Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05E0D0F8DFE811EFBD54A390762E951A.roa
File: 05E0D0F8DFE811EFBD54A390762E951A.roa (raw, json)
Hash identifier: bMLKu1+29t7jjkPD0YggvU2m/mMnOPoidRLfP8S+w5U=
Subject key identifier: 03:5F:6B:3B:A5:58:11:DF:FB:30:7E:F6:F2:F3:3A:49:96:E1:DE:49
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014DE0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05E0D0F8DFE811EFBD54A390762E951A.roa
Signing time: Fri 31 Jan 2025 15:28:30 +0000
ROA not before: Fri 31 Jan 2025 15:28:26 +0000
ROA not after: Wed 05 Feb 2025 15:28:26 +0000
asID: 39600
IP address blocks: 154.84.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85472 (0x14de0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 15:28:26 2025 GMT
Not After : Feb 5 15:28:26 2025 GMT
Subject: CN=679cec1d-c323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:44:92:e5:68:2c:06:42:07:8a:f0:99:ea:7e:
e1:db:8e:3b:81:89:c5:fe:e4:d5:71:bf:39:0f:9a:
8f:70:86:54:87:a5:f0:bb:23:b3:e0:5d:46:70:91:
92:f9:ec:95:84:1f:90:20:84:f8:3b:71:b0:69:dc:
95:ca:56:65:d4:de:30:d7:d0:b6:05:62:c8:0c:02:
03:b3:ba:a6:21:0c:fa:ae:16:c2:d3:bc:8b:82:0c:
b6:b6:09:5a:de:12:c9:64:67:f0:86:99:8c:4b:93:
88:fe:c6:16:fc:e5:47:16:a0:97:76:5d:c3:29:24:
7b:cf:ad:74:d7:98:15:bd:8c:c1:57:74:4a:0e:2b:
c7:b1:ef:71:19:33:f5:5f:5c:6d:91:27:23:05:66:
de:da:2d:4e:6c:36:36:6e:dc:4b:8c:ab:7f:da:3a:
5d:18:b1:11:e7:7f:29:3f:fa:f5:9f:b7:df:fa:09:
2b:ac:bb:3c:2c:45:3e:01:cb:34:59:9a:ce:8f:26:
ce:47:e4:75:ee:41:2c:5c:9c:36:18:03:c3:a1:d5:
f4:91:a8:ec:4f:66:54:78:a9:20:d4:83:49:85:40:
fa:92:59:2c:14:d4:46:98:d0:63:79:48:95:51:87:
84:c7:74:dd:26:93:0d:42:80:f2:e1:62:95:b1:c4:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5F:6B:3B:A5:58:11:DF:FB:30:7E:F6:F2:F3:3A:49:96:E1:DE:49
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/05E0D0F8DFE811EFBD54A390762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.84.191.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:fd:27:35:92:78:10:6e:ea:0d:c4:22:ef:14:24:27:be:86:
6a:3b:89:3f:fa:61:87:fb:e9:d0:f8:93:fe:7a:d1:d2:76:61:
a5:40:3a:3c:0f:74:0b:ca:4c:ab:e7:7b:db:29:46:85:4a:66:
e2:1d:a4:fa:1d:ea:0c:00:11:6d:30:3c:3d:c0:64:65:a7:cd:
07:46:bf:f5:5e:1f:46:86:c5:6d:f7:af:56:19:ed:42:e7:ad:
52:a2:03:86:6d:0d:f7:48:fb:e6:67:2d:e0:51:a1:df:fe:ba:
8a:12:99:fd:71:f7:ea:9c:12:ca:05:c3:22:0b:8d:34:0a:e7:
46:29:de:1c:65:94:2e:92:68:d7:ed:61:70:3d:03:2c:94:49:
e0:94:2f:75:6d:f8:81:f8:18:6b:ff:f9:8b:0d:24:be:f4:d0:
c8:c6:e3:97:c2:9b:3a:29:bb:87:ec:b9:06:02:45:f7:53:43:
c2:06:de:33:ab:24:75:09:ca:6a:22:e8:73:95:e7:9d:ed:14:
92:97:f8:f2:56:a8:42:e0:eb:15:79:72:32:f9:4d:0c:db:0a:
e6:fe:7a:48:48:f4:38:c7:e6:e6:2e:9a:11:00:ae:ba:bb:fa:
47:67:0c:bc:2b:f6:46:08:ce:7a:21:ba:10:aa:b5:46:39:04:
a0:3d:8b:85
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAU3gMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTMxMTUyODI2WhcNMjUwMjA1MTUyODI2WjAYMRYw
FAYDVQQDEw02NzljZWMxZC1jMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+ESS5WgsBkIHivCZ6n7h2447gYnF/uTVcb85D5qPcIZUh6XwuyOz4F1G
cJGS+eyVhB+QIIT4O3GwadyVylZl1N4w19C2BWLIDAIDs7qmIQz6rhbC07yLggy2
tgla3hLJZGfwhpmMS5OI/sYW/OVHFqCXdl3DKSR7z61015gVvYzBV3RKDivHse9x
GTP1X1xtkScjBWbe2i1ObDY2btxLjKt/2jpdGLER538pP/r1n7ff+gkrrLs8LEU+
Acs0WZrOjybOR+R17kEsXJw2GAPDodX0kajsT2ZUeKkg1INJhUD6klksFNRGmNBj
eUiVUYeEx3TdJpMNQoDy4WKVscS+0QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFANf
azulWBHf+zB+9vLzOkmW4d5JMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wNUUwRDBGOERGRTgxMUVGQkQ1NEEzOTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlS/MA0GCSqGSIb3DQEB
CwUAA4IBAQA6/Sc1kngQbuoNxCLvFCQnvoZqO4k/+mGH++nQ+JP+etHSdmGlQDo8
D3QLykyr53vbKUaFSmbiHaT6HeoMABFtMDw9wGRlp80HRr/1Xh9GhsVt969WGe1C
561SogOGbQ33SPvmZy3gUaHf/rqKEpn9cffqnBLKBcMiC400CudGKd4cZZQukmjX
7WFwPQMslEnglC91bfiB+Bhr//mLDSS+9NDIxuOXwps6KbuH7LkGAkX3U0PCBt4z
qyR1CcpqIuhzleed7RSSl/jyVqhC4OsVeXIy+U0M2wrm/npISPQ4x+bmLpoRAK66
u/pHZwy8K/ZGCM56IboQqrVGOQSgPYuF
-----END CERTIFICATE-----
Generated at Sat Apr 26 05:36:30 2025 by rpki-client