Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15CF1CBEDB3211EFB9A9514C762E951A.roa
File: 15CF1CBEDB3211EFB9A9514C762E951A.roa (raw, json)
Hash identifier: +S1VFIcY7R0UABddTt9C4N9qG4TrY6gMiu8LP6HSupQ=
Subject key identifier: 75:ED:D5:A8:EC:F9:2A:89:73:D8:D3:EE:D7:1B:66:F0:2C:4A:96:2D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014A06
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15CF1CBEDB3211EFB9A9514C762E951A.roa
Signing time: Sat 25 Jan 2025 15:36:03 +0000
ROA not before: Sat 25 Jan 2025 15:36:00 +0000
ROA not after: Fri 07 Mar 2025 15:36:00 +0000
asID: 138915
IP address blocks: 154.223.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84486 (0x14a06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 15:36:00 2025 GMT
Not After : Mar 7 15:36:00 2025 GMT
Subject: CN=679504e3-c6a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:4e:ef:0b:58:47:85:c1:10:fa:a5:ef:21:c2:
64:28:29:34:63:8b:55:4a:19:63:30:6f:a4:da:f1:
ad:9e:5c:72:59:4e:58:79:d6:ac:4e:27:a8:4b:8b:
a9:7d:4a:61:e8:e5:8c:85:2a:ef:98:7f:32:5f:21:
ce:bc:94:f2:4a:4c:e6:ac:3f:b3:23:ee:29:23:84:
dd:57:ff:c4:94:df:d1:82:74:ae:ab:2a:c3:5e:74:
bd:16:1b:7f:7d:63:d6:30:62:ec:8b:8c:1b:f9:f1:
e6:87:e0:ed:a1:f3:85:33:cf:14:10:84:67:e9:15:
bd:a1:e0:e0:9e:29:36:12:b9:3d:f8:21:80:2d:65:
60:c1:dc:a0:c6:14:f3:2f:0b:50:fc:28:5c:58:da:
2a:01:f8:50:2b:cc:b4:db:01:e4:f9:0b:da:6f:a8:
e8:f1:a8:7d:11:ef:c9:75:ac:21:44:52:e9:65:44:
01:a9:d8:fc:9b:d3:25:2f:fc:3c:42:8b:a6:d8:18:
82:3f:99:5b:85:ca:21:3d:9a:50:97:a1:aa:63:55:
1d:08:6b:5c:af:3c:39:bd:02:88:30:ee:50:23:49:
a5:f8:e5:bb:04:b5:45:79:fa:ec:de:0d:66:e8:1e:
6f:f5:71:e9:31:01:d4:15:0e:29:8a:71:c2:6b:33:
f8:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:ED:D5:A8:EC:F9:2A:89:73:D8:D3:EE:D7:1B:66:F0:2C:4A:96:2D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/15CF1CBEDB3211EFB9A9514C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.33.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1d:d7:0b:c7:a9:89:94:e0:b4:8b:a5:03:a5:f6:fd:a8:94:
54:25:7b:21:11:f1:a8:b1:51:24:52:e5:71:c2:37:96:6b:2f:
3b:b4:57:fe:f5:3c:d0:07:70:3e:f8:f5:ad:82:8d:af:04:85:
44:e4:55:dc:d2:c8:68:04:7e:52:c0:a3:34:a0:0b:22:b4:de:
02:4f:bb:d2:1d:7d:f0:f6:56:53:5e:af:35:84:c5:c0:1b:66:
ae:85:d4:18:47:67:6d:c5:76:b3:39:7f:28:23:fe:44:92:b7:
6f:73:81:bf:fd:d6:62:b6:e4:0f:c3:59:16:d3:26:8d:8f:be:
cd:52:5b:e8:67:4d:27:d9:c1:dd:f8:8f:d4:4f:44:41:53:b6:
fb:cf:0a:0d:61:a2:5b:15:22:94:c6:6b:d0:39:96:18:f4:ea:
28:91:8c:34:c3:e1:11:be:fb:2f:71:f1:83:11:31:f2:af:77:
32:60:93:43:14:8c:c4:56:4d:0d:3f:78:02:87:22:5c:4a:7d:
5a:e9:de:cc:1c:7b:4b:92:b8:1b:d8:34:3f:c0:30:3f:e0:3d:
70:c7:48:55:7d:d2:97:7f:fc:d0:b2:d6:48:e7:81:fd:3c:de:
be:ee:8c:d0:7d:fa:23:5d:bc:48:c4:40:46:0f:ed:dd:a3:eb:
62:0b:5b:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:59:00 2025 by rpki-client