Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5425BE4C61011EF9B1BFE8C762E951A.roa
File: B5425BE4C61011EF9B1BFE8C762E951A.roa (raw, json)
Hash identifier: sE+CeoT7ofgwT2r332QcHxnyK8QIe8G/QcMQ1wphXdI=
Subject key identifier: 7A:CD:1B:5F:B4:DD:E2:91:87:AA:D3:E2:83:B2:53:1C:65:2E:4A:76
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012EE4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5425BE4C61011EF9B1BFE8C762E951A.roa
Signing time: Sun 29 Dec 2024 18:14:13 +0000
ROA not before: Sun 29 Dec 2024 18:14:10 +0000
ROA not after: Sun 12 Dec 2027 18:14:10 +0000
asID: 17561
IP address blocks: 154.217.85.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77540 (0x12ee4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 18:14:10 2024 GMT
Not After : Dec 12 18:14:10 2027 GMT
Subject: CN=67719175-e3e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9c:ff:60:04:e9:b9:03:de:89:62:48:88:58:
2f:3e:ee:c5:26:1f:25:0f:e1:88:63:44:7c:d6:34:
e1:e6:be:a1:71:b5:82:7e:a3:4c:a5:47:43:98:e5:
9d:9f:cb:1c:4d:9e:91:e3:1b:44:02:6e:b9:b5:76:
ca:d1:f1:87:51:97:88:43:6e:c6:5b:17:5a:46:ab:
76:f4:0b:9e:63:be:13:e3:b8:d5:72:4f:96:d5:9d:
de:9b:3e:4f:b1:9c:df:48:47:c2:ec:85:a8:23:7f:
c6:05:7f:0f:8c:ed:08:de:1f:0d:cd:ed:04:f3:78:
df:b8:16:7a:af:62:e8:95:41:93:6b:bc:cb:80:cd:
fd:84:58:5e:c3:43:51:47:e9:b3:b5:42:8a:2d:98:
9d:7c:04:58:b5:be:cd:79:09:7d:db:dc:49:58:ea:
84:17:91:ff:01:8e:8c:7f:2f:8c:f9:6d:8f:90:50:
83:91:a4:81:d3:c4:1e:9d:69:c1:ef:cc:f9:4f:40:
20:a6:40:5c:0c:2f:3d:c0:e4:ca:f4:ec:16:bd:dc:
1c:7a:e8:dd:b9:eb:1c:6f:87:7a:5e:84:18:9f:dd:
6c:64:9e:3d:58:66:db:d3:e0:cf:10:48:92:00:8f:
52:2f:e1:2b:2c:0b:a8:e8:14:b7:a3:7a:f7:75:6c:
a4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:CD:1B:5F:B4:DD:E2:91:87:AA:D3:E2:83:B2:53:1C:65:2E:4A:76
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B5425BE4C61011EF9B1BFE8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.85.0/24
Signature Algorithm: sha256WithRSAEncryption
89:e6:07:97:c5:6c:2a:0c:45:f1:43:02:5d:e2:66:b0:f0:da:
22:2f:ce:59:7c:ca:8b:ce:ba:bc:4b:e4:7e:2a:29:e3:62:f2:
51:48:2f:ac:94:6d:11:8e:d3:7b:d2:da:8f:b3:f3:45:c1:7c:
d1:79:49:e8:9d:57:6e:15:5c:b9:c5:78:ad:25:c9:02:4d:29:
d6:59:4b:ec:28:db:8a:1c:05:79:72:bc:c6:4e:c6:31:84:06:
f9:b9:59:c1:73:4a:d0:03:fe:08:56:a1:27:c4:1b:eb:d4:42:
42:28:c8:f8:e7:1f:21:83:d2:0a:cb:89:b8:15:57:17:93:a9:
d2:73:8f:f6:cc:5d:98:3f:2f:14:ed:6f:f1:02:38:77:36:8e:
fe:50:e9:f9:46:a4:a3:5d:83:21:04:42:97:5b:d8:ef:05:f7:
ef:ab:65:d6:69:d3:24:d3:c8:e4:ec:7f:ca:f6:32:cb:41:01:
9a:0a:01:b2:ab:73:55:37:31:53:e5:ab:86:c8:ee:13:42:38:
e8:cc:7f:a7:09:86:8c:f1:3c:f6:27:1a:42:ad:54:62:88:04:
b4:13:4b:37:82:51:26:e6:a4:9f:c4:a7:6b:c9:79:02:43:a6:
3d:31:6b:a3:43:6a:5f:7f:4a:e8:87:3c:13:b4:e9:18:4d:76:
38:03:03:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:54:07 2025 by rpki-client