Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E185DB96CF3311EF9BD31BBE762E951A.roa
File: E185DB96CF3311EF9BD31BBE762E951A.roa (raw, json)
Hash identifier: xikQKqpf7jrO/c3pfKT71PCH+PENxE3eJBKlQp22oBc=
Subject key identifier: 07:28:EA:8E:88:A0:E1:32:55:BD:93:9A:6D:07:20:13:64:04:E6:9D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0139DD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E185DB96CF3311EF9BD31BBE762E951A.roa
Signing time: Fri 10 Jan 2025 09:18:41 +0000
ROA not before: Fri 10 Jan 2025 09:18:37 +0000
ROA not after: Fri 07 Feb 2025 09:18:37 +0000
asID: 5065
IP address blocks: 154.94.46.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80349 (0x139dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 10 09:18:37 2025 GMT
Not After : Feb 7 09:18:37 2025 GMT
Subject: CN=6780e5f0-35c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:63:6f:f1:bf:61:76:9b:a3:2a:a7:a3:81:b7:
3d:6e:3f:c3:67:e1:de:bf:03:99:7f:0f:74:f8:a7:
35:4e:43:d0:5b:9f:0b:04:cc:08:11:03:11:e8:a4:
5e:07:6c:50:c3:21:9f:37:f8:cf:f2:e1:71:6f:e5:
bf:a6:57:ac:cb:0a:6e:ef:f4:51:39:02:b4:67:06:
0a:02:d0:d5:1d:9b:65:1d:b4:d0:d3:3e:9a:35:96:
6c:1d:fa:d4:7f:fb:4b:64:c1:d4:c6:c9:3d:b4:cb:
67:ab:b0:57:b6:2b:45:cf:2c:8e:5a:18:1d:65:bd:
7c:df:41:58:49:39:32:3f:56:9d:9c:2b:d6:e3:fa:
68:d5:58:bc:09:28:ad:a8:ea:58:5d:92:5e:18:cd:
c1:fe:2f:7a:55:8a:b7:d1:2c:b5:bd:37:b9:62:ad:
47:05:e1:3d:4b:01:32:76:2d:f4:09:89:5d:c6:bc:
05:81:c0:b8:57:8b:09:b2:0c:26:33:39:72:7b:da:
39:70:4a:60:1a:ed:45:cb:df:19:90:4e:6e:1a:fd:
bd:71:7e:32:a6:84:ed:7f:8c:4a:5a:e8:82:e5:95:
3d:99:03:12:1f:53:b1:1a:98:52:6e:86:70:e5:a5:
d3:23:ce:6d:7e:68:09:d6:c7:f5:7c:a8:c5:47:d4:
82:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:28:EA:8E:88:A0:E1:32:55:BD:93:9A:6D:07:20:13:64:04:E6:9D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E185DB96CF3311EF9BD31BBE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.46.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:ea:e8:72:90:14:c1:13:4f:1f:72:51:db:89:c2:0b:c6:93:
97:42:bb:a4:6d:ca:7d:b1:e4:36:e7:ee:d0:fa:36:51:a4:ba:
e4:42:0a:9c:d3:85:c2:df:9a:bb:83:60:92:c0:97:f8:f5:6e:
d8:30:c0:0b:71:0b:61:fa:75:ba:5d:53:b1:85:59:07:47:1d:
f2:a8:d1:59:1c:1a:bc:f2:65:76:2d:b5:bf:8d:be:c2:9f:be:
e8:bc:06:06:27:06:4b:ff:20:5b:c2:d0:dd:9f:41:0c:14:ec:
9e:4e:ef:a8:4f:d9:f8:f5:be:70:c0:e3:e4:d3:83:c3:cc:d6:
76:ca:d8:46:16:00:b9:65:e0:fb:65:8c:af:b6:c2:a6:dd:98:
45:ce:1b:fb:98:f2:8f:e7:e0:9b:a8:c2:dc:69:3c:db:bb:f5:
b3:2b:f1:14:1d:c8:56:7a:96:53:1e:6e:57:2f:cc:1a:6a:e3:
1c:70:90:50:84:87:05:94:18:2c:3d:d9:9d:ef:b8:ab:e8:45:
29:1a:a0:8e:08:61:7d:19:1d:58:40:c5:e7:96:f6:91:2e:1c:
cd:c3:70:5a:32:1d:54:df:89:f5:ae:da:e8:7f:c7:38:d9:57:
af:82:9e:96:b2:44:8f:f2:77:f5:c1:9f:22:4b:b4:f0:0e:84:
b8:71:7e:f0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATndMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTEwMDkxODM3WhcNMjUwMjA3MDkxODM3WjAYMRYw
FAYDVQQDEw02NzgwZTVmMC0zNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAo2Nv8b9hdpujKqejgbc9bj/DZ+HevwOZfw90+Kc1TkPQW58LBMwIEQMR
6KReB2xQwyGfN/jP8uFxb+W/plesywpu7/RROQK0ZwYKAtDVHZtlHbTQ0z6aNZZs
HfrUf/tLZMHUxsk9tMtnq7BXtitFzyyOWhgdZb1830FYSTkyP1adnCvW4/po1Vi8
CSitqOpYXZJeGM3B/i96VYq30Sy1vTe5Yq1HBeE9SwEydi30CYldxrwFgcC4V4sJ
sgwmMzlye9o5cEpgGu1Fy98ZkE5uGv29cX4ypoTtf4xKWuiC5ZU9mQMSH1OxGphS
boZw5aXTI85tfmgJ1sf1fKjFR9SCVQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAco
6o6IoOEyVb2Tmm0HIBNkBOadMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMTg1REI5NkNGMzMxMUVGOUJEMzFCQkU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBml4uMA0GCSqGSIb3DQEB
CwUAA4IBAQB66uhykBTBE08fclHbicILxpOXQrukbcp9seQ25+7Q+jZRpLrkQgqc
04XC35q7g2CSwJf49W7YMMALcQth+nW6XVOxhVkHRx3yqNFZHBq88mV2LbW/jb7C
n77ovAYGJwZL/yBbwtDdn0EMFOyeTu+oT9n49b5wwOPk04PDzNZ2ythGFgC5ZeD7
ZYyvtsKm3ZhFzhv7mPKP5+CbqMLcaTzbu/WzK/EUHchWepZTHm5XL8waauMccJBQ
hIcFlBgsPdmd77ir6EUpGqCOCGF9GR1YQMXnlvaRLhzNw3BaMh1U34n1rtrof8c4
2Vevgp6WskSP8nf1wZ8iS7TwDoS4cX7w
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:18:40 2025 by rpki-client