Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EBEE240ED1311EF8BC96391762E951A.roa
File: 0EBEE240ED1311EF8BC96391762E951A.roa (raw, json)
Hash identifier: KBFwEJp+V6uxRY92Mg9pfRd3ZYZXLdgGgi3GsztfglE=
Subject key identifier: 04:E8:33:1C:9A:D5:86:31:0C:93:BD:B1:85:61:A5:70:D2:5D:60:E5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0157E6
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EBEE240ED1311EF8BC96391762E951A.roa
Signing time: Mon 17 Feb 2025 09:39:18 +0000
ROA not before: Mon 17 Feb 2025 09:39:14 +0000
ROA not after: Sat 23 Aug 2025 09:39:14 +0000
asID: 138195
IP address blocks: 154.208.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88038 (0x157e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 17 09:39:14 2025 GMT
Not After : Aug 23 09:39:14 2025 GMT
Subject: CN=67b303c6-29fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b8:33:51:ba:3c:2a:39:d3:ac:5b:95:eb:db:
39:d1:5b:7a:98:c4:cd:b9:c4:82:32:3f:69:71:bc:
94:cc:50:02:da:31:58:1f:0c:86:87:bb:14:ba:74:
66:d9:30:8f:11:28:de:00:05:73:29:5c:51:2b:9a:
59:24:6d:c4:43:67:37:ea:47:7c:25:b5:c4:bb:27:
d2:03:66:18:78:dd:0b:0f:78:5b:0d:e3:fc:4e:d9:
26:b4:67:a9:e4:dd:3d:b3:85:1c:98:76:26:0d:23:
85:e8:03:dd:27:31:21:50:09:98:8d:ca:63:38:cd:
44:fa:24:2c:d0:96:41:97:ec:1d:7e:8e:d4:29:d8:
f7:66:d6:1f:7c:70:59:23:90:e4:93:a0:73:64:5d:
ba:41:2c:f0:1b:d6:62:0d:63:fa:e2:ef:ec:7d:a2:
e3:ea:8b:ed:f0:7e:36:38:f3:c6:4c:df:f4:52:4d:
c9:15:a8:0e:4a:9b:f8:c7:99:fb:ad:06:29:03:21:
a9:c9:52:c9:6e:43:70:6d:ca:e7:96:9a:ac:5d:16:
a2:41:27:8e:4c:7a:7c:e4:ef:61:e9:cd:32:b9:62:
a6:2e:d3:08:5b:42:49:fc:c2:b0:ef:a3:3b:47:91:
e3:76:89:9b:0f:22:bb:96:61:9b:89:99:e2:5f:77:
90:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:E8:33:1C:9A:D5:86:31:0C:93:BD:B1:85:61:A5:70:D2:5D:60:E5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0EBEE240ED1311EF8BC96391762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.168.0/22
Signature Algorithm: sha256WithRSAEncryption
d5:b6:e4:4c:25:05:57:40:c2:7b:0c:7f:61:d8:61:93:3e:22:
91:76:3b:76:f2:51:5a:c6:0f:ed:64:af:37:ae:4a:d1:1c:e4:
2c:25:18:e4:35:46:90:c1:13:cd:53:ed:34:f1:9a:e0:83:e9:
aa:f3:1b:bd:41:97:31:e1:db:ea:bc:fd:05:43:3d:e5:6d:87:
3c:69:c1:b4:4a:29:d1:22:b4:b6:eb:5a:f5:7d:43:e2:6d:08:
aa:08:65:96:2a:ee:cc:87:b4:dd:47:25:c2:70:98:ad:d4:14:
cb:d7:69:b1:35:82:54:19:c0:4e:d2:9d:fc:ca:c3:f4:f9:9e:
a5:58:64:86:24:25:5e:7d:dd:b2:84:a3:38:14:f9:bc:65:13:
7c:35:c8:f4:ad:c8:c3:e5:6e:82:f8:2a:d2:77:9a:9b:b3:ac:
e8:b8:19:88:18:89:3d:a3:98:5c:80:0b:34:15:d5:f4:1b:5c:
93:1e:be:26:7e:9d:c7:cd:3e:06:d0:65:3b:f4:ec:a4:5d:35:
74:15:f2:d0:16:4a:34:d0:a5:93:57:a7:78:f6:53:52:7e:25:
ef:0f:6e:3f:1d:a8:02:40:0c:e3:c9:d7:17:ae:d6:1d:85:9a:
74:d4:3e:34:7b:33:59:52:8a:42:f8:de:ee:d4:9b:f6:a9:57:
53:ba:94:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 01:50:21 2025 by rpki-client