Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31C035E4DA6411EFAB69BA5E762E951A.roa
File: 31C035E4DA6411EFAB69BA5E762E951A.roa (raw, json)
Hash identifier: c5AmUTDXh0/7NQV6lViYhAMU3PhM20WXepQajKNSkt8=
Subject key identifier: 01:E9:F2:45:74:C6:88:7B:FF:D8:D8:5B:7D:E9:F0:C2:D7:6D:A5:89
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01488C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31C035E4DA6411EFAB69BA5E762E951A.roa
Signing time: Fri 24 Jan 2025 15:02:14 +0000
ROA not before: Fri 24 Jan 2025 15:02:10 +0000
ROA not after: Sat 01 Mar 2025 15:02:10 +0000
asID: 44559
IP address blocks: 154.203.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84108 (0x1488c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 15:02:10 2025 GMT
Not After : Mar 1 15:02:10 2025 GMT
Subject: CN=6793ab76-1817
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3f:9e:fe:d5:61:c5:3b:3f:ba:c3:94:93:ae:
6e:59:e0:62:25:f0:57:fa:04:61:a4:3a:95:5d:b1:
c6:ca:a2:f0:2e:02:67:68:d1:c6:ac:7c:e4:4e:6d:
78:97:fa:ab:e9:f4:13:91:81:73:50:dc:5a:58:61:
48:d2:dc:e8:69:11:fe:e6:d1:2e:0c:cf:09:83:98:
6d:46:f0:1c:23:83:84:04:b4:9c:da:b7:77:c5:83:
9d:e3:ed:f1:51:5a:fc:f9:a9:67:29:d5:0f:8f:2a:
e3:2e:33:9f:3f:0c:41:8c:81:8b:e4:06:79:dc:a6:
e8:55:ba:3f:a3:65:fe:df:23:4f:a6:bc:36:a3:52:
d9:ec:4a:5b:14:7f:9b:55:e9:fb:16:f0:df:60:6d:
55:2d:61:ba:1f:de:30:3c:b6:d9:6b:27:40:31:e1:
40:39:e1:3b:26:6a:19:d7:3c:97:64:d0:82:56:12:
fc:ab:68:ff:bd:9b:17:8d:01:18:77:aa:0e:22:d4:
ed:2a:fe:63:43:cd:da:51:f9:7f:f1:d4:c9:65:88:
f0:17:0b:11:5c:b4:9d:cd:38:75:ec:49:44:0e:1d:
76:fb:0a:f6:d1:f3:c3:99:b9:1c:1b:cf:c5:ac:09:
f8:60:59:23:29:99:1c:55:15:87:18:e2:85:4f:b6:
6d:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:E9:F2:45:74:C6:88:7B:FF:D8:D8:5B:7D:E9:F0:C2:D7:6D:A5:89
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/31C035E4DA6411EFAB69BA5E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.221.0/24
Signature Algorithm: sha256WithRSAEncryption
10:57:3a:6e:53:e8:67:13:2a:0c:81:1d:5f:36:1d:97:e1:41:
c6:7d:ed:7d:70:3c:84:66:ab:17:8f:7c:85:c4:ff:2e:11:7a:
df:69:2d:70:ef:f6:ea:b5:33:b1:9f:16:57:af:7d:42:14:0e:
91:00:47:56:b4:1a:1f:cc:0e:0d:bf:5c:6c:f3:f6:fd:6e:31:
cd:09:7e:fb:73:17:d1:d5:68:f8:51:ad:7d:bf:9c:c7:ce:2a:
5a:ad:ef:72:b4:4a:e0:14:83:7a:74:1f:9d:b6:24:67:b7:6a:
4d:ac:b3:43:22:cd:51:c0:e8:60:ba:43:b0:d6:18:65:bb:c7:
78:b8:7d:8a:91:3f:72:81:0f:ea:f6:c8:3d:93:89:51:d1:ac:
e6:62:e0:99:58:35:01:34:82:d6:0c:09:90:0c:4a:44:0c:f3:
71:b8:77:3f:5c:4e:55:8a:17:60:bf:ba:2c:dd:f7:c5:4e:41:
2a:87:c7:d3:67:c5:05:41:d5:8a:b0:cf:ba:45:0e:b7:c9:3f:
1f:9a:28:44:25:7d:b7:47:de:ef:8c:bc:75:6a:f7:f6:f6:41:
3e:c8:81:91:f7:a2:58:e4:b7:90:d2:30:b0:33:19:2b:f8:ea:
f0:9c:41:4c:23:53:0b:26:29:a4:9c:50:97:1d:7a:43:a8:c1:
36:e3:67:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 14:18:15 2025 by rpki-client