Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A023DF72B2E111EF830B2F8F762E951A.roa
File: A023DF72B2E111EF830B2F8F762E951A.roa (raw, json)
Hash identifier: ktyVneYbAJu4lm/EtxFPNmahTn7mLqKelFO5kEuB8FM=
Subject key identifier: D2:5C:C1:48:9A:36:F1:5A:F6:8D:28:29:D5:0B:C7:D1:7D:5D:99:1B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011823
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A023DF72B2E111EF830B2F8F762E951A.roa
Signing time: Thu 05 Dec 2024 08:19:20 +0000
ROA not before: Thu 05 Dec 2024 08:19:16 +0000
ROA not after: Sat 01 Feb 2025 08:19:16 +0000
asID: 6453
IP address blocks: 154.210.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71715 (0x11823)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 5 08:19:16 2024 GMT
Not After : Feb 1 08:19:16 2025 GMT
Subject: CN=67516207-1e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:4f:36:b5:db:cd:ce:fc:d6:dc:f7:02:dc:fc:
ff:6b:1e:21:d1:ac:5f:d2:e6:39:4f:35:09:8f:5a:
77:42:47:fa:e7:ed:5b:ff:1a:01:c4:95:67:e4:75:
65:79:2f:ff:61:3d:df:04:99:17:4a:31:a8:1b:90:
ea:5c:8d:6d:59:f9:7b:6f:1d:12:e5:4b:b6:38:fa:
af:3d:73:b6:9f:48:59:5d:85:2e:56:1d:46:49:89:
f5:07:33:f4:25:64:4d:6d:02:a1:f2:7f:ab:37:80:
c9:e5:80:3c:6e:f2:e4:83:b3:2e:4f:ee:51:f2:94:
8e:23:31:d2:4d:7d:f3:49:a0:47:81:64:4f:08:3f:
e8:5a:21:03:5c:01:02:46:c2:78:9a:53:da:5d:db:
22:b1:05:ab:7e:67:11:13:93:13:8e:3f:71:f4:91:
64:eb:9d:96:41:7e:f7:d0:98:e3:26:64:98:b7:0b:
b8:dd:68:d4:c9:ab:eb:66:f0:de:f3:db:0f:e6:b5:
f4:bc:e0:56:43:d5:7f:57:d1:0b:f3:c1:0b:d9:a7:
3a:89:c1:80:09:a2:f7:c2:83:e4:61:27:24:cc:2b:
95:48:20:46:f0:36:4b:20:b6:79:91:22:d6:c1:30:
bf:7c:07:af:d9:73:4e:c3:50:67:3b:48:07:7c:4e:
b7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5C:C1:48:9A:36:F1:5A:F6:8D:28:29:D5:0B:C7:D1:7D:5D:99:1B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A023DF72B2E111EF830B2F8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.222.0/24
Signature Algorithm: sha256WithRSAEncryption
08:88:13:aa:bd:31:55:57:fc:99:20:72:57:ee:8a:b7:96:ec:
6b:b9:48:2f:b6:e3:01:26:73:91:8e:82:04:bc:47:60:62:73:
04:62:1f:f2:57:91:59:9c:20:98:0e:f8:69:83:92:f8:15:43:
ae:fd:78:fa:bf:b8:c4:c0:c3:bc:8b:dd:27:f9:1b:18:d1:43:
c0:e8:df:ac:9f:c8:64:f3:02:0c:c5:f3:9b:90:e5:69:02:3b:
5f:40:8f:9d:70:35:3a:ae:77:08:39:e1:98:8d:dc:95:a6:2a:
b6:3a:9c:d5:b6:ae:86:b8:d8:38:99:af:3b:2b:2a:34:08:6b:
0b:bf:f7:cb:eb:cf:3b:5c:7d:6b:6f:5d:d6:b4:17:e9:18:80:
ee:23:e5:20:86:43:41:99:dc:a4:05:e1:4a:8f:c0:9e:46:e2:
c5:be:24:50:c3:08:01:ce:44:79:37:da:6f:18:78:53:03:7a:
2c:ec:f6:38:29:8b:c3:b0:87:c0:bb:a4:b3:31:e3:35:76:75:
13:50:88:89:2f:fd:48:dc:95:59:9a:79:9d:d0:58:02:a3:bf:
b5:7a:ea:3e:bf:3f:47:2d:97:d3:6a:bd:7d:29:0b:ac:ab:7e:
37:62:27:82:6e:0c:e6:89:e8:ef:2d:b6:8a:d7:ee:20:38:f8:
d2:68:71:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:59:11 2025 by rpki-client