Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4432B7F4C38711EF9E1D3F76762E951A.roa
File: 4432B7F4C38711EF9E1D3F76762E951A.roa (raw, json)
Hash identifier: 2pf0WEXDDHUcM+rnrK+xr6I0M2XhJ3EKc0TywHBGEbU=
Subject key identifier: F1:8F:E8:FA:4C:36:A3:3E:F1:27:C9:C5:E1:ED:E9:96:6C:EA:DF:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01279E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4432B7F4C38711EF9E1D3F76762E951A.roa
Signing time: Thu 26 Dec 2024 12:45:20 +0000
ROA not before: Thu 26 Dec 2024 12:45:17 +0000
ROA not after: Fri 12 Dec 2025 12:45:17 +0000
asID: 984
IP address blocks: 154.94.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75678 (0x1279e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 12:45:17 2024 GMT
Not After : Dec 12 12:45:17 2025 GMT
Subject: CN=676d4fe0-fe63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ec:5c:27:78:65:b0:74:04:0a:0b:1d:85:46:
95:79:97:41:0b:89:81:b0:6f:43:dc:fe:f0:70:af:
d7:6f:f2:37:29:e6:51:e8:70:9c:91:27:35:5b:dc:
a9:e6:41:b9:33:6e:38:a4:a0:67:93:a2:52:9f:90:
17:49:cb:99:0c:fc:c4:93:1c:e6:39:d4:49:21:7f:
2a:75:03:55:ef:14:1c:41:c8:9e:52:aa:2f:ee:c0:
57:e9:64:93:1b:2a:e4:0b:10:78:7b:63:ec:d4:b6:
3b:41:d5:11:81:28:33:89:e1:e1:ff:a3:28:f6:70:
27:3f:34:ea:48:13:3b:3e:06:fa:39:bd:da:8f:10:
c8:bd:87:7f:0b:ab:c8:91:db:98:29:a5:0f:9a:91:
84:34:31:ba:cd:17:d7:47:d9:10:d5:78:42:2e:7f:
aa:b0:21:51:3d:82:31:15:d4:22:0b:ab:8d:cd:b8:
fa:a0:93:34:49:59:c9:fd:33:f0:4d:9a:65:95:2b:
5d:74:b8:7f:58:da:3f:8d:23:70:9d:42:f0:41:e7:
6e:60:ca:74:7e:57:ac:09:01:74:20:96:28:5e:b3:
0e:12:28:fb:b5:63:7a:26:53:d5:e5:d3:77:f0:af:
f6:86:74:03:7a:4b:01:43:80:0c:c8:75:8e:35:78:
77:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:8F:E8:FA:4C:36:A3:3E:F1:27:C9:C5:E1:ED:E9:96:6C:EA:DF:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4432B7F4C38711EF9E1D3F76762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.242.0/24
Signature Algorithm: sha256WithRSAEncryption
50:0e:7b:26:a2:99:15:c4:e0:c6:2b:ce:a8:70:55:5e:ce:20:
1c:df:02:12:6e:ba:e6:22:4c:38:49:e7:4f:a7:1c:d8:d7:56:
c6:70:cc:25:c2:98:73:8f:73:3b:a0:91:54:36:0c:78:08:12:
fc:6a:62:35:f8:6a:ed:60:43:98:0c:11:0f:b6:0d:a9:25:d7:
56:a3:6f:54:e8:a3:fe:eb:61:e2:91:1c:4d:d4:1d:22:17:6c:
1f:1d:5f:66:f1:1b:e1:20:11:11:a2:7e:a5:8e:c8:d1:db:c0:
ff:b2:92:75:62:9b:a3:1f:ae:7b:43:4c:3a:e6:1e:72:a6:ea:
fd:b7:61:f3:31:b7:e8:9f:84:d2:4e:e3:c4:7f:df:27:0a:cd:
0f:60:b0:4c:cc:2e:26:c6:2b:4a:4a:13:b1:a8:d9:34:d2:69:
c7:69:ce:6d:b8:73:78:b6:af:6e:cf:22:a6:e3:2d:db:f9:1e:
24:30:f2:21:e8:c6:fb:81:d7:41:5e:79:96:ea:71:d8:e9:61:
a8:1a:8b:25:ab:10:df:86:bf:34:5a:b1:fb:a4:d3:f8:23:4a:
98:9b:76:34:3e:39:dc:8a:dc:35:ec:8b:b7:53:f3:d2:43:35:
3d:d1:07:dd:99:fe:69:43:66:5c:cf:a9:e3:42:1c:f0:0a:08:
58:41:41:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:59 2025 by rpki-client