Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2326A10C29B11EF9F5ABBA0762E951A.roa
File: C2326A10C29B11EF9F5ABBA0762E951A.roa (raw, json)
Hash identifier: cPtFPDqbIVkpGg1PJ0UlBGmbasZLD+HPUZvBdNqDtXE=
Subject key identifier: 3F:DA:92:03:19:83:9C:83:91:53:0E:9A:9C:F1:B1:BA:01:D1:6C:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012502
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2326A10C29B11EF9F5ABBA0762E951A.roa
Signing time: Wed 25 Dec 2024 08:39:31 +0000
ROA not before: Wed 25 Dec 2024 08:39:27 +0000
ROA not after: Sun 09 Feb 2025 08:39:27 +0000
asID: 138915
IP address blocks: 154.223.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75010 (0x12502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Dec 25 08:39:27 2024 GMT
Not After : Feb 9 08:39:27 2025 GMT
Subject: CN=676bc4c2-d144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:7d:07:f8:97:9b:c4:58:5f:b1:b2:41:72:58:
ef:42:4d:47:ed:fc:5b:aa:47:8d:18:cc:96:46:43:
c0:70:c1:d9:5d:89:ee:1a:da:75:43:6f:fa:59:b5:
8d:66:64:c2:4e:7a:67:27:49:16:b4:61:62:0f:63:
db:6f:f2:6c:80:ef:f1:65:10:e3:29:ee:61:00:f2:
a0:6f:92:32:a2:37:93:a6:ad:ec:02:53:9c:6f:89:
c9:9a:1c:0e:0c:b4:6c:cd:60:4f:40:09:9b:4e:b5:
cb:9f:62:20:cd:55:c0:84:50:15:cd:8e:54:fc:bf:
ee:03:79:97:ac:1a:81:d3:e5:9a:73:1e:f2:6e:7e:
2c:40:04:20:ae:fe:0e:6b:cd:c1:fa:47:bd:91:8e:
c3:75:1d:0c:08:f0:a5:ff:03:10:12:97:35:45:22:
99:83:5b:3b:5a:03:3b:cd:2c:77:6c:12:42:03:cb:
ca:45:f8:89:3b:b0:8e:16:1e:84:b5:55:f3:6e:58:
8c:9b:93:78:2c:77:b2:da:97:78:00:71:88:dd:80:
c8:55:e2:16:cf:50:30:a2:0b:fa:29:4f:25:96:b6:
80:c6:a8:62:d6:be:24:c3:a7:bd:2d:8c:06:0b:03:
a3:b6:e4:88:86:64:ea:ac:d1:9d:70:a2:c0:2c:07:
97:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DA:92:03:19:83:9C:83:91:53:0E:9A:9C:F1:B1:BA:01:D1:6C:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2326A10C29B11EF9F5ABBA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.65.0/24
Signature Algorithm: sha256WithRSAEncryption
10:dc:cf:7f:f5:85:5b:9e:77:2e:a7:c4:ff:1d:b0:f9:68:63:
46:5c:c8:d7:d3:40:3c:64:30:f9:79:7e:22:10:c8:69:af:44:
60:46:bb:11:65:68:09:af:33:a2:12:d0:ea:4f:5d:f7:80:9e:
35:70:db:25:54:cc:6c:5c:8e:20:e9:16:a9:3e:97:2b:84:61:
70:a4:a6:12:ec:93:66:cc:e1:d8:ac:6c:5b:59:8f:d9:b0:17:
e1:c3:8f:d0:43:14:fd:cf:c2:39:89:5e:26:89:3f:d2:a8:bf:
51:5c:94:49:1b:47:b2:76:7a:fe:8a:7f:74:17:2f:95:41:81:
c1:d0:e4:5a:01:a0:73:96:80:09:77:02:dc:2d:b3:2b:45:58:
10:b7:1c:dd:c0:64:04:b5:f0:e9:7a:1d:33:b7:af:48:24:ee:
3f:ab:16:99:b5:89:00:66:d0:1e:28:65:8c:8f:19:bd:60:b4:
c3:66:0d:33:a2:c6:01:13:72:02:2f:47:e0:36:e8:2a:b1:44:
1e:50:73:6c:28:fc:e2:6a:c4:7c:36:b3:b7:cb:5f:f3:84:fb:
4f:4c:18:9b:04:a8:42:5e:96:dc:76:63:46:2a:59:0f:27:4c:
14:c0:8f:a9:54:ac:27:43:4c:e2:8c:44:30:65:93:03:30:32:
64:55:3b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:47:43 2025 by rpki-client