Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/202D69F4097211F0BBA9A171762E951A.roa
File: 202D69F4097211F0BBA9A171762E951A.roa (raw, json)
Hash identifier: nGgk3A50oarP0IMSmJmMxXAD7bo2f+YxBm7cD+qomZ8=
Subject key identifier: 1D:FD:56:0E:3B:5C:07:35:0F:09:B3:26:F5:1C:F7:02:39:32:15:D8
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1A65
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/202D69F4097211F0BBA9A171762E951A.roa
Signing time: Tue 25 Mar 2025 12:10:22 +0000
ROA not before: Tue 25 Mar 2025 12:10:18 +0000
ROA not after: Thu 25 Mar 2027 12:10:18 +0000
asID: 834
IP address blocks: 154.16.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6757 (0x1a65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Mar 25 12:10:18 2025 GMT
Not After : Mar 25 12:10:18 2027 GMT
Subject: CN=67e29d2e-8bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:e9:05:c4:ba:15:6b:0c:65:3b:41:22:b2:d0:
5b:5f:92:6f:bf:c5:47:f8:cf:c1:b1:43:fb:a0:2b:
e8:f3:7d:9f:c9:42:cb:71:6e:de:f0:7b:58:81:e0:
26:1f:20:2b:a4:87:43:25:f8:a9:bf:52:23:79:b2:
3b:92:26:3c:5f:d1:a8:a0:60:7e:94:e0:3c:e5:9a:
85:ae:d4:12:0e:7f:b4:3e:37:47:40:75:6a:ad:83:
eb:94:f3:dd:85:90:2f:b0:55:5f:41:05:2b:ba:6f:
3d:d7:a0:a1:c5:43:8e:f2:dd:e8:a2:35:0f:8f:0f:
3d:af:fa:cb:fb:3c:b7:4c:02:b2:ef:c7:6f:f4:0a:
b9:14:e9:b5:77:bb:65:d8:e9:45:d8:91:24:07:1d:
a7:b8:16:cb:c3:e6:22:1c:b8:c2:e5:1c:1d:b2:d4:
cb:66:62:2c:65:a8:89:fd:92:21:83:7f:73:cf:1f:
e2:69:b4:04:ca:e9:91:25:49:f0:5e:cb:41:75:6f:
8f:2d:d5:ac:8b:8e:b0:79:15:d3:78:c7:b4:92:3a:
6a:26:b9:c1:86:e3:6f:42:45:a4:8a:6c:8d:9f:27:
3a:d1:75:14:df:0b:79:8a:d7:86:96:37:f8:69:75:
86:00:20:c8:3b:c7:0a:d2:1e:72:3d:67:52:45:7c:
29:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:FD:56:0E:3B:5C:07:35:0F:09:B3:26:F5:1C:F7:02:39:32:15:D8
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/202D69F4097211F0BBA9A171762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:eb:77:b2:a6:04:b1:bc:2e:e9:e7:4c:c0:26:24:32:dc:70:
5f:0e:3e:51:03:93:0b:ad:0d:dd:08:9f:01:99:f0:6a:14:9c:
a5:04:2f:6b:3c:b4:f0:a4:0f:60:95:da:0c:3c:ed:50:65:af:
1f:16:d0:5c:c5:d7:7b:39:7a:d6:22:69:4d:e4:65:8b:eb:b1:
fd:c5:59:cd:11:e3:ec:71:e5:33:59:64:07:ab:3a:39:a7:a7:
24:31:7b:1b:60:66:a3:f0:10:e9:6b:74:c4:8b:24:6a:5b:a2:
09:a8:e4:d3:48:1c:8c:e6:2d:99:e7:c7:4e:be:09:89:c7:a8:
b8:50:f4:9b:a6:20:e9:10:14:c3:03:27:86:9b:5b:16:0e:58:
67:a2:31:33:79:dc:6f:93:c8:1e:1f:5f:99:df:0f:96:13:32:
65:06:29:1c:d2:74:cc:eb:15:b6:9d:ed:7e:03:46:66:f6:15:
f7:7c:8f:e7:2a:1d:91:47:8e:b2:74:2a:ef:69:0c:e0:cd:85:
86:89:ce:45:3e:3b:3e:1b:24:10:bf:69:dc:ce:af:9b:56:1f:
b6:b1:74:ee:9b:8d:06:eb:58:79:08:0c:d4:71:ff:ee:54:4c:
74:8f:1b:78:55:82:ea:8c:e2:24:14:87:8a:89:8e:e4:60:c6:
7e:a5:40:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:26:24 2025 by rpki-client