Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E03B6B0DA4F11EF9632AF50762E951A.roa
File: 8E03B6B0DA4F11EF9632AF50762E951A.roa (raw, json)
Hash identifier: nCRDgQ/q60CitQd9++fF1LvHTmqPZxJsEGREeS1IDy8=
Subject key identifier: DD:2C:B4:BA:96:8A:E2:73:12:3B:1C:03:22:33:22:AA:35:33:29:9A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0146DA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E03B6B0DA4F11EF9632AF50762E951A.roa
Signing time: Fri 24 Jan 2025 12:34:29 +0000
ROA not before: Fri 24 Jan 2025 12:34:25 +0000
ROA not after: Sat 01 Mar 2025 12:34:25 +0000
asID: 44559
IP address blocks: 154.205.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83674 (0x146da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 12:34:25 2025 GMT
Not After : Mar 1 12:34:25 2025 GMT
Subject: CN=679388d5-48c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:49:40:f4:c6:67:53:cd:97:54:b5:b8:8e:5c:
0a:18:b2:43:2b:32:9a:aa:3d:c8:02:82:7c:6d:9c:
94:c0:9a:88:d6:29:08:7d:aa:b3:5c:8f:cc:58:02:
a3:f3:c4:0d:14:4e:4b:5c:68:e9:a1:68:a9:34:be:
0b:61:8e:7d:89:08:a5:98:d5:15:48:a0:94:10:38:
e2:3e:fe:f7:9b:af:a3:3b:41:43:69:46:e3:1b:1e:
86:95:04:f4:1a:63:56:9f:22:ad:1d:2e:bd:12:78:
83:15:92:03:fb:87:a9:9f:a9:41:99:75:5c:de:af:
50:ce:a8:64:98:f8:ac:c8:1d:81:49:e5:36:85:30:
bd:2e:f0:80:63:40:09:de:e6:a7:ab:29:26:7b:e2:
ac:b7:a8:90:ab:c3:b7:ba:a0:78:f1:b8:d8:81:25:
44:74:50:78:f9:b9:af:fe:ca:12:03:13:cb:4f:cc:
0f:9f:8f:dd:6e:7b:4f:a8:c4:e5:37:57:8f:a4:df:
1c:fe:4d:83:5b:45:ab:f7:2b:65:78:fb:1b:2e:22:
01:f4:c3:85:0e:27:a0:4a:27:4e:b0:88:d4:de:6c:
24:31:de:e5:3a:91:79:a9:de:5f:75:a2:37:1b:51:
b4:02:aa:3c:e9:40:05:37:7c:03:d2:2e:a9:4f:34:
84:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:2C:B4:BA:96:8A:E2:73:12:3B:1C:03:22:33:22:AA:35:33:29:9A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8E03B6B0DA4F11EF9632AF50762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.233.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:26:57:1e:f1:50:53:29:14:52:7f:65:b1:61:83:86:39:3a:
e1:da:e3:c5:69:cb:7f:eb:f5:e0:c1:cd:b5:95:56:be:e7:df:
1f:5d:2d:d6:b1:1d:32:b5:e5:ad:63:e5:34:43:0b:e7:26:d4:
f2:4e:8f:a6:7c:51:62:a6:f5:e0:a4:29:2d:59:11:f6:d3:66:
20:32:7f:30:c5:96:03:a3:78:5a:e4:9c:f7:65:1f:b3:1f:ec:
15:84:ea:19:a9:7d:68:4a:c6:f0:ce:c9:31:68:20:9e:a5:04:
c6:18:01:d2:d2:f7:5a:a5:29:73:27:c8:d1:68:ba:11:3d:6b:
8a:fd:2b:b7:8f:c3:71:f8:b3:8f:c9:38:21:bc:fe:83:b3:d6:
6e:e3:5e:09:ef:07:4f:60:e4:4a:d2:72:b2:a0:da:73:c6:da:
e2:0c:8c:43:a7:60:7c:68:15:06:02:e1:c5:d6:b3:da:e4:cc:
cc:e9:1c:84:d2:c3:2b:3d:f9:5b:dd:42:46:d2:d1:fc:82:f2:
cc:fb:00:79:43:8a:d4:9f:68:03:3f:c4:99:94:15:0a:d2:a4:
a1:31:96:10:19:e4:d5:b3:fc:b1:dd:8a:2d:43:2a:f7:69:54:
aa:0b:e8:3a:16:e5:d0:46:fd:e7:83:e8:13:02:a2:7c:45:44:
40:83:7d:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 10:06:57 2025 by rpki-client