Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A325F4C26D11EF9EAFC77F762E951A.roa
File: C6A325F4C26D11EF9EAFC77F762E951A.roa (raw, json)
Hash identifier: wcgWMGozUamSMhYlNtYZk44v3N+hwYMAEsia22axrc0=
Subject key identifier: 91:A2:18:5E:A5:DD:6A:E9:18:45:4D:86:42:D4:D4:E7:91:E3:EF:02
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012440
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A325F4C26D11EF9EAFC77F762E951A.roa
Signing time: Wed 25 Dec 2024 03:10:21 +0000
ROA not before: Wed 25 Dec 2024 03:10:18 +0000
ROA not after: Wed 10 Dec 2025 03:10:18 +0000
asID: 984
IP address blocks: 154.211.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74816 (0x12440)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 03:10:18 2024 GMT
Not After : Dec 10 03:10:18 2025 GMT
Subject: CN=676b779d-0064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:81:dd:20:ce:7d:9a:e7:21:65:10:9f:0f:56:
f9:49:65:62:2d:d8:01:2d:13:c5:39:27:f6:65:ed:
c4:8f:e4:b1:e4:8d:ec:5e:b8:58:1d:6a:e8:88:f2:
e1:e2:24:48:3e:ad:20:65:e0:c7:fa:8d:4a:da:74:
6c:ca:87:ab:e9:3a:ab:e5:a3:86:98:89:ee:2f:0c:
48:da:34:e8:2f:d6:e2:1f:ec:27:a3:fc:56:94:1b:
d4:70:51:8b:82:6d:22:ac:12:10:0f:0c:cc:4f:84:
cd:1c:3e:6b:ef:f9:5f:37:02:d8:9a:d2:5f:4d:e4:
f0:92:c8:46:5e:29:cf:73:83:71:e3:8f:d5:30:0b:
54:d5:70:99:5d:b9:dc:71:16:f6:4b:72:e7:f4:e0:
fe:8a:f5:c3:eb:a4:62:57:0f:8b:c3:a3:ce:f8:e8:
25:6f:b1:6b:f5:90:fe:26:c2:36:e4:59:01:85:5f:
fb:ac:0f:02:b3:83:11:38:72:ac:0c:e9:9c:e4:0f:
d2:df:be:25:98:39:68:29:8e:44:86:12:d2:58:49:
96:05:4e:76:4b:4e:8c:4e:49:7e:62:84:50:9c:88:
4a:d0:46:55:23:b5:1f:92:20:a1:56:2f:0a:b5:31:
5c:10:8f:42:cb:9f:3b:ff:b9:be:dc:c9:5b:9b:f5:
ac:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A2:18:5E:A5:DD:6A:E9:18:45:4D:86:42:D4:D4:E7:91:E3:EF:02
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C6A325F4C26D11EF9EAFC77F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.211.172.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:25:46:37:6e:b3:be:bf:ae:41:7c:56:d6:05:8c:c3:fd:75:
67:b4:d1:94:ff:ec:db:aa:10:a2:ed:ed:5b:f5:72:f6:bd:b8:
e4:9a:7b:b9:76:bc:11:e7:40:85:e0:38:8e:99:43:12:69:be:
de:11:75:85:a4:45:52:8f:4d:97:12:a5:01:58:6a:0c:8b:a3:
e5:73:77:52:49:59:ce:1a:9c:13:42:42:4c:e4:67:37:73:32:
3f:07:bc:a3:e0:47:c9:32:34:c5:d8:2e:22:83:53:f7:a1:af:
42:d6:8a:4a:94:aa:98:d5:26:54:f3:21:f0:e5:73:cd:4f:14:
cf:ed:8c:33:ff:aa:42:90:e8:99:5c:1f:91:cd:de:07:31:4a:
e1:bf:67:b6:10:52:58:7d:eb:27:3c:46:98:a6:0c:26:e6:71:
68:3e:be:ad:05:23:72:ae:54:e1:94:80:fb:68:af:98:cc:ff:
bb:8b:18:e3:53:f6:9d:b6:76:16:87:5a:5b:4d:a9:bf:4b:6a:
c0:ac:da:7a:43:65:b5:11:aa:e3:59:27:47:c4:18:cc:96:b6:
f7:16:ac:9f:01:39:25:02:f6:07:76:a2:b6:66:18:fe:ae:2b:
8a:64:3f:6f:6f:47:eb:1c:85:6d:c4:b8:0c:39:dd:01:95:be:
86:13:84:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:54:10 2025 by rpki-client