Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B473AC22D8D011EF8EB78AB8762E951A.roa
File: B473AC22D8D011EF8EB78AB8762E951A.roa (raw, json)
Hash identifier: xnKJ6KFWGvvrHJBoYen5drkaRSJqHEaZNsf0+qj30QE=
Subject key identifier: 37:0A:52:4A:F8:9B:63:ED:63:64:19:CE:BD:54:83:98:6B:32:53:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013FB6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B473AC22D8D011EF8EB78AB8762E951A.roa
Signing time: Wed 22 Jan 2025 14:53:56 +0000
ROA not before: Wed 22 Jan 2025 14:53:53 +0000
ROA not after: Tue 01 Apr 2025 14:53:53 +0000
asID: 138915
IP address blocks: 154.93.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81846 (0x13fb6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 22 14:53:53 2025 GMT
Not After : Apr 1 14:53:53 2025 GMT
Subject: CN=67910684-1781
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:98:32:d5:be:fb:e6:65:cc:08:13:13:4e:5a:
23:48:4e:29:3d:3f:a4:c4:f1:27:2d:5c:dc:a4:ba:
39:be:d0:eb:d5:1b:df:1a:33:46:99:44:93:79:83:
b3:33:bd:59:7f:86:ac:0e:63:a2:dc:c9:22:3f:13:
68:c6:58:cc:9b:50:be:7f:00:15:e3:c2:e2:78:be:
6c:94:51:42:98:5b:c2:1e:5f:49:64:6d:23:ab:86:
a7:5e:42:9b:95:15:8c:b4:91:bb:12:5f:45:35:3e:
40:51:43:ec:6b:19:71:bc:fd:dc:e3:1c:6f:2b:9e:
96:af:a8:ee:a6:68:64:8b:2d:67:45:d5:8e:45:39:
cc:25:4b:3e:d8:9c:36:50:bc:57:fc:a4:d5:3e:5f:
41:20:22:71:84:0e:ef:8f:a7:89:54:a2:d9:0a:47:
ec:08:c8:14:1e:27:14:55:be:e7:ca:1d:ba:b8:82:
7c:5e:67:28:20:f9:04:2e:5a:fd:42:94:38:3a:65:
c8:db:d7:62:15:7c:f5:3f:66:5f:40:7b:63:91:c8:
07:4f:08:48:86:00:fc:49:41:2b:07:f2:0a:4f:85:
0e:87:e8:4a:45:ec:1b:c0:be:e6:99:17:a6:0f:a3:
88:b3:f6:0d:f0:2c:ea:15:89:69:3e:e5:2b:19:34:
de:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:0A:52:4A:F8:9B:63:ED:63:64:19:CE:BD:54:83:98:6B:32:53:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B473AC22D8D011EF8EB78AB8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.98.0/24
Signature Algorithm: sha256WithRSAEncryption
46:ab:3f:f2:e4:70:70:86:b6:09:61:1a:9b:73:b8:ab:3e:ff:
6d:61:8b:68:79:b9:f2:f2:2d:ca:9d:53:23:ae:ce:61:bf:69:
fc:e6:d4:5d:53:78:b2:a5:4b:0c:42:87:c2:d3:b8:1a:f4:82:
63:e0:4c:96:4c:28:92:8c:0e:43:2e:2a:12:84:94:29:5f:76:
54:5a:46:a2:e3:80:d4:9c:91:67:1d:5b:04:94:24:7e:c8:d1:
3b:32:07:bc:e9:cd:dd:da:31:da:de:f7:db:e8:29:6b:e7:44:
b0:72:1b:6e:8c:78:4f:20:d7:0e:bf:f4:1d:58:98:e6:f2:24:
4a:bb:f1:1a:42:6d:f5:ba:4f:6d:ba:99:2c:e5:88:5d:fe:a5:
63:21:f2:5e:f9:de:6a:b3:bb:9d:c3:51:5e:e1:fe:0b:dd:a3:
0d:a5:99:cb:91:83:60:b0:4a:ff:c4:f4:dc:60:85:e2:3c:35:
b7:6d:eb:50:3f:df:a6:67:c3:f8:2c:80:fa:04:15:2c:ca:00:
97:e3:c6:83:2c:14:f2:28:17:2a:97:1c:5a:36:3e:49:e1:f9:
c1:dc:62:10:c6:2d:55:c4:c0:44:91:bc:d4:bf:32:b5:bd:2b:
68:d4:b1:a9:7a:65:e0:7a:e0:7d:72:ba:87:24:57:de:f2:c8:
6a:2d:72:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:17:31 2025 by rpki-client