Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E95F2C6C92111EF9BDE288E762E951A.roa
File: 3E95F2C6C92111EF9BDE288E762E951A.roa (raw, json)
Hash identifier: 9ektW5iw7+Fh/jzRDyh5EiknxG8tQ0LBeKChhkVkA64=
Subject key identifier: 12:50:FC:61:C8:4B:77:34:60:11:D7:F9:C7:84:D6:75:F1:59:AA:8E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01332D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E95F2C6C92111EF9BDE288E762E951A.roa
Signing time: Thu 02 Jan 2025 15:50:09 +0000
ROA not before: Thu 02 Jan 2025 15:50:06 +0000
ROA not after: Sat 13 Dec 2025 15:50:06 +0000
asID: 984
IP address blocks: 154.222.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78637 (0x1332d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 15:50:06 2025 GMT
Not After : Dec 13 15:50:06 2025 GMT
Subject: CN=6776b5b1-8a03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c0:b9:91:a4:f9:42:12:c0:da:c7:5d:dc:ee:
0f:26:f5:c0:4c:78:9b:91:71:a0:93:49:94:30:4f:
88:62:14:4e:3c:e8:f2:04:d4:63:0d:2c:b5:6f:5f:
e3:51:1b:9d:f8:13:98:7c:fb:8a:e0:3c:fb:ff:24:
e0:dc:36:d9:ac:56:fe:45:b6:29:85:5e:69:07:9a:
e5:2b:0b:4c:0a:35:c5:bc:81:95:0d:e1:49:41:62:
23:3b:23:e5:e4:6e:28:bf:27:b3:44:fe:ad:74:eb:
ab:a1:37:07:4a:67:cd:e8:41:11:b3:6c:71:86:0d:
27:c6:26:31:c3:d3:08:00:8e:da:39:d9:6e:4f:52:
a3:5f:60:69:e3:3d:de:91:49:78:cd:59:39:89:96:
4c:f6:80:d6:09:6d:07:4c:8a:17:9a:fd:e7:d2:9e:
b3:ed:40:89:a3:5b:a3:c8:64:5f:0b:34:b7:53:31:
a7:26:e7:92:8f:a3:45:08:0f:cf:23:58:c3:f4:a9:
8c:49:aa:1c:d0:04:f7:90:ab:97:48:15:12:ac:7e:
33:d8:c1:60:6f:91:d6:4b:0c:e1:79:bf:b3:bc:b4:
5d:29:c6:0d:6e:5b:7f:d5:2d:ad:66:dc:06:d5:a3:
60:ad:ab:79:12:62:c8:c2:f1:2f:bc:f2:04:18:70:
66:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:50:FC:61:C8:4B:77:34:60:11:D7:F9:C7:84:D6:75:F1:59:AA:8E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3E95F2C6C92111EF9BDE288E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.92.0/24
Signature Algorithm: sha256WithRSAEncryption
69:65:10:11:7e:68:f0:c1:80:29:ae:c5:a4:6c:e5:2b:52:1a:
f0:9b:f0:f9:39:37:3a:01:c7:86:45:cd:75:bb:1f:4e:fe:ed:
ff:da:43:17:d8:92:8a:c6:a5:6b:75:d8:34:72:6a:9a:79:8c:
af:8b:85:6c:a9:7d:fe:88:05:7f:ba:30:c2:8a:39:8b:95:e3:
fe:3e:dd:f1:90:87:0c:3b:55:9b:cc:b2:37:7c:72:b2:5e:b8:
2c:bd:87:d3:00:6c:1b:cb:bb:da:87:ea:05:fe:0e:3e:4e:63:
2a:2d:26:db:4a:e1:10:6f:ae:17:56:51:82:cb:a4:8e:e6:34:
2a:9a:ad:99:a1:c7:41:bd:aa:34:91:b8:9e:d6:5f:63:ff:91:
dc:d9:34:90:b8:a8:0c:a7:fd:65:a3:74:55:8a:94:db:5a:7f:
8b:85:6d:ce:f7:5a:ec:b9:94:2f:e1:32:ee:55:6b:79:2d:ac:
9c:06:f0:5d:53:91:73:79:fd:6e:fb:01:4a:87:69:09:41:a6:
65:fb:f1:49:db:b8:4d:75:02:86:fa:42:ef:e4:fa:80:7f:ef:
51:77:f6:15:08:f7:af:4d:e1:ca:f0:70:db:55:11:c3:91:41:
e0:c6:d3:c6:42:52:0a:ad:5b:d7:0d:92:94:01:53:86:76:d2:
30:ca:fe:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:37 2025 by rpki-client