Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E2D9BC04C011F0B3C1B249762E951A.roa
File: 02E2D9BC04C011F0B3C1B249762E951A.roa (raw, json)
Hash identifier: T9KSA+KPtcblLBB3DowjY8oVWyvnpaFX7BR58/vYLJ4=
Subject key identifier: 6F:A3:38:AC:B2:C1:9B:5A:5A:EE:07:BB:61:E6:CF:48:79:46:05:AC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017510
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E2D9BC04C011F0B3C1B249762E951A.roa
Signing time: Wed 19 Mar 2025 12:45:18 +0000
ROA not before: Wed 19 Mar 2025 12:45:14 +0000
ROA not after: Sun 27 Apr 2025 12:45:14 +0000
asID: 142032
IP address blocks: 154.219.96.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95504 (0x17510)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 19 12:45:14 2025 GMT
Not After : Apr 27 12:45:14 2025 GMT
Subject: CN=67dabc5e-461a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:27:0f:47:6d:bc:a0:e1:07:66:c5:23:e0:fc:
1d:e8:bf:2b:e0:b7:f7:c9:1c:2f:32:34:1b:09:80:
2b:c3:92:55:77:ed:ef:38:9c:ce:04:45:d5:38:78:
34:bf:45:b4:4b:84:76:7b:f3:b3:af:9a:0e:0b:2f:
13:c5:69:97:5d:35:eb:c7:90:cb:3e:52:2a:c5:25:
ca:ab:ba:21:f6:d2:e4:e0:50:28:70:48:9d:0c:5a:
0d:29:d3:1b:e1:e0:e7:34:1b:f3:0a:e5:dd:96:8c:
be:b6:c3:90:31:bb:61:37:2f:78:54:31:f7:ec:2e:
1d:16:c0:77:1a:7e:c5:27:41:e9:37:6d:96:11:85:
27:79:aa:e6:5b:59:b1:24:fc:80:70:f8:25:89:da:
1f:94:2f:b1:2c:ac:23:0b:8a:55:95:53:17:64:bc:
c0:a1:42:34:79:24:09:00:83:8f:2c:73:3a:9c:42:
6b:69:a2:a4:ca:53:3d:66:04:0d:70:79:c6:9d:09:
7c:0e:1b:82:6c:7e:1c:dc:a6:ca:1d:47:90:75:b0:
09:0f:80:a8:2e:09:38:79:e4:97:84:70:fb:56:9f:
68:1a:e4:9c:4e:76:71:25:94:53:b0:2d:49:72:da:
c0:25:39:bc:f0:bc:d7:e3:2a:f5:19:86:6b:19:38:
a3:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:A3:38:AC:B2:C1:9B:5A:5A:EE:07:BB:61:E6:CF:48:79:46:05:AC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/02E2D9BC04C011F0B3C1B249762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.96.0/19
Signature Algorithm: sha256WithRSAEncryption
25:64:41:5a:20:57:53:ac:d8:7f:7c:c6:c5:50:e7:0a:fa:32:
45:f5:a9:49:a9:04:c2:68:43:fc:8b:51:4b:6b:40:e0:e7:57:
7d:1a:a1:74:91:ee:b4:b4:73:4b:10:67:9f:ff:f5:56:d5:db:
9f:90:f7:b3:7d:c1:83:ce:5f:10:1d:6e:fd:1b:03:35:56:1f:
7b:58:1d:58:9c:f7:1f:90:db:ee:1f:76:db:36:70:12:a8:6b:
52:c9:41:6b:ae:7c:a5:37:65:38:db:28:bd:a2:cb:92:d5:3c:
25:ed:d8:eb:42:62:81:8c:3c:49:15:15:44:b2:a6:64:a8:e8:
f4:1e:55:b9:97:0b:d3:d3:44:41:1c:17:b4:50:1e:dd:2c:79:
c3:3d:64:4c:a8:90:df:63:9e:21:ed:94:ac:f0:84:92:fa:92:
cd:9f:b1:88:31:6e:88:12:cb:17:3e:64:ba:61:74:61:91:35:
03:1d:1b:61:c3:89:ae:59:f9:d1:6c:9d:12:e6:7b:37:5f:8b:
9e:f9:5c:e2:8e:2d:1c:6e:ce:32:e7:be:9b:e9:a8:5c:20:ef:
f7:db:ea:fd:b3:37:6a:22:cd:b2:c0:17:d6:95:70:44:7d:a6:
f9:ce:1b:d4:76:57:aa:63:35:bb:2b:63:50:00:68:c0:ea:ef:
13:cb:ab:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:45 2025 by rpki-client