Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43CEC156C1AA11EFAF46BF95762E951A.roa
File: 43CEC156C1AA11EFAF46BF95762E951A.roa (raw, json)
Hash identifier: v/2CyZA1oeAj4u+gzddFhYQVhfmp6NhmXlHPJaNf+XU=
Subject key identifier: 2A:FE:46:BA:E6:4F:8A:6E:44:91:BF:C3:22:DE:20:4D:4E:4E:53:2E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012123
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43CEC156C1AA11EFAF46BF95762E951A.roa
Signing time: Tue 24 Dec 2024 03:50:50 +0000
ROA not before: Tue 24 Dec 2024 03:50:46 +0000
ROA not after: Wed 10 Dec 2025 03:50:46 +0000
asID: 984
IP address blocks: 154.92.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74019 (0x12123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 03:50:46 2024 GMT
Not After : Dec 10 03:50:46 2025 GMT
Subject: CN=676a2f9a-7305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:2c:14:ff:8d:dd:3b:ae:ed:2f:90:4e:e4:
97:96:42:c1:08:43:48:79:31:af:cb:32:53:ab:de:
05:8b:5e:35:95:3d:62:77:5a:8f:aa:81:34:eb:dc:
fa:38:dc:17:bc:75:71:26:35:16:e1:71:8b:af:f4:
91:f9:77:aa:44:16:61:c4:9e:89:7d:db:0d:28:38:
c1:01:5b:c1:9c:c3:86:47:d7:51:5f:51:bd:c1:2f:
a0:55:3e:b0:0c:fa:c9:7f:7a:5f:ef:ee:c2:9b:a1:
06:20:21:fc:32:76:30:83:f1:a3:b0:cb:e1:1a:92:
55:2e:3e:df:89:d1:76:e4:7e:cf:9e:b5:71:c1:b1:
d9:25:b1:91:ce:33:ce:ca:74:5f:c5:95:0e:1d:90:
c3:2b:52:3a:15:27:c0:f0:cd:51:b5:90:0b:dd:69:
39:7f:5b:12:f6:eb:65:a7:f6:58:0c:8f:29:a7:80:
90:ad:12:18:82:8f:62:23:58:5e:2c:65:2d:d9:1a:
24:d0:f2:5a:c6:1e:c1:7b:fd:af:2c:bc:71:a6:70:
3c:f2:ca:d0:38:6d:03:d5:96:2c:c1:19:4a:dc:74:
0b:ec:88:11:c5:b5:88:d6:a1:b4:08:cc:9b:81:94:
f8:84:b1:86:b5:3f:e3:b8:3d:7d:51:3e:bc:99:8f:
d8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:FE:46:BA:E6:4F:8A:6E:44:91:BF:C3:22:DE:20:4D:4E:4E:53:2E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/43CEC156C1AA11EFAF46BF95762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.92.217.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:f0:70:bb:1b:c4:93:c2:e6:30:a6:b3:9a:19:e1:e7:5f:ac:
f1:cf:fe:ad:87:00:a8:bf:e9:8d:62:1e:c0:2d:5e:c1:71:b8:
3f:a4:1f:ff:e8:d1:c3:73:03:78:f5:0b:d5:e1:f8:d6:50:fe:
bc:c6:20:43:a0:71:fc:c7:ac:44:b2:19:79:cc:c4:0b:e5:b5:
00:35:b1:a7:4a:44:ca:d8:3a:4d:b8:d3:be:cd:09:33:67:30:
60:35:c2:c0:2e:a6:cd:96:f7:77:00:ea:9c:fe:09:17:cf:08:
2f:ad:0c:0b:43:4c:42:e1:ac:25:91:5b:f1:f3:2e:2e:ca:f3:
d3:23:60:f0:76:90:23:08:8c:c4:0a:02:48:39:22:da:a2:0a:
73:e9:d2:55:ad:ac:01:91:0e:10:db:10:ca:d7:2c:c7:4d:f0:
80:49:b8:89:a3:87:35:bc:06:a3:89:6f:08:9f:29:c9:89:5c:
43:41:30:6f:e1:7a:6d:fb:a8:8f:32:2a:84:1e:74:42:ea:3d:
a4:15:5a:46:b8:fe:5c:a2:c6:9c:70:2d:b4:75:bc:f9:8a:b2:
99:c2:72:46:4b:9d:95:b0:28:36:d4:9c:b0:7d:f4:f4:c7:6e:
f2:aa:64:18:4b:52:61:31:2b:8b:87:5c:21:e7:86:43:9d:3e:
fc:c2:d2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:37:29 2025 by rpki-client