Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0B6F278C53D11EFBA5BD756762E951A.roa
File: D0B6F278C53D11EFBA5BD756762E951A.roa (raw, json)
Hash identifier: ih5leEaGU2cRaHHI9gMCCMXh6jAsXoXpEzJMtF+Et5o=
Subject key identifier: DB:CE:0E:47:31:09:99:58:73:13:49:37:3C:C3:A3:BA:9B:03:E1:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C5F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0B6F278C53D11EFBA5BD756762E951A.roa
Signing time: Sat 28 Dec 2024 17:04:36 +0000
ROA not before: Sat 28 Dec 2024 17:04:32 +0000
ROA not after: Sun 12 Dec 2027 17:04:32 +0000
asID: 17561
IP address blocks: 154.206.19.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76895 (0x12c5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 17:04:32 2024 GMT
Not After : Dec 12 17:04:32 2027 GMT
Subject: CN=67702fa4-da1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:48:5a:56:04:fb:21:80:3d:ef:9a:00:f7:e9:
76:ba:c2:d4:e3:4b:46:2e:81:a4:7a:0a:0a:a7:7c:
e8:f8:68:a7:45:ba:5f:ef:c9:2f:7b:6c:c9:1e:d6:
ad:ea:f6:73:6a:fb:95:72:b8:57:53:b3:e6:55:1c:
6f:34:90:29:82:e0:8d:56:cd:82:fe:51:c7:1f:94:
11:c2:92:bb:de:da:c2:13:d2:d4:03:98:50:c5:db:
20:5f:07:ff:d8:64:b6:68:95:dd:7d:fc:fd:85:4a:
4c:c4:34:08:e0:3f:6d:50:b8:b5:f6:60:2c:ae:03:
e1:1b:83:33:08:99:1a:1a:7f:51:22:b6:ac:80:b0:
8a:5d:80:c4:dd:2c:57:dd:97:c4:f9:ed:f6:42:0b:
f0:39:b9:dd:de:c8:2b:98:49:7c:b0:9c:77:7a:28:
69:83:39:1c:12:8f:d1:0d:c4:15:ea:3a:7d:a4:f7:
65:1b:e1:d5:d7:a8:3c:ad:d1:80:8c:73:38:4c:ae:
04:b6:69:4e:50:04:0c:1d:c6:ec:e4:34:e4:6b:40:
6e:d9:70:b9:2b:fe:f5:44:96:8a:70:03:ac:6f:9a:
e2:eb:15:3d:b4:2f:6b:c6:bd:cd:31:fa:20:ad:6b:
ee:5c:32:87:51:8f:b6:a3:21:9e:6e:aa:c6:ac:7a:
1c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:CE:0E:47:31:09:99:58:73:13:49:37:3C:C3:A3:BA:9B:03:E1:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D0B6F278C53D11EFBA5BD756762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.19.0/24
Signature Algorithm: sha256WithRSAEncryption
97:f0:d1:9c:f7:19:32:91:fa:cc:eb:8a:9b:7f:2b:bd:e2:36:
96:ba:80:78:49:58:7a:c1:1f:56:61:20:c6:eb:30:ac:c4:31:
e6:1e:17:d9:57:96:c0:99:86:09:c6:ea:1d:cd:c5:0a:97:c0:
5a:39:ee:ec:d2:fc:e8:4e:98:97:98:8e:44:c7:89:5d:d3:4a:
14:e7:30:d9:81:6b:3c:81:ba:ef:59:9a:41:08:62:02:c1:6e:
70:a6:09:3f:a2:01:ba:d9:09:5e:90:fa:67:a2:02:83:37:5a:
07:c5:a2:99:d1:37:6c:03:3e:1f:09:26:fc:dd:4c:88:a7:48:
b6:74:83:9b:56:17:c7:19:51:ee:94:56:05:af:09:59:7d:76:
fa:6f:37:09:44:2f:47:d2:4c:a0:9e:4a:14:a0:09:d8:fc:87:
22:cc:59:cf:68:78:84:9a:9f:77:23:20:bf:d4:b3:55:50:7e:
a8:b2:a3:51:f8:08:c5:31:f5:a6:b9:da:0e:f5:d7:9b:17:7f:
d0:c0:86:14:a1:9c:fc:15:b1:49:34:06:bd:8a:c5:46:ca:0e:
70:d8:8a:e5:e9:f0:d7:5f:ff:40:e6:d7:d8:9e:99:9c:5a:1f:
f1:54:6d:07:b1:aa:ae:74:f9:b5:bf:71:05:fc:21:5b:d7:4f:
70:e9:09:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:21 2025 by rpki-client