Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35C27BF4C25711EF8270B65B762E951A.roa
File: 35C27BF4C25711EF8270B65B762E951A.roa (raw, json)
Hash identifier: l4AaAIu49kFV87SMLT9m4nu1WMLvmzBn+tBpRGsy26Y=
Subject key identifier: E5:BE:89:72:1E:AE:A2:C6:E2:8F:4B:E8:B5:62:40:2F:8F:BE:DA:E3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01233F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35C27BF4C25711EF8270B65B762E951A.roa
Signing time: Wed 25 Dec 2024 00:28:49 +0000
ROA not before: Wed 25 Dec 2024 00:00:45 +0000
ROA not after: Wed 10 Dec 2025 00:00:45 +0000
asID: 984
IP address blocks: 154.199.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74559 (0x1233f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 25 00:00:45 2024 GMT
Not After : Dec 10 00:00:45 2025 GMT
Subject: CN=676b51c1-2ff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:25:b5:a0:42:13:05:88:a1:4c:7e:45:4e:b6:
67:08:ab:04:d8:3a:42:ae:48:a1:25:19:d0:13:2d:
f7:5f:b9:76:3f:a1:a9:d3:6c:21:59:27:88:af:68:
0d:19:30:b0:ea:99:61:38:58:4f:69:27:f0:30:25:
0d:de:53:76:48:0e:52:b5:ac:cb:97:a7:38:ad:33:
5b:d8:78:bc:9f:4c:fd:e3:0d:53:c2:ea:b0:a6:f5:
58:e2:df:50:a8:ac:13:24:48:fb:8a:a5:49:05:1f:
f7:7c:91:9d:a4:8f:0b:5c:dc:90:28:30:a7:21:c4:
f6:f8:60:35:67:fb:6e:92:1f:2c:65:ee:87:0f:28:
21:83:67:42:7c:0e:01:46:3c:4e:a2:e5:39:0f:49:
1f:fb:02:69:d1:66:27:9c:dc:cf:4f:d8:5b:a8:92:
c8:a5:94:15:f2:92:b7:d4:eb:8f:36:92:74:4b:d3:
9b:08:f7:eb:cd:b0:7a:0f:ca:43:48:a1:7b:84:cf:
7c:4d:f7:53:32:7f:2a:40:b1:02:8c:16:88:2e:fe:
44:55:60:a6:c1:92:10:f6:97:cf:62:5c:51:73:2d:
01:f5:8d:49:e9:fd:c8:88:aa:be:03:a3:85:63:9a:
9d:6c:f8:0d:32:63:d5:4b:eb:db:76:c9:01:fc:43:
0a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:BE:89:72:1E:AE:A2:C6:E2:8F:4B:E8:B5:62:40:2F:8F:BE:DA:E3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/35C27BF4C25711EF8270B65B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.199.45.0/24
Signature Algorithm: sha256WithRSAEncryption
65:63:5a:89:67:c4:8c:29:80:b0:da:0c:fa:9d:da:af:96:f8:
8b:a3:51:0d:8b:33:1e:dc:94:8a:5d:62:cf:c2:10:7b:dd:e1:
d0:8a:0f:27:de:52:0d:ca:b1:9d:da:37:74:96:41:66:6c:3c:
17:a1:7e:02:af:4d:15:03:fe:69:25:15:a1:81:6a:2d:9a:64:
39:8c:90:cf:cc:32:4c:af:5e:42:98:ee:46:94:11:41:76:da:
15:ba:7f:dc:93:8b:5e:ab:02:ff:f3:67:b6:87:d1:0c:e0:05:
bf:f8:65:06:0c:71:cb:91:1b:7a:b5:bc:57:8f:3b:64:f9:9b:
b9:d6:42:eb:3a:cf:9c:9c:d7:31:d7:8c:09:38:19:c2:7e:13:
46:48:6a:fb:e7:29:95:96:ca:9a:46:7a:df:9e:8d:d3:67:cc:
d2:48:7e:da:5c:3f:bc:b4:7c:ae:68:62:42:65:9c:f3:64:f7:
ac:ff:b9:67:c7:ad:98:18:6c:79:66:03:44:95:bf:80:4c:23:
7c:12:8c:53:47:d7:72:4a:44:25:5f:9d:9f:a6:e3:a0:55:79:
ac:39:1e:ef:af:1f:c5:54:52:ce:1c:49:20:37:5c:bb:cd:8b:
ad:a2:5a:e0:6a:03:19:5c:ef:29:06:c4:94:e2:c4:2d:7e:57:
72:bd:b5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:08:39 2025 by rpki-client