Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F218BF44C8AA11EF93C4339A762E951A.roa
File: F218BF44C8AA11EF93C4339A762E951A.roa (raw, json)
Hash identifier: tjQ3KJqfcbZ5Q6suWsUpe0yPEjBcgdfeD4nzhgxRbsI=
Subject key identifier: 68:F1:3C:82:74:14:DD:EA:4D:4A:35:FD:76:AE:8B:10:60:EB:59:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013174
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F218BF44C8AA11EF93C4339A762E951A.roa
Signing time: Thu 02 Jan 2025 01:43:20 +0000
ROA not before: Thu 02 Jan 2025 01:43:17 +0000
ROA not after: Sat 13 Dec 2025 01:43:17 +0000
asID: 984
IP address blocks: 154.220.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78196 (0x13174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:43:17 2025 GMT
Not After : Dec 13 01:43:17 2025 GMT
Subject: CN=6775ef38-fea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c9:8e:c0:5b:b3:48:68:01:ab:75:49:fa:23:
5a:58:00:52:dc:65:82:b1:a1:36:c0:16:a4:59:fa:
32:8a:44:49:25:2d:30:a1:f4:de:7e:9f:12:0f:46:
85:28:dd:09:a9:2c:ac:fc:9c:17:28:3e:61:24:d3:
b3:e2:ae:31:7e:e8:55:0e:20:42:e8:61:d7:4b:85:
76:0a:7a:6f:6f:ca:a0:d2:30:60:02:36:82:ed:01:
61:d0:3b:37:e0:59:5c:41:c6:85:f2:fe:1e:52:fd:
c9:9e:30:9c:43:7a:57:00:09:ec:e2:60:12:06:9f:
af:bc:63:0e:1e:9e:2f:5c:54:d6:c7:37:cd:9f:fd:
ea:30:c5:fc:ff:42:dc:1b:38:a1:19:fa:5d:5f:05:
b2:cf:81:ed:ba:0b:0b:47:2e:31:5f:79:ff:9c:39:
5d:43:1e:dd:4a:81:24:b3:d3:a6:3d:eb:21:99:44:
d7:50:fd:51:b4:3b:34:d4:58:f2:17:1d:54:91:65:
88:b4:72:cf:5c:ea:49:90:95:69:65:97:d3:34:fa:
11:9b:c7:f6:b8:d3:65:8b:9b:b2:e2:39:e9:5c:7c:
a4:e6:a9:f3:95:74:f3:f2:60:f8:29:3d:16:6a:4c:
95:7b:0f:ed:11:ae:5d:94:c0:d5:4e:04:62:1e:de:
cf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F1:3C:82:74:14:DD:EA:4D:4A:35:FD:76:AE:8B:10:60:EB:59:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F218BF44C8AA11EF93C4339A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.149.0/24
Signature Algorithm: sha256WithRSAEncryption
16:fb:37:22:d3:d6:d5:8a:71:1c:d0:48:68:1b:0b:ab:73:a1:
0e:b9:b1:01:e3:3e:92:95:fe:17:91:0c:af:4b:66:13:ff:79:
b9:70:34:2a:b5:20:ce:15:34:a7:98:49:b7:ef:fd:1a:1f:e0:
ec:fd:6b:60:6d:9d:56:13:69:64:b5:04:1a:e5:36:f2:29:57:
5d:de:3f:97:f4:38:e1:eb:c6:1c:04:08:19:1c:b3:d9:04:af:
16:0b:97:27:6d:5f:9d:22:76:f9:99:98:c7:1d:ce:10:8c:84:
2c:c7:0e:73:69:4e:b0:c8:28:dd:8e:55:57:7e:e3:25:88:7d:
89:19:b8:4a:e5:b7:0e:45:07:02:4d:d6:a6:57:1f:bd:90:08:
d2:a0:6e:51:5d:10:dd:aa:c2:5c:3b:7b:6e:aa:08:ca:ce:89:
7a:01:bf:1f:4d:da:29:24:b7:49:a1:94:4b:fc:17:b6:4c:3c:
c2:a8:44:09:4f:4c:0c:59:3a:72:63:ed:97:77:98:14:5b:91:
70:0d:75:21:ee:7f:56:bd:9d:c0:4e:9b:93:ff:b4:c6:fa:0f:
b3:7b:01:a4:3b:d2:67:2b:28:52:b1:22:69:55:70:22:e1:4c:
83:74:7c:2a:e6:ca:b3:6e:49:4b:63:68:ff:2c:07:24:75:5f:
2a:66:e7:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:47 2025 by rpki-client