Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3683892DE1711EFA4C9BC5D762E951A.roa
File: B3683892DE1711EFA4C9BC5D762E951A.roa (raw, json)
Hash identifier: ExgKRONa90k6PH8voMU4CdQATvNvFBr38VNMP4gvP40=
Subject key identifier: 5C:39:B6:34:AA:78:91:B9:55:BD:B3:C9:A0:22:CF:9C:3A:19:DE:47
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D42
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3683892DE1711EFA4C9BC5D762E951A.roa
Signing time: Wed 29 Jan 2025 08:04:45 +0000
ROA not before: Wed 29 Jan 2025 08:04:41 +0000
ROA not after: Wed 05 Mar 2025 08:04:41 +0000
asID: 203020
IP address blocks: 154.203.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85314 (0x14d42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 08:04:41 2025 GMT
Not After : Mar 5 08:04:41 2025 GMT
Subject: CN=6799e11d-1643
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fd:6c:a6:07:b2:97:61:f7:ec:96:a6:a3:65:
4f:24:7e:94:d0:d3:6f:aa:44:71:b9:6c:27:23:96:
eb:51:a9:e0:c1:8b:2d:de:7f:d8:66:9b:ce:e9:36:
4f:85:ea:3e:77:fd:07:28:f5:2c:d8:f5:82:89:63:
c6:b3:63:85:72:f0:97:ff:75:7e:31:e1:c1:bd:1c:
e4:60:f8:33:15:24:7a:b5:23:72:dd:dc:b4:d0:9c:
78:14:ff:ef:9a:29:9c:f4:94:17:60:13:a6:cd:31:
dc:8f:00:70:1b:e2:cf:c7:8c:1d:6a:1d:4b:00:47:
cd:35:55:eb:26:ff:12:2f:41:aa:85:16:c1:8f:3e:
e3:44:a1:ab:17:f6:d7:cb:ec:f5:76:c5:e4:47:66:
f0:ca:7d:40:a9:28:4a:a7:33:0b:70:b9:35:9b:71:
fc:c1:e7:ce:3d:b8:69:9e:c8:fc:68:73:40:e5:ca:
a5:7e:4b:8c:7a:ea:05:e4:48:3d:ea:68:aa:d2:ef:
d6:50:9b:d9:d0:6f:95:3a:14:f1:7a:6f:f9:5c:03:
7b:48:52:3c:77:a1:f2:20:c8:55:31:cf:41:24:1a:
51:32:d6:25:85:69:93:2b:ae:12:68:63:e4:d9:54:
77:a0:6b:48:93:89:51:37:30:e3:9c:3d:fa:c9:ae:
80:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:39:B6:34:AA:78:91:B9:55:BD:B3:C9:A0:22:CF:9C:3A:19:DE:47
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3683892DE1711EFA4C9BC5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.95.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:92:5c:f0:a4:3b:11:55:c4:63:9c:37:8f:2c:e8:a7:0e:45:
ee:ce:e2:a8:83:7c:a9:9f:61:a2:ed:df:b4:05:aa:8c:09:c0:
f3:1e:7f:b8:af:db:83:78:da:61:b5:dd:9c:c6:ce:c0:ac:b6:
74:52:1a:8c:a9:e8:2b:b6:6f:02:b8:d7:21:75:c3:cf:08:e2:
f9:96:a8:67:0e:6f:3c:3b:e9:44:97:8f:de:f2:9f:e6:5c:8d:
ac:4a:5c:d1:6d:61:3a:37:a8:84:93:0e:07:a0:f8:f1:9b:59:
86:af:fe:4f:b2:66:c6:1c:f9:02:7a:f3:1a:a8:83:a6:51:2b:
65:18:54:de:15:d6:8f:5c:dd:bb:d7:11:7d:13:0f:2d:e9:17:
16:4f:0b:c8:2f:fd:80:9c:65:dd:8d:04:7b:18:6d:a0:0c:b4:
8f:0b:10:57:90:54:f8:79:ea:ee:30:30:76:fe:6c:3d:94:a6:
cb:79:20:c1:0f:a1:70:ee:ff:41:cf:eb:46:61:04:94:83:19:
97:d8:1b:8e:f2:f3:63:b1:b8:58:77:3a:43:d9:35:a7:fc:ff:
74:52:a5:7e:01:fa:c3:53:08:9f:6b:e6:24:d5:03:05:ba:fe:
44:64:25:47:c2:8c:14:a8:0f:53:4f:67:60:cd:0a:5d:59:ea:
16:03:21:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 17:01:00 2025 by rpki-client