Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/483FC80ADBEC11EFBE4D90B3762E951A.roa
File: 483FC80ADBEC11EFBE4D90B3762E951A.roa (raw, json)
Hash identifier: y2o90yijPy6PVeF8G73/GLmAGkYT99fnCzIcCJlHzM4=
Subject key identifier: 43:EE:71:10:A2:1C:DF:D6:55:BF:FD:B4:F9:EA:A7:CF:4F:47:6A:97
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014AAA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/483FC80ADBEC11EFBE4D90B3762E951A.roa
Signing time: Sun 26 Jan 2025 13:48:54 +0000
ROA not before: Sun 26 Jan 2025 13:48:50 +0000
ROA not after: Fri 07 Mar 2025 13:48:50 +0000
asID: 205125
IP address blocks: 154.203.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84650 (0x14aaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 26 13:48:50 2025 GMT
Not After : Mar 7 13:48:50 2025 GMT
Subject: CN=67963d46-668e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0f:a8:ef:bd:a1:bb:28:31:e6:24:e3:0c:dd:
4e:de:56:3d:63:b0:8e:11:21:ed:91:f0:df:73:4d:
e2:a4:eb:96:61:b1:15:10:6f:9f:7e:4f:fd:72:12:
7b:69:34:1e:7b:ef:e4:7b:4d:ee:c7:3b:f3:ed:94:
a2:51:fa:2c:24:2a:d4:1f:d9:bb:ff:5d:98:60:c8:
7d:7d:ca:50:5e:e1:36:45:3e:d9:44:ff:42:55:4b:
1c:b0:31:42:c7:8a:90:11:22:c5:05:58:35:36:84:
cc:77:a3:38:84:34:d8:35:1a:40:3e:ec:13:51:4d:
ae:f2:73:4c:10:96:1b:45:79:db:d7:01:88:90:87:
ea:d4:14:1e:d4:99:2b:9a:d2:ae:ec:7b:09:40:71:
51:e9:0a:9a:7e:fd:9d:a2:26:a1:de:75:4a:b1:6b:
14:f2:7b:98:ec:fc:02:22:f2:10:87:3d:3e:a8:5f:
97:b3:61:99:91:eb:6f:46:1b:59:08:3d:77:7c:95:
c3:4a:b2:92:f7:e4:1f:4f:3f:cd:80:67:ad:38:69:
47:1b:f1:4f:49:a8:9e:3d:7c:e2:16:03:29:32:4f:
06:84:aa:41:01:d1:97:e6:c7:e3:53:9c:be:41:09:
26:43:e6:fa:2b:f6:1a:21:1a:ca:fc:f0:30:40:71:
c0:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:EE:71:10:A2:1C:DF:D6:55:BF:FD:B4:F9:EA:A7:CF:4F:47:6A:97
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/483FC80ADBEC11EFBE4D90B3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.194.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:c6:62:3e:0e:93:44:d5:2e:96:79:af:0a:75:b9:f6:82:1b:
70:34:80:3c:2e:5b:ae:5d:c2:29:d7:9c:ec:1b:a5:12:7c:f3:
ab:3e:0d:b4:39:a0:84:e2:fb:9c:09:dc:b9:c6:ff:a6:59:67:
6c:de:7d:92:9c:8a:53:9d:0d:c5:d9:9b:c2:01:a1:18:0f:4a:
87:71:ed:03:e6:8c:3f:e3:c9:69:5a:43:ca:d6:92:df:77:88:
b0:54:e2:95:6c:98:74:bd:50:e5:fe:7c:7c:7d:e1:83:65:65:
dd:b9:dd:16:28:9b:29:16:6f:25:f1:8b:28:17:90:61:c7:ad:
0b:28:9e:89:21:06:b7:a6:47:ef:8a:34:b7:5c:c8:23:67:3f:
1a:15:37:af:24:d7:20:32:29:a6:73:f5:12:60:4f:c1:7c:26:
6a:59:cc:4a:4a:1d:4d:c2:67:ae:94:ab:5a:f4:a7:cb:9b:3e:
14:7d:0d:93:c6:75:d5:96:18:2e:5c:d0:cd:4d:62:85:d9:a3:
79:fd:9b:9e:0b:f8:29:9e:61:e4:43:c8:59:92:58:a3:b6:58:
20:ae:28:4f:4b:c1:34:3c:64:c5:72:a5:f8:04:23:d0:83:2f:
a6:6a:a3:64:ef:ad:a5:bd:ce:f9:b6:0a:61:e8:fd:43:07:05:
c0:30:a5:af
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUqqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI2MTM0ODUwWhcNMjUwMzA3MTM0ODUwWjAYMRYw
FAYDVQQDEw02Nzk2M2Q0Ni02NjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0Q+o772huygx5iTjDN1O3lY9Y7COESHtkfDfc03ipOuWYbEVEG+ffk/9
chJ7aTQee+/ke03uxzvz7ZSiUfosJCrUH9m7/12YYMh9fcpQXuE2RT7ZRP9CVUsc
sDFCx4qQESLFBVg1NoTMd6M4hDTYNRpAPuwTUU2u8nNMEJYbRXnb1wGIkIfq1BQe
1JkrmtKu7HsJQHFR6Qqafv2doiah3nVKsWsU8nuY7PwCIvIQhz0+qF+Xs2GZketv
RhtZCD13fJXDSrKS9+QfTz/NgGetOGlHG/FPSaiePXziFgMpMk8GhKpBAdGX5sfj
U5y+QQkmQ+b6K/YaIRrK/PAwQHHAAQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEPu
cRCiHN/WVb/9tPnqp89PR2qXMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80ODNGQzgwQURCRUMxMUVGQkU0RDkwQjM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsvCMA0GCSqGSIb3DQEB
CwUAA4IBAQAqxmI+DpNE1S6Wea8Kdbn2ghtwNIA8LluuXcIp15zsG6USfPOrPg20
OaCE4vucCdy5xv+mWWds3n2SnIpTnQ3F2ZvCAaEYD0qHce0D5ow/48lpWkPK1pLf
d4iwVOKVbJh0vVDl/nx8feGDZWXdud0WKJspFm8l8YsoF5Bhx60LKJ6JIQa3pkfv
ijS3XMgjZz8aFTevJNcgMimmc/USYE/BfCZqWcxKSh1NwmeulKta9KfLmz4UfQ2T
xnXVlhguXNDNTWKF2aN5/ZueC/gpnmHkQ8hZklijtlggrihPS8E0PGTFcqX4BCPQ
gy+maqNk762lvc75tgph6P1DBwXAMKWv
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:40:07 2025 by rpki-client