Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFE42BA0C1A311EF9A508B6C762E951A.roa
File: DFE42BA0C1A311EF9A508B6C762E951A.roa (raw, json)
Hash identifier: KEVwyRt4Boe092t8toJMSc4Oh5wau5XLvVGvL7tU6tE=
Subject key identifier: 54:73:21:D5:B0:4E:76:F2:30:96:AF:E7:AC:8D:33:B3:F0:7F:C9:0C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0120D5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFE42BA0C1A311EF9A508B6C762E951A.roa
Signing time: Tue 24 Dec 2024 03:05:05 +0000
ROA not before: Tue 24 Dec 2024 03:05:02 +0000
ROA not after: Wed 10 Dec 2025 03:05:02 +0000
asID: 984
IP address blocks: 154.92.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73941 (0x120d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 03:05:02 2024 GMT
Not After : Dec 10 03:05:02 2025 GMT
Subject: CN=676a24e1-8434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ba:8b:41:6b:98:ce:42:40:f1:1b:79:b8:fa:
e4:0a:22:dd:e9:79:f9:ae:9b:9e:21:7d:28:9e:91:
36:93:19:8d:86:3a:c4:42:52:58:4a:e7:e6:4c:4b:
b8:ea:44:28:b4:d9:3c:4e:28:0d:ff:3c:67:bd:21:
e7:1d:ec:94:58:25:74:79:75:62:75:d1:83:d6:1a:
06:a5:2d:73:f8:ae:60:3a:b2:6e:39:83:01:20:a4:
b2:7c:3d:3f:5a:b4:82:60:63:15:6b:cb:8f:a7:79:
86:c3:95:38:c4:37:21:43:a6:79:9c:70:54:8e:20:
d3:d3:30:82:30:5c:b0:7a:2d:13:0b:5c:33:2e:e7:
7a:90:33:fe:f2:d5:3a:fe:3a:ea:30:b2:d9:3f:03:
27:ec:3e:93:3e:e1:4d:13:ad:ed:5e:65:cf:b7:9c:
91:52:04:4f:fc:4e:3b:ef:75:e4:c9:d9:fa:e1:f1:
d6:49:52:66:67:5f:d8:bf:f8:fa:fe:1b:ab:18:48:
09:1a:bd:a1:0d:e6:56:7e:7a:84:05:17:b6:94:cd:
07:c7:a3:85:f3:e6:8b:85:23:64:22:f8:d7:d5:85:
25:28:69:00:5b:05:70:bd:0a:5f:e0:f8:13:31:d9:
cb:67:da:bb:d2:52:80:24:a2:89:83:0b:2b:ef:37:
57:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:73:21:D5:B0:4E:76:F2:30:96:AF:E7:AC:8D:33:B3:F0:7F:C9:0C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFE42BA0C1A311EF9A508B6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.146.0/24
Signature Algorithm: sha256WithRSAEncryption
26:04:68:5f:19:9c:d9:50:68:71:e9:3a:77:46:50:d2:11:69:
8a:ef:82:dc:c6:25:f9:f9:3d:05:b2:1e:20:00:67:49:54:ba:
19:76:21:cf:56:a9:7d:86:36:b0:0e:21:1a:15:c8:33:ef:77:
33:bc:13:d1:7b:73:a6:26:a3:8f:cf:99:7f:f7:3a:6c:77:23:
40:40:d1:7b:d2:57:2f:e4:6c:fa:aa:65:a3:f4:e8:58:ad:48:
0e:94:71:86:b4:40:5e:4c:ad:07:21:34:ed:3b:c3:c5:57:cd:
31:db:31:30:3e:8b:b6:99:30:14:8a:2b:6b:e3:c3:b0:b9:4f:
85:6f:0e:32:8f:cc:49:12:c4:79:7f:61:bc:ec:db:3f:bf:b0:
b6:b3:d2:66:af:83:04:98:6a:75:57:c6:1f:9c:e6:31:5b:86:
5e:fe:49:8e:03:9d:3f:be:39:ce:4c:4e:03:a9:47:91:b7:10:
6f:92:3f:d3:d5:f1:89:2e:2f:a6:62:a3:60:9a:08:f6:04:91:
ad:2d:d7:71:10:3e:f8:04:3d:8f:c1:7f:08:9e:20:80:fb:93:
38:7a:8b:9d:80:03:c3:1b:12:eb:0a:4c:f5:72:a9:b8:51:39:
1e:1f:8d:b7:38:cd:b9:3e:c0:45:ab:56:38:03:92:e7:e6:a4:
17:7e:c6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:47 2025 by rpki-client