Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48EA66A6064F11F097996047762E951A.roa
File: 48EA66A6064F11F097996047762E951A.roa (raw, json)
Hash identifier: +X5/tbXb+HXy7aeTtd2Ols7F5LOVIC9EnsQGyJhikvI=
Subject key identifier: E1:50:F9:72:0E:DE:AC:FF:3F:BF:19:DD:0B:64:30:C4:1E:FB:08:4E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017565
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48EA66A6064F11F097996047762E951A.roa
Signing time: Fri 21 Mar 2025 12:23:24 +0000
ROA not before: Fri 21 Mar 2025 12:23:20 +0000
ROA not after: Fri 11 Apr 2025 12:23:20 +0000
asID: 16509
IP address blocks: 154.194.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95589 (0x17565)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 21 12:23:20 2025 GMT
Not After : Apr 11 12:23:20 2025 GMT
Subject: CN=67dd5a3c-2082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:e6:4b:b3:75:04:57:c0:1f:1e:50:68:ea:bc:
92:99:7c:6d:05:d4:81:ac:67:47:eb:d0:0c:2e:8f:
a9:d6:4f:49:a5:69:02:91:b2:14:5d:b1:8e:ea:5c:
3b:d0:77:45:02:96:84:97:97:71:15:0f:6a:0e:49:
7a:b4:bc:56:c5:79:d3:9c:fd:21:2d:b6:c5:1c:6d:
46:11:f2:24:22:44:07:70:36:83:e9:04:37:6a:78:
87:f1:b4:66:4c:11:f0:ad:83:c9:2b:af:ff:54:46:
59:7e:f3:92:ca:b8:a5:83:21:4e:7c:b2:34:cd:75:
0f:ac:15:ec:34:bf:1a:5e:51:ea:43:72:e7:a3:f5:
5c:72:49:9a:8c:77:70:21:8b:f0:86:9e:59:d0:83:
9a:5c:d5:f7:bd:46:2d:34:24:21:19:3b:86:14:46:
66:10:2c:49:fa:81:fe:33:73:d4:f9:04:2b:7b:86:
3a:46:60:c2:0b:50:92:09:f8:c8:10:c5:3a:10:14:
89:a9:9f:d5:00:82:66:cb:7d:95:42:77:e0:03:11:
b0:5f:16:7d:ba:3f:9e:a4:4a:9b:7d:fb:ba:d1:01:
8c:be:56:2f:bb:31:e1:11:78:92:87:79:f6:1d:da:
07:0d:24:58:3b:19:d4:13:f8:f6:08:97:46:b3:b0:
cc:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:50:F9:72:0E:DE:AC:FF:3F:BF:19:DD:0B:64:30:C4:1E:FB:08:4E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48EA66A6064F11F097996047762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.36.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:18:66:cf:41:5d:44:82:e1:4f:75:ec:9a:30:6a:ec:c4:90:
eb:9a:19:77:43:05:d4:10:1a:61:99:e0:d0:fb:34:2b:35:97:
a3:ca:a0:ff:04:87:d6:98:89:37:05:ac:63:34:46:15:6c:58:
a5:13:9b:c1:9e:a4:73:87:09:c9:df:9a:7b:71:ea:26:e6:da:
a5:61:67:90:9c:f8:b0:10:39:6e:bd:aa:7c:86:89:43:5c:d3:
d8:c5:ed:00:2f:87:8f:5f:56:1f:c1:0e:c7:cf:74:49:47:33:
06:7f:96:aa:1d:cd:78:a1:2a:e4:21:76:82:b1:e0:73:52:ab:
20:a2:d3:3b:65:73:18:b8:96:63:1a:a3:1d:0e:d6:17:ef:62:
6d:b9:f0:28:16:da:d9:07:49:c5:05:ed:c2:f9:ab:f1:cf:b0:
88:27:83:e6:41:ac:25:35:e4:7e:f4:25:3e:09:6d:97:1c:24:
40:34:a6:9e:10:65:ef:0c:62:e4:59:12:24:68:9a:70:1e:d5:
1d:1a:55:78:bd:71:8f:b3:92:4c:3d:ad:17:de:74:07:06:01:
ae:c4:35:1f:88:94:24:c2:7b:74:7c:dd:46:18:4a:b1:15:45:
25:15:74:ba:64:8f:5d:d3:5a:6e:19:32:16:1f:5c:4b:a2:c1:
e1:cf:bf:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:13 2025 by rpki-client