Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F86B9536F47611EF80BC6747762E951A.roa
File: F86B9536F47611EF80BC6747762E951A.roa (raw, json)
Hash identifier: EvB4QXH0cpGK7a+YSdBbIxgE7okA3lvWit+S2wCyUM0=
Subject key identifier: 95:D2:67:9C:6E:2B:42:F8:BE:B9:BF:13:B9:E0:43:20:D7:A7:5C:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016595
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F86B9536F47611EF80BC6747762E951A.roa
Signing time: Wed 26 Feb 2025 19:22:08 +0000
ROA not before: Wed 26 Feb 2025 19:22:04 +0000
ROA not after: Sat 19 Feb 2028 19:22:04 +0000
asID: 17561
IP address blocks: 154.218.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91541 (0x16595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 19:22:04 2025 GMT
Not After : Feb 19 19:22:04 2028 GMT
Subject: CN=67bf69e0-7bd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6d:65:7d:1c:21:c1:92:26:ae:a2:65:91:55:
b9:d6:5f:cc:ac:71:0d:4c:76:55:15:a7:d6:ba:a2:
97:30:f1:81:27:e2:a4:45:f6:00:74:af:27:78:8e:
03:89:1b:4a:d0:71:b0:1a:ea:f6:2b:dd:b4:3a:7a:
a2:16:b9:84:2a:4c:cd:d9:b4:a5:ec:45:66:59:02:
2b:b1:aa:98:47:6d:48:2a:20:e8:9b:c1:83:e6:22:
2c:53:89:b6:31:1a:99:0f:ce:81:bb:23:dd:30:47:
7a:1f:8c:f3:67:1f:7d:b6:07:46:a4:ed:f7:b5:32:
f8:7b:de:da:af:02:a3:ac:ab:02:32:91:5a:25:0d:
ce:03:9a:72:c3:46:7c:a2:32:68:81:d0:1a:1f:fc:
fb:71:7f:b4:26:31:e0:d0:4b:2c:e1:3f:ca:32:42:
45:e4:03:b2:85:02:21:e3:a6:f2:00:e5:c5:a1:71:
f9:29:40:40:ff:31:e1:08:0b:92:53:9e:3f:ca:b4:
89:9b:41:24:40:d5:62:8b:97:88:a9:08:5d:e9:83:
dd:fd:67:20:65:95:df:f2:d9:b1:d5:30:89:c3:e2:
4c:48:f1:62:ae:07:0b:19:d7:d4:fd:50:0a:7c:96:
d4:e9:aa:67:85:60:7d:5d:09:24:c1:90:d4:17:1b:
7a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D2:67:9C:6E:2B:42:F8:BE:B9:BF:13:B9:E0:43:20:D7:A7:5C:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F86B9536F47611EF80BC6747762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.42.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ff:c1:09:eb:0a:1d:1d:49:01:cc:40:31:59:f6:ee:f7:7a:
ba:7d:d0:84:9a:3b:2a:ed:47:c3:20:71:5a:9d:53:0e:ab:c6:
a9:a1:a5:97:b1:67:f2:ac:63:ca:0e:5c:46:4a:91:be:42:ed:
12:8f:cd:c1:4a:d7:3e:cf:72:6b:45:35:ab:9d:e1:65:22:ac:
0b:86:55:32:f8:98:a6:ed:6e:d9:50:00:a1:84:77:aa:20:87:
50:6a:0a:e2:72:55:61:5f:fd:36:ad:ef:e8:4d:9e:3a:b3:05:
58:30:c1:48:c2:83:b1:c2:1d:89:af:3c:75:7e:80:2c:fb:9b:
c7:c5:14:fc:0e:18:9c:46:04:a8:8a:75:2c:05:c3:70:19:75:
4a:76:34:78:85:6f:1a:ff:53:1b:40:86:2e:dd:23:79:22:42:
d8:a4:a9:6d:4c:46:06:c2:25:b6:f5:1b:ae:20:18:38:b1:45:
5d:5d:98:af:7d:0c:9a:dd:f9:57:23:62:ee:33:1c:22:cf:86:
54:5a:67:32:6a:ec:9c:39:94:43:84:b9:8e:09:b3:87:fc:09:
ac:ef:b8:49:f0:6e:6b:28:be:07:64:16:58:84:25:e4:47:2f:
f6:ef:73:d2:72:49:bc:d5:f3:d1:d4:3c:d9:25:1e:59:b4:11:
8c:1d:e8:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:16:10 2025 by rpki-client