Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58FD16A4DA4111EF9329D271762E951A.roa
File: 58FD16A4DA4111EF9329D271762E951A.roa (raw, json)
Hash identifier: PiU6p9CiuAQG3mL42fdqQ0NB4xVj5EClp5gaEyxyo1o=
Subject key identifier: BE:23:7F:0C:64:68:56:D8:8C:8A:BD:08:90:AA:6D:7C:01:DC:5A:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0145C7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58FD16A4DA4111EF9329D271762E951A.roa
Signing time: Fri 24 Jan 2025 10:52:47 +0000
ROA not before: Fri 24 Jan 2025 10:52:43 +0000
ROA not after: Wed 05 Mar 2025 10:52:43 +0000
asID: 202656
IP address blocks: 154.219.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83399 (0x145c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 10:52:43 2025 GMT
Not After : Mar 5 10:52:43 2025 GMT
Subject: CN=679370ff-d10b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:2f:8f:18:46:24:f2:78:73:dd:48:91:e8:ec:
ae:37:40:77:e6:dd:67:b1:50:13:c5:a2:ab:45:e3:
99:c1:f0:bd:07:39:43:07:39:50:8d:af:d6:bc:fb:
d3:fb:ac:74:ea:9e:8c:56:75:f8:97:be:3c:86:1f:
13:ec:02:83:b2:c7:b4:0a:1b:9e:fb:ea:88:32:1e:
c8:08:0f:e4:c9:e7:e0:eb:ec:a1:4a:27:42:9f:4a:
bc:75:d9:9d:2a:c2:7f:91:75:80:d8:5b:a1:bf:8e:
b5:b5:2d:8a:87:8f:ed:9c:c0:3e:b0:9d:53:12:da:
4b:43:07:f4:2b:61:0b:fa:c1:be:89:9d:21:ab:f0:
b7:21:8d:9a:1b:9a:a9:40:33:ce:69:f2:fb:3b:e9:
4a:fe:41:85:ee:bc:61:5c:41:87:e9:a0:ef:11:f5:
74:d4:7e:6b:89:39:05:b9:1e:a7:2b:78:0e:ee:d1:
68:2b:c7:99:53:3a:25:d6:18:20:f7:d7:af:0c:90:
52:cb:ca:ff:d0:35:61:19:75:29:4d:c0:55:80:6d:
95:37:f5:e3:58:41:3f:4e:67:c2:46:a6:d4:55:2b:
84:d4:65:85:8c:38:03:32:da:e6:cf:ad:51:27:6a:
00:59:e8:fc:79:64:3c:14:a7:18:d6:a2:ad:e5:76:
8d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:23:7F:0C:64:68:56:D8:8C:8A:BD:08:90:AA:6D:7C:01:DC:5A:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/58FD16A4DA4111EF9329D271762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.26.0/24
Signature Algorithm: sha256WithRSAEncryption
46:b7:7a:29:73:9c:fd:ef:e5:3e:82:2e:94:b4:a8:1b:55:68:
62:df:3e:43:95:6b:c7:5b:fb:c6:9d:06:67:60:52:78:92:b1:
e3:52:00:a8:96:35:98:2b:d0:4f:2b:1a:75:7f:1c:04:e8:18:
7c:7c:7e:82:35:e6:88:fe:1f:13:20:78:c3:7d:0c:6e:1a:2d:
d9:2d:81:90:8a:22:0a:ae:f2:db:8c:26:57:12:7e:2f:e6:55:
ea:58:b8:00:10:f2:cc:3b:9a:e7:98:03:21:65:73:b9:3a:59:
df:bf:3e:3b:ee:76:27:6b:c9:74:68:92:ae:94:bc:48:d2:28:
cc:4a:08:cd:9b:92:78:b1:3e:37:d5:7a:54:cb:a7:36:06:f5:
34:6d:78:25:a5:6e:66:75:77:2f:af:25:0a:3c:d3:94:67:b2:
14:ff:ae:de:22:7d:3a:fe:5b:e6:ff:cb:88:82:9b:cd:06:44:
76:6e:74:2c:69:4b:2e:d1:9c:c0:a9:55:29:8f:4f:31:19:28:
a1:91:11:aa:e5:9b:27:97:4d:4f:23:92:4d:0a:e6:ec:23:b5:
d8:3a:eb:62:75:4d:07:38:f1:a4:63:1b:23:e8:bd:63:71:ac:
6c:b6:11:a6:9c:4f:06:00:9e:e6:c4:02:30:ba:55:7d:09:f5:
2b:ee:24:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 09:51:31 2025 by rpki-client