Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08CD672EDA3711EF8F7DB1A9762E951A.roa
File: 08CD672EDA3711EF8F7DB1A9762E951A.roa (raw, json)
Hash identifier: WL/iNw+0rx5Sw89w84LHOV4ZTEjfxWHLcu9N7SIDLVY=
Subject key identifier: 13:49:33:27:84:B4:B8:51:35:F7:32:F4:92:DF:8E:2A:45:DC:12:55
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014507
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08CD672EDA3711EF8F7DB1A9762E951A.roa
Signing time: Fri 24 Jan 2025 09:38:58 +0000
ROA not before: Fri 24 Jan 2025 09:38:54 +0000
ROA not after: Wed 05 Mar 2025 09:38:54 +0000
asID: 202656
IP address blocks: 154.219.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83207 (0x14507)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 09:38:54 2025 GMT
Not After : Mar 5 09:38:54 2025 GMT
Subject: CN=67935fb2-a6af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d9:a3:f3:21:2e:3a:5b:a0:ee:1d:84:16:32:
aa:17:0e:c5:ad:ed:6d:23:90:33:7b:d4:9f:6e:3e:
b4:5b:75:f1:76:c7:3e:3a:fa:62:f3:28:9d:ba:ed:
05:82:3b:9b:98:97:0e:af:b9:89:e6:a3:7b:06:36:
d3:8c:3c:b5:10:2a:cf:13:87:c6:55:9c:7f:74:b1:
0b:fb:0b:e4:91:f9:c6:62:55:4b:82:dd:e0:e8:ca:
95:b0:04:6f:ff:41:a6:d1:01:6a:7f:35:10:71:fc:
79:26:3a:46:5c:38:56:e8:b1:f9:3c:e3:66:bb:e0:
52:78:7a:ab:ba:6a:7a:2b:a9:17:5f:7d:52:0a:2f:
e2:4b:2b:54:31:9f:49:c6:7f:a0:09:78:78:ce:57:
23:74:77:26:8f:a8:51:ac:6f:f9:e9:bb:85:2c:91:
aa:cd:6e:d6:24:25:34:55:d0:5c:fc:0e:31:cd:c5:
68:a4:02:72:58:04:2a:6e:02:0d:54:c4:44:de:96:
6b:22:a4:83:2d:0b:cf:00:e3:77:6f:ad:09:30:d5:
cd:45:79:3f:36:5a:d3:fb:d7:dd:f6:9d:79:fc:7d:
14:42:4a:1a:25:46:07:37:3f:a2:38:2a:11:b2:c3:
6f:2a:4e:73:61:9d:fe:8a:36:d9:82:ab:94:2c:b9:
7a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:49:33:27:84:B4:B8:51:35:F7:32:F4:92:DF:8E:2A:45:DC:12:55
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/08CD672EDA3711EF8F7DB1A9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.223.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:15:b7:61:22:1a:e6:c4:23:06:04:43:b4:9b:4d:fd:1f:b4:
a3:60:bb:ab:27:e1:42:b4:a8:90:e6:a1:c9:69:c3:73:bc:37:
49:d9:b5:4e:29:6b:9c:82:fc:c7:90:a4:d1:db:2f:99:2d:0a:
31:1b:1c:bf:ad:2f:23:21:4c:79:4b:85:20:4e:30:35:6c:60:
db:f2:a2:02:8c:00:52:40:8a:57:fb:7f:89:57:85:ae:ba:f3:
8c:5c:41:bb:c5:20:6a:0c:db:48:d0:d7:5f:ca:cc:74:71:bb:
c9:73:37:28:7d:81:af:a8:02:85:8e:9c:3b:66:e1:65:cb:1d:
a5:99:24:dc:51:59:6f:4b:26:6d:09:0c:f1:2a:82:ef:b0:44:
91:bc:1a:b5:24:86:c8:28:f7:f8:5a:c0:c5:1c:17:0f:5a:78:
ff:32:8f:90:2e:9e:b6:cc:b1:ca:17:28:4e:23:d7:be:7d:cd:
4a:3c:be:ee:30:08:ca:ef:69:b7:9c:6f:00:d3:74:9d:c4:6c:
27:b2:7e:ba:7d:bd:76:da:2e:63:c7:9a:7c:23:67:5c:60:a9:
b6:05:90:c1:d2:2f:42:3c:81:7b:32:a9:4f:bb:cf:d6:7f:2d:
83:a0:fd:39:ac:3b:89:86:8a:48:ed:6d:d7:04:13:36:22:28:
6c:20:3a:03
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUUHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MDkzODU0WhcNMjUwMzA1MDkzODU0WjAYMRYw
FAYDVQQDEw02NzkzNWZiMi1hNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApNmj8yEuOlug7h2EFjKqFw7Fre1tI5Aze9Sfbj60W3Xxdsc+Ovpi8yid
uu0FgjubmJcOr7mJ5qN7BjbTjDy1ECrPE4fGVZx/dLEL+wvkkfnGYlVLgt3g6MqV
sARv/0Gm0QFqfzUQcfx5JjpGXDhW6LH5PONmu+BSeHqrump6K6kXX31SCi/iSytU
MZ9Jxn+gCXh4zlcjdHcmj6hRrG/56buFLJGqzW7WJCU0VdBc/A4xzcVopAJyWAQq
bgINVMRE3pZrIqSDLQvPAON3b60JMNXNRXk/NlrT+9fd9p15/H0UQkoaJUYHNz+i
OCoRssNvKk5zYZ3+ijbZgquULLl6GwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBNJ
MyeEtLhRNfcy9JLfjipF3BJVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wOENENjcyRURBMzcxMUVGOEY3REIxQTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtvfMA0GCSqGSIb3DQEB
CwUAA4IBAQCrFbdhIhrmxCMGBEO0m039H7SjYLurJ+FCtKiQ5qHJacNzvDdJ2bVO
KWucgvzHkKTR2y+ZLQoxGxy/rS8jIUx5S4UgTjA1bGDb8qICjABSQIpX+3+JV4Wu
uvOMXEG7xSBqDNtI0Ndfysx0cbvJczcofYGvqAKFjpw7ZuFlyx2lmSTcUVlvSyZt
CQzxKoLvsESRvBq1JIbIKPf4WsDFHBcPWnj/Mo+QLp62zLHKFyhOI9e+fc1KPL7u
MAjK72m3nG8A03SdxGwnsn66fb122i5jx5p8I2dcYKm2BZDB0i9CPIF7MqlPu8/W
fy2DoP05rDuJhopI7W3XBBM2IihsIDoD
-----END CERTIFICATE-----
Generated at Sun Apr 27 09:46:06 2025 by rpki-client