Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/255BB9C6DD7611EF9505CD9B762E951A.roa
File: 255BB9C6DD7611EF9505CD9B762E951A.roa (raw, json)
Hash identifier: nrYzpPr91+IsfaU3Xq+ytNAqWKpoK7m5oLGEY61Qeys=
Subject key identifier: D4:EB:4B:79:15:6A:3E:6A:62:9A:5A:6C:5A:B3:B4:FA:21:CD:54:6D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D1A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/255BB9C6DD7611EF9505CD9B762E951A.roa
Signing time: Tue 28 Jan 2025 12:48:17 +0000
ROA not before: Tue 28 Jan 2025 12:48:14 +0000
ROA not after: Tue 25 Feb 2025 12:48:14 +0000
asID: 5065
IP address blocks: 154.206.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85274 (0x14d1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 12:48:14 2025 GMT
Not After : Feb 25 12:48:14 2025 GMT
Subject: CN=6798d211-cdd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6f:d4:35:ae:8d:f8:7d:33:8e:d8:e0:d3:82:
c6:fd:4a:2b:44:17:ec:d4:47:e5:0f:b1:71:8f:fe:
03:83:b3:c3:0f:0f:d8:42:fb:0c:c2:29:ad:b5:44:
82:87:af:f1:60:d7:52:60:7a:f4:55:32:2d:9b:40:
1b:0c:0b:07:ed:e2:31:1f:98:9e:cc:b6:1d:ce:8f:
56:0a:30:c4:31:b2:10:a0:79:f6:6d:d2:19:96:8c:
89:5b:5d:8e:26:05:c9:48:b1:30:15:42:27:0b:92:
0f:b8:89:29:88:57:57:22:5f:4f:ce:62:f1:02:67:
1c:04:e8:23:0d:0a:f9:38:0a:b6:02:14:14:f7:5d:
88:fc:ca:37:1e:7a:7e:93:09:12:dc:18:27:cf:cc:
39:e2:77:45:6e:7a:93:b7:c6:54:a1:e0:0b:51:50:
aa:4f:d0:fa:2c:b3:14:20:a8:77:bc:dc:c8:ff:ae:
d6:71:17:3f:0a:f0:9e:84:a4:67:94:ab:ef:60:3c:
f6:0c:c8:11:8e:8a:63:c0:e1:75:2f:70:ac:03:ac:
31:1c:71:b1:26:8d:1f:1d:a9:c8:40:00:11:4c:75:
2a:61:a3:e2:3a:54:f5:17:31:2f:28:0a:d6:95:75:
48:97:f5:f1:75:99:36:e5:e8:4d:dd:b8:97:f8:ef:
6f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EB:4B:79:15:6A:3E:6A:62:9A:5A:6C:5A:B3:B4:FA:21:CD:54:6D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/255BB9C6DD7611EF9505CD9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.37.0/24
Signature Algorithm: sha256WithRSAEncryption
11:2b:56:b0:19:6c:63:f4:ea:64:84:04:08:cb:1e:bb:a5:e5:
13:69:f7:84:17:57:b2:fd:bc:14:8c:a6:48:1a:9a:37:0e:80:
62:ad:df:f5:59:10:27:3b:27:27:0c:65:36:6d:73:51:cc:76:
ae:15:0b:46:b8:ef:4c:c2:72:f9:fe:a6:90:88:0d:ff:a0:37:
89:bb:fd:46:f2:29:83:57:ba:de:77:9b:aa:c4:d1:3e:96:50:
6e:2d:29:80:cc:1b:a0:2f:fa:bf:19:1b:68:a1:27:ae:cd:b7:
3c:37:d2:1e:81:ec:53:84:3f:bd:3c:24:22:84:70:5b:2c:d7:
a4:21:b1:5e:f0:56:a5:ad:4a:d5:d2:60:cc:ca:10:d8:ea:55:
3c:5c:7b:1d:4b:ab:5e:2a:db:3a:43:10:1f:af:ef:c2:5c:05:
bf:a6:f7:f6:a2:bf:36:89:41:8e:7c:48:73:b7:c8:a5:04:ca:
74:68:ce:0e:59:bc:64:0a:f9:db:10:d4:ee:22:01:d9:2b:97:
e0:97:3d:e6:5d:34:3d:56:86:55:5e:2b:87:d4:86:9f:c7:fb:
83:cf:26:58:53:c6:33:88:53:e1:1c:fb:c2:fa:53:bf:61:1c:
7a:65:4b:f6:7c:f8:e6:a6:a7:64:ba:25:75:2c:d7:18:d1:71:
a8:02:3a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 04:23:00 2025 by rpki-client