:1a:f4:15:6a:96:
51:d6:43:fc:8b:fc:f6:69:81:37:65:68:2e:b7:2d:7e:76:32:
d9:3e:83:b8:82:1f:b1:fb:a3:65:bf:85:68:e8:ba:7c:47:58:
f2:4b:2a:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:53 2025 by rpki-client