Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58244224DA6A11EF90098385762E951A.roa
File: 58244224DA6A11EF90098385762E951A.roa (raw, json)
Hash identifier: jZbW/+oiOAVDE37Rb+yfa8BnH74sdtNHkDwHkcTCRfk=
Subject key identifier: 46:93:DC:31:03:8C:8E:C2:A1:5F:37:22:CD:4B:4C:F1:7A:F6:C6:96
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0148C3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58244224DA6A11EF90098385762E951A.roa
Signing time: Fri 24 Jan 2025 15:46:15 +0000
ROA not before: Fri 24 Jan 2025 15:46:12 +0000
ROA not after: Mon 03 Mar 2025 15:46:12 +0000
asID: 203020
IP address blocks: 154.223.142.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84163 (0x148c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 15:46:12 2025 GMT
Not After : Mar 3 15:46:12 2025 GMT
Subject: CN=6793b5c7-8f66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:65:42:98:1c:0f:ba:2c:14:11:ea:44:10:f2:
ea:fa:81:63:fd:1d:e8:4a:d9:f4:79:2f:83:06:93:
06:59:4b:56:83:01:e4:29:87:62:f3:72:7f:ef:8f:
42:89:33:f7:0b:92:ac:47:1a:54:56:13:9a:8d:4a:
3b:cb:a7:af:d4:c1:54:c3:9e:5d:dc:3e:40:d8:48:
e1:b9:65:4f:39:1d:63:0b:b8:be:de:aa:31:40:7a:
c5:4d:f4:ce:f4:2a:ef:22:a8:91:01:8d:9c:6b:57:
1e:0d:5d:90:be:42:7e:76:8b:48:d8:68:38:87:db:
74:37:8f:d8:1b:c2:69:5b:99:a7:23:a3:8b:da:75:
5a:b4:02:ec:89:ae:7f:23:4f:0b:f8:08:c9:2d:81:
08:83:86:1a:4c:fa:4b:1d:f5:07:79:06:5e:90:13:
f8:c5:39:60:c5:8b:2b:aa:d8:6d:a3:36:e7:69:1e:
03:80:7b:c7:89:5e:df:71:42:e4:40:7d:6d:d7:08:
3c:56:20:4c:a0:e0:c4:2b:f4:4a:2f:c0:12:10:7d:
59:e3:2e:94:ad:30:19:4a:20:59:88:01:92:0b:bf:
a8:5f:be:6a:a4:d8:2f:9c:53:8b:68:f6:05:78:05:
e9:87:c5:0b:be:8f:2d:fd:79:9f:8c:a0:1c:fa:79:
5c:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:93:DC:31:03:8C:8E:C2:A1:5F:37:22:CD:4B:4C:F1:7A:F6:C6:96
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58244224DA6A11EF90098385762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.142.0/24
Signature Algorithm: sha256WithRSAEncryption
23:04:4b:2d:4e:a9:09:a4:83:1a:3e:20:0c:8e:86:ac:1d:f6:
39:44:15:75:36:3f:0e:5e:d7:35:c3:65:95:60:cc:59:6c:93:
e9:ef:34:58:14:16:3a:df:ee:7c:31:c9:c5:09:e5:03:71:80:
31:a8:63:97:73:93:9b:73:b8:55:c1:68:29:f7:13:2e:f7:3a:
76:c8:93:23:39:e2:62:10:d8:9d:90:b6:63:70:d3:57:49:d6:
d5:f6:32:d4:56:25:2d:e4:fd:5f:38:a6:3c:a7:49:ef:74:7e:
51:32:36:5b:2f:ab:42:0b:48:48:f6:50:ee:e3:25:f5:f8:44:
ed:54:d9:5f:ca:d2:e2:bd:0f:13:f3:f8:d7:68:5f:6e:e2:76:
0c:0f:06:9f:d5:3c:a2:98:7f:91:82:c1:37:7a:49:3a:c3:10:
27:7f:c8:fd:83:8f:84:79:87:cc:40:de:1d:d8:10:ff:0b:f4:
e9:3c:29:58:2f:11:e9:3b:7e:1f:30:fa:97:46:69:69:91:b0:
d6:e1:ce:41:e6:8e:89:a2:f8:5d:c5:a3:26:e8:04:3c:90:58:
6f:b1:53:78:74:50:8d:56:5a:f1:ed:5d:3f:a8:d1:1a:20:59:
8b:07:d1:50:80:d7:91:9a:b2:e7:4a:07:8a:ff:04:59:32:bf:
54:29:7b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 17:03:20 2025 by rpki-client