Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCD23604F47D11EF8A778573762E951A.roa
File: BCD23604F47D11EF8A778573762E951A.roa (raw, json)
Hash identifier: kTXkTLQWWk4sN27uhNSRVwBkmm1EGAGFa/Fo3d0tL6k=
Subject key identifier: D6:B9:17:2B:8D:C5:26:70:8D:FC:76:92:DC:F4:BA:EC:68:59:35:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0165E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCD23604F47D11EF8A778573762E951A.roa
Signing time: Wed 26 Feb 2025 20:10:35 +0000
ROA not before: Wed 26 Feb 2025 20:10:31 +0000
ROA not after: Sat 19 Feb 2028 20:10:31 +0000
asID: 17561
IP address blocks: 154.218.60.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91617 (0x165e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 20:10:31 2025 GMT
Not After : Feb 19 20:10:31 2028 GMT
Subject: CN=67bf753b-38fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:08:da:3a:90:b2:b1:93:70:22:37:19:d9:5b:
df:28:9a:25:d0:85:a6:26:8c:9d:21:b8:8c:6b:a9:
cf:17:5b:82:09:7d:7b:a5:dc:73:1b:9c:3d:7d:0f:
70:01:6a:45:fa:7e:3b:78:64:2f:8a:43:41:9e:81:
8b:e3:be:f5:c6:58:85:c9:12:0f:6e:b8:09:d0:19:
a1:39:0c:07:42:e9:20:4f:b7:33:f2:fe:b0:bd:dd:
54:9f:a3:c2:71:dc:af:4f:ad:3a:ad:c2:6d:c6:23:
52:42:b2:6d:d1:f6:0b:3a:8d:13:85:87:d2:da:32:
37:7f:ae:af:15:6d:51:8f:d7:36:94:7a:59:d7:bf:
22:17:e0:df:9f:4a:7f:4c:e9:f3:c1:0c:06:d8:ad:
f3:59:f5:4f:c4:ff:02:a0:1c:2f:41:e8:a3:41:4b:
4f:af:40:90:df:e1:dc:48:7c:91:43:0e:d6:85:f4:
40:64:90:f0:64:15:4f:b7:20:96:ba:a9:f8:ea:7a:
f9:d8:70:b0:d8:44:bb:99:3e:c6:72:5c:6f:66:30:
a3:bb:9b:cf:6c:1b:c4:eb:7a:e9:49:4e:ef:4d:ca:
69:e9:57:31:9e:c2:9f:89:c7:22:1e:f8:63:ff:5e:
13:15:57:e7:a0:ec:ef:a0:c7:5a:b4:eb:80:d3:01:
9c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:B9:17:2B:8D:C5:26:70:8D:FC:76:92:DC:F4:BA:EC:68:59:35:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BCD23604F47D11EF8A778573762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.60.0/24
Signature Algorithm: sha256WithRSAEncryption
91:25:69:88:69:e6:24:4a:56:df:76:e0:f1:d3:a4:b3:e4:e6:
09:86:4d:8c:a4:df:ae:db:07:cb:58:79:c9:0a:a6:5a:c4:ea:
3e:12:82:bb:9f:90:5b:26:5f:13:19:5f:8b:5a:3f:1e:cd:43:
01:ca:f9:11:dc:49:e3:a8:c1:b5:9d:10:b1:05:38:4b:82:06:
cd:00:37:11:80:f6:e4:e9:ac:6a:84:04:09:be:d4:f9:f0:d9:
02:e4:a1:80:f9:39:53:9e:78:01:c8:05:5d:96:83:bf:0a:76:
7f:ce:af:92:96:d8:16:44:a1:ce:71:62:d0:72:eb:3a:98:d7:
e4:d3:74:7d:2e:32:fe:14:cd:65:13:f3:1c:ed:f8:15:cf:6b:
c2:f7:49:3f:55:d1:65:35:42:25:d8:9c:e5:18:85:94:61:07:
5e:96:52:1a:30:c3:61:f4:9e:68:62:22:68:b8:b2:c1:5e:36:
c3:70:b7:61:04:e1:45:d3:ae:c6:b7:18:b9:d4:53:81:1e:8a:
3b:f5:62:48:18:4d:87:d8:71:4c:3c:6e:cb:ce:d7:45:fd:2c:
3b:65:f2:d0:3c:ee:b7:72:5b:b3:72:ff:26:20:91:94:6e:e7:
17:9b:b3:d9:b7:a0:93:a4:b2:74:53:63:27:60:8c:ab:bf:a0:
2e:57:a0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:30:03 2025 by rpki-client