Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23CBC640C63411EFBF1EEE6C762E951A.roa
File: 23CBC640C63411EFBF1EEE6C762E951A.roa (raw, json)
Hash identifier: 5jVbJw1gMN8PFcf/vicktSiNpvirZn90oecn5opCp8A=
Subject key identifier: D7:FD:21:AF:82:6F:12:BF:40:29:0F:E9:A9:6C:78:24:1D:6B:ED:C1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01300C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23CBC640C63411EFBF1EEE6C762E951A.roa
Signing time: Sun 29 Dec 2024 22:27:51 +0000
ROA not before: Sun 29 Dec 2024 22:27:48 +0000
ROA not after: Sun 12 Dec 2027 22:27:48 +0000
asID: 17561
IP address blocks: 154.217.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77836 (0x1300c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 22:27:48 2024 GMT
Not After : Dec 12 22:27:48 2027 GMT
Subject: CN=6771cce7-83e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:7e:dd:6a:81:9b:87:f6:a0:cf:da:51:8a:30:
78:54:59:e1:87:4a:e8:65:ef:3b:26:68:5f:9c:93:
05:6c:a9:c9:31:f9:d9:13:f1:a6:fe:b8:dc:1e:03:
58:c6:43:f0:d1:cb:5b:89:d3:ab:a0:ef:ac:57:1c:
6f:c8:86:b4:7e:98:7b:af:39:60:de:c3:35:c1:93:
c3:85:dd:be:2c:d2:17:d0:d7:07:47:97:31:b1:d9:
68:6d:a8:40:05:3e:e8:bf:1e:3a:cd:82:e4:87:21:
82:fd:a4:ac:b5:75:6c:f0:d2:75:13:0c:3d:3c:83:
59:a2:cb:2d:ee:de:de:d9:70:d8:31:43:05:1a:21:
02:02:da:45:79:25:77:ae:0f:2f:33:22:21:19:e8:
97:cb:48:27:b9:12:e9:a8:4e:7a:67:db:33:f8:6d:
f1:1b:79:39:5d:b9:6e:61:b8:dc:27:e3:a9:e8:f5:
eb:f5:de:60:f8:6f:e4:1d:d1:4d:a1:9f:83:69:5a:
ae:4b:e2:29:80:80:b8:d1:1c:3b:2d:98:58:16:15:
f6:7d:4b:0a:63:82:16:30:56:6a:89:74:88:49:9e:
01:b0:83:ee:ed:7e:48:f1:de:82:b6:c2:d1:e6:08:
d0:b7:ea:6d:ce:fa:9e:2d:43:c8:8f:33:c2:4a:4d:
89:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:FD:21:AF:82:6F:12:BF:40:29:0F:E9:A9:6C:78:24:1D:6B:ED:C1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/23CBC640C63411EFBF1EEE6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.233.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:9b:4a:6f:a5:5d:76:57:a4:89:35:2b:21:f0:a7:aa:00:fa:
83:45:51:cc:cc:e8:50:7f:ca:33:e3:3d:4f:54:fd:61:f3:aa:
4a:74:e5:9c:12:c1:fb:82:c7:d4:ef:c9:eb:87:ef:47:b6:3c:
ac:21:d4:9b:e2:4c:9b:03:98:9c:73:98:14:c4:f1:04:c9:61:
63:9b:6f:64:2b:32:6c:c7:03:ec:13:29:52:23:54:1f:1a:b9:
0a:2a:38:6e:40:51:8f:a4:fa:f6:8d:bc:2f:6e:ce:91:6e:5a:
2e:1e:b5:09:19:d1:db:94:51:a3:3f:3d:02:0e:ed:ae:f4:47:
38:a2:74:73:e6:49:37:11:19:19:19:e0:26:14:98:36:c4:e1:
9d:32:7b:f4:c6:d0:3b:1d:33:57:71:14:b7:0e:bb:a8:b7:f4:
2a:18:1c:00:45:d9:ff:f0:9b:f1:1d:02:df:9b:3d:13:71:64:
db:ed:7b:63:3f:3a:25:7b:76:30:d7:08:4a:99:cd:3a:90:e8:
93:44:c2:8a:c3:13:a5:aa:0d:38:9a:1f:15:3d:3d:dd:75:88:
b8:89:7c:4a:ad:28:4e:f6:0b:16:66:81:23:9f:b0:b9:d7:e6:
88:7e:c8:72:12:c2:c0:f6:82:4e:bb:c1:88:de:a1:9b:6f:3e:
e3:48:60:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:35:08 2025 by rpki-client