Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5E30350CAE111EF9FC134AE762E951A.roa
File: D5E30350CAE111EF9FC134AE762E951A.roa (raw, json)
Hash identifier: A1ZVNVkKoJNFFwmXu9R+/LaKi84k2NyXIRB64CKHEwQ=
Subject key identifier: D1:6E:C9:23:64:D8:30:6C:03:EA:FB:34:26:47:BC:47:1F:8B:76:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01356B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5E30350CAE111EF9FC134AE762E951A.roa
Signing time: Sat 04 Jan 2025 21:21:18 +0000
ROA not before: Sun 05 Jan 2025 21:21:14 +0000
ROA not after: Tue 22 Apr 2025 21:21:14 +0000
asID: 328608
IP address blocks: 154.198.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79211 (0x1356b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 5 21:21:14 2025 GMT
Not After : Apr 22 21:21:14 2025 GMT
Subject: CN=6779a64e-3099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6e:c4:97:8e:1e:e3:ff:2f:b5:a6:a1:55:0b:
3e:b4:41:1d:c4:89:19:0f:39:6f:6f:3c:d5:a6:84:
9d:1c:b2:e8:68:74:89:4f:a2:2f:a1:23:cc:84:38:
0e:79:60:5c:4f:b1:e6:f5:1b:20:03:41:f1:aa:f1:
2f:a4:90:09:e1:66:35:73:1d:44:7b:73:54:fd:6f:
d5:a2:75:ee:55:4d:d5:f3:2f:1d:79:e6:3c:ad:f2:
a6:86:27:91:78:37:e7:33:21:15:8c:c2:24:1f:65:
7a:84:48:11:46:2f:65:72:3c:5c:05:0b:0a:77:94:
65:c5:f3:33:a5:9c:01:d8:47:7b:58:df:53:5b:4d:
1d:95:a5:cc:a7:f6:0a:fa:bc:8c:33:d6:fd:e5:27:
40:3e:4d:c7:da:61:d5:a0:91:77:e7:38:a4:6c:19:
b8:f8:e5:a1:da:7d:24:05:3c:91:12:1a:af:6f:20:
9d:51:2a:cf:5e:ad:90:e9:59:f1:59:3a:0a:9a:67:
ab:41:97:5e:22:03:07:f6:cb:86:9e:29:35:cc:87:
cd:13:dc:e2:a7:fb:75:92:4c:f1:97:1f:5b:24:dd:
cb:bf:4f:3c:d3:7e:fb:f3:03:cf:6d:b5:78:73:80:
b5:84:37:d8:37:a3:c5:f5:e8:8f:0b:9a:36:0f:59:
e6:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:6E:C9:23:64:D8:30:6C:03:EA:FB:34:26:47:BC:47:1F:8B:76:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5E30350CAE111EF9FC134AE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.168.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:13:7c:98:2d:5a:b7:b5:ed:86:a1:bc:be:02:c4:8e:30:81:
11:75:2b:c2:ba:dc:ac:ac:b0:f2:c3:07:6e:af:37:d9:36:ec:
62:73:32:3e:15:da:1e:cd:51:35:f5:3c:2a:96:b6:f4:9b:31:
5c:93:43:14:2b:12:0c:1b:65:76:71:9f:7c:b5:e7:36:a4:0f:
fe:d3:b8:30:7a:ad:4f:ad:78:01:1f:23:80:62:4f:fe:87:a6:
3e:0f:f4:81:e4:a7:3d:dd:39:f3:3e:ca:f6:cc:ba:99:83:1c:
b9:c0:f4:ef:21:55:e6:a5:0e:44:be:ce:31:98:56:ff:e5:34:
fc:ba:26:66:a6:c9:ba:ea:20:19:ff:f2:51:a2:74:e6:8b:e7:
cd:8c:a8:f2:1f:90:a8:86:12:64:54:0a:a7:40:74:bf:a4:62:
d8:d2:e4:7f:0b:0b:c8:93:3d:26:24:f6:b0:a4:9b:3a:e1:01:
fc:ac:47:ae:a6:dc:05:62:4d:85:7d:d3:c3:15:5a:b0:7d:c1:
ed:b2:c5:f0:d7:23:c9:35:55:83:1c:9a:e4:8f:58:d9:5f:a3:
4a:b0:ec:ba:f6:e2:3e:32:29:94:4a:02:33:98:79:0c:50:da:
fc:d9:6f:07:e1:95:df:1e:95:f4:86:f9:6f:66:3c:44:60:22:
0b:96:97:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:41 2025 by rpki-client