Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFEC7646D8D911EFAD951E76762E951A.roa
File: DFEC7646D8D911EFAD951E76762E951A.roa (raw, json)
Hash identifier: XRsRlaycypg/YasdSb/iaoAspDabkVPKSVdjL8LYV9Q=
Subject key identifier: 58:23:ED:5D:91:50:85:F9:91:BC:21:0F:FA:B1:64:72:9E:A7:18:04
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013FDC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFEC7646D8D911EFAD951E76762E951A.roa
Signing time: Wed 22 Jan 2025 15:59:35 +0000
ROA not before: Wed 22 Jan 2025 15:59:31 +0000
ROA not after: Tue 01 Apr 2025 15:59:31 +0000
asID: 138915
IP address blocks: 154.93.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81884 (0x13fdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 22 15:59:31 2025 GMT
Not After : Apr 1 15:59:31 2025 GMT
Subject: CN=679115e7-43d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:84:75:0f:79:47:9a:ba:80:3a:b8:f5:b5:dc:
1a:ed:fe:21:7b:d8:ea:7e:31:25:8a:1f:ab:ed:4c:
88:ca:83:1c:4e:1c:bc:aa:4d:5d:60:6b:2f:76:00:
fe:2d:dd:55:2e:46:f5:95:63:f5:94:d9:46:10:9e:
af:a0:27:8a:6c:73:d7:85:17:51:b3:0b:97:1b:79:
fc:8e:36:46:be:34:6a:10:af:23:7e:ad:fb:97:c7:
5e:e9:da:d9:cf:9e:3c:b4:a0:b2:45:87:02:fe:c9:
f4:f0:40:79:01:d2:17:a4:38:36:c1:ee:3e:44:60:
1f:fb:33:40:9e:6b:67:49:a6:2c:b7:6d:f3:04:19:
81:c3:09:ef:8e:c4:9b:35:98:a4:e4:f8:a1:9a:43:
82:a2:c8:c4:5a:84:db:1d:b0:66:fb:59:8d:54:c6:
08:f5:16:50:6d:8f:3d:8d:c2:fc:a2:0b:4c:90:da:
2e:71:ee:e8:8b:56:2c:d2:32:11:65:c8:8a:53:54:
9b:e3:72:d8:74:22:c3:f2:b5:29:61:b8:a9:ef:55:
30:90:bf:bf:f0:3d:d0:57:bf:88:12:d7:e3:14:4b:
44:4b:1b:5f:3f:7b:53:cc:98:ad:0a:6a:cf:43:49:
15:cb:ce:e8:6e:0a:25:ed:e5:98:8a:69:e4:b6:d5:
d1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:23:ED:5D:91:50:85:F9:91:BC:21:0F:FA:B1:64:72:9E:A7:18:04
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFEC7646D8D911EFAD951E76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.122.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:11:b5:ee:d8:d8:66:df:f6:a9:02:37:7f:fc:f0:65:9e:91:
ee:fa:e0:70:4b:9a:39:be:6e:ec:c7:38:21:e1:36:5d:68:67:
f2:ef:b3:a0:5d:cb:f2:88:09:0f:2f:90:e1:82:ae:83:22:da:
08:b4:f7:f6:35:74:1f:52:56:b5:ea:a5:e8:17:e9:31:7b:a5:
9d:b9:b5:c7:65:38:44:77:b0:9d:f2:c5:e8:bc:0c:35:8f:85:
ee:e8:54:1e:43:70:2d:3b:55:f5:0e:0c:66:dd:93:11:83:53:
f8:3a:43:e3:46:56:6e:d9:e1:26:ef:9f:aa:51:1e:a3:0d:70:
60:fc:4e:ab:0f:86:c7:eb:12:3c:f8:12:04:ab:bd:7e:0f:4d:
9d:ae:2a:33:b1:50:27:a6:0d:2a:36:f8:3e:79:c4:b9:dc:cb:
89:4b:a4:2a:26:43:61:4d:52:e0:50:51:99:dd:84:64:51:65:
96:e6:ef:9a:8d:35:62:f0:01:d9:1f:f8:c5:0c:de:1a:5c:62:
da:77:85:25:10:97:c0:57:8a:f0:64:e1:84:e3:50:70:76:a0:
a4:ba:cc:97:dc:a5:86:25:a7:72:b5:6d:34:e9:f2:73:57:87:
66:18:38:e8:12:7e:55:8a:4e:cf:5c:58:f4:11:a7:01:0f:f8:
8b:61:0d:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:10:10 2025 by rpki-client