Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D250DA6EC0EB11EFA37E3563762E951A.roa
File: D250DA6EC0EB11EFA37E3563762E951A.roa (raw, json)
Hash identifier: KcJQULJ/eqG8GTserTm0ScmbVDkuC/Qr3hIENbPsCDI=
Subject key identifier: A9:4A:47:09:85:06:6D:24:E9:52:EE:7F:A5:BA:EE:71:1E:BC:68:68
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011F26
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D250DA6EC0EB11EFA37E3563762E951A.roa
Signing time: Mon 23 Dec 2024 05:07:35 +0000
ROA not before: Mon 23 Dec 2024 05:07:31 +0000
ROA not after: Wed 10 Dec 2025 05:07:31 +0000
asID: 984
IP address blocks: 154.90.73.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73510 (0x11f26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 05:07:31 2024 GMT
Not After : Dec 10 05:07:31 2025 GMT
Subject: CN=6768f017-a4d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:54:0d:c3:5f:87:1a:74:95:e6:a1:7a:c4:10:
d3:f6:93:35:f7:96:9b:89:e3:d0:fc:60:27:8d:4f:
24:5f:69:11:37:e3:8f:37:0c:96:36:55:10:96:61:
12:df:ad:3b:ec:36:c6:1e:f2:25:69:c2:db:ba:45:
8e:aa:9f:c6:b1:3d:40:74:75:1b:39:56:8f:8c:5a:
93:85:20:b5:20:69:02:1c:92:c6:44:d6:4f:f3:1c:
54:f8:46:82:1f:39:9c:f2:ef:a6:33:30:65:b1:d2:
a1:bb:7f:df:4e:23:d6:43:0a:98:53:24:eb:6f:e1:
4b:ac:a1:c4:84:e5:08:92:a5:32:5c:19:21:42:04:
89:dc:89:74:0e:e5:55:c5:1e:a6:33:13:5d:6e:f6:
94:53:00:f4:e4:47:7d:70:f6:97:13:76:fd:5b:e7:
f3:d6:df:0e:03:7c:fe:42:67:5c:a5:8a:10:2b:34:
85:7b:d7:25:be:93:bf:56:9c:fd:a1:27:6a:cc:3b:
e1:ee:bd:f2:75:d7:98:5b:d5:11:d5:02:4f:d1:42:
72:0e:86:39:10:99:03:75:37:9d:12:70:0f:76:a9:
d9:af:8c:19:61:95:1f:19:c5:2c:95:cb:6b:9b:8d:
d6:37:11:c9:a7:77:5d:ca:f1:d6:10:be:df:64:ab:
fb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:4A:47:09:85:06:6D:24:E9:52:EE:7F:A5:BA:EE:71:1E:BC:68:68
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D250DA6EC0EB11EFA37E3563762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.90.73.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:2e:5c:da:80:9a:e7:a6:f1:06:5c:29:55:d2:46:3a:0b:a0:
dc:3e:a0:61:45:29:e2:32:14:f8:b3:92:b0:21:c6:36:43:15:
dd:12:70:20:a0:81:90:a1:d4:5d:04:55:35:71:91:6a:98:06:
d4:dc:d0:19:c3:3a:dc:3e:d7:ff:d8:6e:d8:8a:98:b2:8d:7a:
4a:53:af:50:a6:da:22:a1:c2:03:86:2b:af:fb:5b:54:2e:66:
a0:41:df:fc:ad:58:fc:a8:00:6e:ad:73:f6:e5:59:2b:59:6f:
d7:67:24:cf:ed:52:9b:45:05:7f:0e:2c:7a:64:fb:4e:6d:72:
38:14:e8:f8:4d:d2:4e:a6:4a:86:5c:01:00:1b:b8:5a:7e:a1:
a9:d2:34:5a:e4:e0:b9:14:7f:c1:03:cd:d7:6f:a1:d8:bc:35:
14:1e:cb:96:03:40:01:d0:27:86:24:f4:0d:6f:98:b0:ea:1c:
90:ba:3f:e8:87:ae:f9:25:71:f7:22:7a:3f:f3:e0:31:48:0c:
a5:0a:fd:b2:a4:f8:ba:ae:af:ac:27:21:26:3c:f7:11:5f:2b:
73:5d:08:82:0d:04:e3:1a:a5:eb:8b:7b:76:fd:ab:25:47:cd:
ba:bd:81:e6:60:48:76:7a:c9:a3:cd:42:1d:b4:db:81:94:64:
f7:b7:50:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 15:29:52 2025 by rpki-client