Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66CDEB58D8BD11EF80917AB7762E951A.roa
File: 66CDEB58D8BD11EF80917AB7762E951A.roa (raw, json)
Hash identifier: 8ib7bS4zffqa4oyJJUSBI5JZVXcDqlwrQJo37QeSTVs=
Subject key identifier: 71:DB:D6:B5:52:1E:87:65:4B:8E:8D:F9:49:F4:EC:B5:A8:C6:3F:25
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013F46
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66CDEB58D8BD11EF80917AB7762E951A.roa
Signing time: Wed 22 Jan 2025 12:35:46 +0000
ROA not before: Wed 22 Jan 2025 12:35:42 +0000
ROA not after: Sat 08 Feb 2025 12:35:42 +0000
asID: 18229
IP address blocks: 154.210.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81734 (0x13f46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 12:35:42 2025 GMT
Not After : Feb 8 12:35:42 2025 GMT
Subject: CN=6790e622-4a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:19:d8:c6:41:f2:68:25:38:f3:f5:4f:82:49:
e1:a6:0a:8a:40:e9:75:b6:fe:1e:86:0c:5c:1f:4e:
91:5b:24:d6:78:60:0d:10:f0:61:10:af:ca:a3:91:
36:fd:20:bd:59:8e:7e:0a:61:22:f5:04:3b:38:8e:
c7:1c:1c:a1:26:1f:4c:98:8b:d2:fb:ca:2c:15:51:
71:38:01:7f:4f:10:e3:8a:43:fe:e1:ee:f6:36:0a:
61:40:c9:01:fe:53:38:0f:73:ed:32:a3:85:f7:96:
1d:58:77:64:58:0a:7c:32:4e:81:17:83:12:9a:18:
b6:52:cb:5d:89:e5:b1:54:c8:15:a4:a7:9b:da:83:
1b:6f:b5:ea:1a:8a:d7:bf:76:73:13:72:50:ac:10:
e0:2e:ca:3b:81:95:ab:f1:28:6e:86:79:05:3f:e3:
5e:b3:08:a2:40:7c:c8:63:ae:76:c3:d2:e2:73:01:
87:d3:94:d7:bd:8d:66:f6:42:ad:e3:e8:06:d4:8c:
8e:7d:20:0d:f2:eb:62:7b:e2:9b:5c:38:46:29:1e:
f4:6c:1a:65:91:6a:f9:eb:24:32:5f:a3:62:67:4f:
5a:a3:2c:12:c3:ec:f3:89:a1:85:a9:64:4c:ac:c1:
d1:82:f6:b5:a2:a8:61:7b:79:70:ff:43:20:52:a6:
0d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:DB:D6:B5:52:1E:87:65:4B:8E:8D:F9:49:F4:EC:B5:A8:C6:3F:25
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66CDEB58D8BD11EF80917AB7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.137.0/24
Signature Algorithm: sha256WithRSAEncryption
99:23:3d:90:0a:06:b4:72:2f:27:61:b1:a4:b3:11:01:ce:39:
28:ce:d1:97:82:26:89:e4:f8:ad:8c:91:07:97:53:e3:3e:ee:
22:5a:48:3c:1a:3d:6b:b7:b6:79:98:5e:f4:ec:f4:41:c5:54:
15:ec:bc:6f:ee:c5:50:67:69:b4:6f:7d:17:28:c7:5d:73:5d:
d5:4c:a2:46:b2:9b:e4:bc:32:1d:25:54:a0:e3:72:44:61:67:
8b:b0:ff:d2:38:35:54:40:91:b0:de:95:82:a9:4a:40:90:0c:
c6:a1:db:8e:66:66:a7:26:d6:72:58:71:ed:cd:d3:e1:66:20:
51:16:88:98:09:7d:ea:65:7b:1b:23:e5:ac:2b:78:37:1e:93:
e4:e3:47:50:70:6d:83:0e:e1:9c:ee:4d:44:cb:8b:45:e4:73:
06:15:31:70:bc:ad:55:61:dc:b6:a2:d0:89:48:2c:df:18:67:
c8:58:2a:54:e6:6e:ac:cc:5a:39:0b:b9:f7:6b:86:0e:a3:8e:
5d:84:da:7a:0e:86:73:d3:19:4c:e3:72:07:90:95:11:aa:a9:
76:37:01:13:ef:62:8e:61:e6:5c:4d:a4:13:e9:26:ae:ab:7e:
79:6f:93:7d:64:f6:31:9a:14:f2:3c:d2:b8:2d:c8:b6:3c:91:
96:14:41:de
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT9GMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIyMTIzNTQyWhcNMjUwMjA4MTIzNTQyWjAYMRYw
FAYDVQQDEw02NzkwZTYyMi00YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzBnYxkHyaCU48/VPgknhpgqKQOl1tv4ehgxcH06RWyTWeGANEPBhEK/K
o5E2/SC9WY5+CmEi9QQ7OI7HHByhJh9MmIvS+8osFVFxOAF/TxDjikP+4e72Ngph
QMkB/lM4D3PtMqOF95YdWHdkWAp8Mk6BF4MSmhi2UstdieWxVMgVpKeb2oMbb7Xq
GorXv3ZzE3JQrBDgLso7gZWr8ShuhnkFP+NeswiiQHzIY652w9LicwGH05TXvY1m
9kKt4+gG1IyOfSAN8utie+KbXDhGKR70bBplkWr56yQyX6NiZ09aoywSw+zziaGF
qWRMrMHRgva1oqhhe3lw/0MgUqYNkwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHHb
1rVSHodlS46N+Un07LWoxj8lMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NkNERUI1OEQ4QkQxMUVGODA5MTdBQjc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtKJMA0GCSqGSIb3DQEB
CwUAA4IBAQCZIz2QCga0ci8nYbGksxEBzjkoztGXgiaJ5PitjJEHl1PjPu4iWkg8
Gj1rt7Z5mF707PRBxVQV7Lxv7sVQZ2m0b30XKMddc13VTKJGspvkvDIdJVSg43JE
YWeLsP/SODVUQJGw3pWCqUpAkAzGoduOZmanJtZyWHHtzdPhZiBRFoiYCX3qZXsb
I+WsK3g3HpPk40dQcG2DDuGc7k1Ey4tF5HMGFTFwvK1VYdy2otCJSCzfGGfIWCpU
5m6szFo5C7n3a4YOo45dhNp6DoZz0xlM43IHkJURqql2NwET72KOYeZcTaQT6Sau
q355b5N9ZPYxmhTyPNK4Lci2PJGWFEHe
-----END CERTIFICATE-----
Generated at Sun Apr 27 16:48:24 2025 by rpki-client