Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2DDB17BE041711F08CD6CEA4762E951A.roa
File: 2DDB17BE041711F08CD6CEA4762E951A.roa (raw, json)
Hash identifier: N3LG1rLPp3sklKI5X5SB9g8nUx6wJVxXzpIXXFuSYL4=
Subject key identifier: CE:B1:7A:F1:79:16:3D:E6:3D:70:01:86:6C:4C:67:20:4D:99:CE:55
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 1A59
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2DDB17BE041711F08CD6CEA4762E951A.roa
Signing time: Tue 18 Mar 2025 16:36:45 +0000
ROA not before: Tue 18 Mar 2025 16:36:41 +0000
ROA not after: Thu 18 Mar 2027 16:36:41 +0000
asID: 834
IP address blocks: 154.16.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6745 (0x1a59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Mar 18 16:36:41 2025 GMT
Not After : Mar 18 16:36:41 2027 GMT
Subject: CN=67d9a11d-803c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:cb:a8:f7:84:01:fd:32:a4:eb:76:7a:af:4b:
95:77:48:73:79:73:ad:43:fe:74:ac:71:df:85:90:
a5:b7:bc:89:cd:91:56:be:64:df:40:1c:0a:15:eb:
5e:bb:33:e2:51:1c:5d:04:03:d7:96:94:44:29:d4:
23:6c:57:98:45:43:36:08:d8:a6:1f:51:8a:bc:5f:
e6:35:54:bd:03:f6:08:d9:31:f5:70:da:8d:50:e9:
7d:46:2d:30:a9:ed:13:60:11:3a:3b:de:b1:79:ff:
1e:19:9e:de:5d:ca:e6:b2:2a:b6:c8:84:bd:5c:90:
71:fc:7c:ed:ad:fc:6e:e1:f3:b3:ed:e8:04:c5:c8:
af:bb:70:7d:00:1a:f9:ba:84:40:9f:7c:27:53:8e:
31:44:a3:8a:3b:ec:36:8a:c6:7b:56:76:fd:80:5b:
68:91:f9:72:27:fc:f5:39:03:53:76:15:c1:83:76:
89:2d:55:57:82:ca:ad:6d:e5:d7:8a:3d:01:54:b1:
94:ff:34:d8:b0:31:6f:96:e8:79:be:a3:48:81:8c:
3d:70:86:05:eb:ed:ee:0c:6f:b8:8b:48:80:26:03:
5e:c5:fa:62:64:50:5b:6f:09:a6:38:d0:5f:74:93:
6c:98:8c:b3:4a:f9:fa:e5:e1:97:1f:0e:bf:03:63:
b0:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:B1:7A:F1:79:16:3D:E6:3D:70:01:86:6C:4C:67:20:4D:99:CE:55
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/2DDB17BE041711F08CD6CEA4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.26.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:4a:fc:c6:59:e5:cd:ac:69:93:4a:d5:a2:f5:40:ab:c1:62:
ad:a8:00:13:40:3f:d6:ec:8d:b6:86:ad:2b:ea:62:1b:7e:2e:
27:df:a3:d9:c3:aa:73:4b:9b:25:07:e0:cf:5c:af:e6:80:ab:
c1:7f:1c:a9:62:82:a1:e6:2b:02:9a:25:95:c6:d9:88:9f:44:
b5:f3:89:2a:82:54:9d:78:24:f1:1b:a6:51:a4:45:e2:00:48:
8a:b6:13:d4:41:f4:91:0d:df:2d:e2:7d:4f:0d:1a:e9:b3:c5:
07:4d:46:e7:92:84:98:11:3b:ec:55:29:a0:e1:2f:a1:ab:9a:
35:38:43:01:c3:61:da:ff:f5:c8:8b:92:d2:bf:b8:1f:e8:1a:
29:e0:72:c6:6e:d0:88:35:4f:b7:63:58:3d:ba:18:a8:af:0a:
56:83:16:d9:28:dc:40:26:34:68:2c:ff:42:55:41:bb:97:34:
1e:a7:e6:b1:84:fa:35:19:52:e5:bd:0e:c0:98:98:42:48:fb:
50:49:4c:e2:91:ca:aa:73:36:ee:69:40:95:05:a8:68:06:42:
c2:29:60:33:28:21:13:c5:98:df:6f:03:56:15:e4:58:6e:f1:
4d:bf:fa:87:9b:e9:17:e1:f9:17:66:1e:1a:0d:14:33:f0:5a:
aa:49:1c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 00:17:54 2025 by rpki-client