Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3F839DEF46D11EFA0D15884762E951A.roa
File: C3F839DEF46D11EFA0D15884762E951A.roa (raw, json)
Hash identifier: CiqavPKq6qINeE9VKI9Jy6XGrD2HnqHN72kKuxcfac4=
Subject key identifier: 1B:B7:B1:8A:30:C9:B1:51:12:CA:B6:E9:13:62:60:E0:4F:01:77:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016554
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3F839DEF46D11EFA0D15884762E951A.roa
Signing time: Wed 26 Feb 2025 18:16:15 +0000
ROA not before: Wed 26 Feb 2025 18:16:11 +0000
ROA not after: Sat 19 Feb 2028 18:16:11 +0000
asID: 17561
IP address blocks: 154.201.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91476 (0x16554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 18:16:11 2025 GMT
Not After : Feb 19 18:16:11 2028 GMT
Subject: CN=67bf5a6f-ea37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:55:92:f7:b1:7b:a1:d3:d2:4a:1b:7f:5e:b3:
34:cb:d7:42:f7:bd:ea:18:50:5e:2e:3d:6e:85:bb:
22:16:bb:b5:fe:31:eb:07:67:8e:af:7e:da:6d:c9:
30:f8:08:2a:9c:83:5c:e0:54:a0:80:fb:d4:20:98:
c4:d5:b9:61:be:27:65:aa:12:07:c9:2f:e5:2f:22:
f4:23:85:25:6b:ab:8b:3b:08:5f:d1:fc:ef:b7:d2:
ac:66:10:08:f0:20:9c:25:44:c1:e8:6c:a1:d5:e2:
de:18:aa:be:88:10:76:3c:96:e7:84:e0:00:88:78:
2a:a0:af:b1:0f:78:c8:fc:cd:96:76:77:63:32:d9:
78:69:97:6b:74:86:15:66:73:09:4c:f9:6c:cb:d6:
70:39:ed:58:92:aa:62:b5:a2:14:e1:da:f0:38:d3:
03:98:bf:e6:43:7c:b1:47:c8:8f:43:1f:fd:ea:27:
57:73:d8:e9:16:0f:14:cf:3a:05:a3:ff:b0:6b:19:
a2:46:00:7c:7b:27:17:d0:d0:a8:3a:65:03:f5:05:
05:a5:c7:91:63:68:93:96:c0:23:25:8c:de:49:56:
dd:5c:45:5a:7c:7f:40:8e:84:f1:b8:28:e8:a6:8c:
9a:48:22:1b:00:ba:5f:b8:f2:5d:bd:ff:e3:41:54:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:B7:B1:8A:30:C9:B1:51:12:CA:B6:E9:13:62:60:E0:4F:01:77:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3F839DEF46D11EFA0D15884762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.13.0/24
Signature Algorithm: sha256WithRSAEncryption
68:c4:b2:d1:da:cc:aa:0d:fc:3f:94:15:c4:10:15:8f:e0:1f:
59:21:6e:dc:92:63:24:1d:b7:b6:de:b8:01:e0:73:d8:bc:58:
f2:ee:df:0b:4f:d0:49:dd:79:9d:26:a1:ee:51:8b:61:d2:f1:
2c:3f:ea:e6:1b:6e:6d:c3:42:13:87:32:21:3f:6e:55:cd:5f:
57:67:ab:90:0b:a5:21:11:c7:aa:d9:4e:12:5d:ee:ed:33:98:
ec:71:38:f8:dd:e0:26:57:fd:f8:aa:c8:07:6d:c1:68:8f:f4:
59:ba:d9:c2:a0:5d:36:72:42:30:9c:55:29:f4:49:54:44:32:
52:81:98:a6:df:69:e8:98:e3:cf:3d:0b:a9:b1:52:6b:ac:e6:
49:4b:e7:39:40:fa:d7:7e:1d:79:0c:b9:bc:03:23:5e:97:15:
69:b0:ca:20:15:e2:8b:87:4e:78:06:37:0f:3c:1d:9f:6a:57:
3b:b8:10:3d:fc:f9:ff:ba:89:f9:0a:d2:b7:29:42:46:d8:ae:
cd:da:34:48:66:4a:e7:76:3d:9e:03:74:fa:bf:5c:fe:9b:10:
f1:d7:c7:62:d1:44:42:f3:c6:b7:53:a1:7d:40:c1:22:8c:5e:
d4:08:37:bf:1c:81:92:04:e4:20:76:a4:26:93:02:e2:36:30:
5b:87:94:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:41 2025 by rpki-client