Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5778DE46088911F08F5CD362762E951A.roa
File: 5778DE46088911F08F5CD362762E951A.roa (raw, json)
Hash identifier: jGciu8UYlY7EE47kKxu8BqwimxAmxQc6VtMEoQyuKv0=
Subject key identifier: 7A:86:EE:77:17:14:F7:CD:BD:EF:81:43:A9:3C:15:6D:CA:D1:03:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0175D0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5778DE46088911F08F5CD362762E951A.roa
Signing time: Mon 24 Mar 2025 08:24:02 +0000
ROA not before: Mon 24 Mar 2025 08:23:58 +0000
ROA not after: Sun 11 May 2025 08:23:58 +0000
asID: 63139
IP address blocks: 154.223.22.0/24 maxlen: 24
154.223.25.0/24 maxlen: 24
154.223.27.0/24 maxlen: 24
154.223.30.0/24 maxlen: 24
154.223.31.0/24 maxlen: 24
154.223.36.0/24 maxlen: 24
154.223.38.0/24 maxlen: 24
154.223.39.0/24 maxlen: 24
154.223.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95696 (0x175d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 24 08:23:58 2025 GMT
Not After : May 11 08:23:58 2025 GMT
Subject: CN=67e116a2-027c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:62:5f:07:cc:c7:d8:42:3d:4c:82:39:30:65:
20:b5:c3:6d:bb:56:77:05:ba:75:39:32:63:49:a4:
7b:c7:e5:ea:f0:a7:4c:94:4c:b3:04:3f:f6:1f:bb:
aa:df:75:1a:e6:f7:48:e9:d8:d7:3f:83:4c:44:7a:
51:5e:d5:11:36:26:47:06:13:ee:67:2a:b6:70:37:
26:ab:ff:f3:fc:db:e3:27:64:12:9d:6f:ce:89:da:
c6:65:be:17:92:23:fe:55:aa:a4:4d:a5:09:9c:46:
2b:85:38:da:09:2e:78:66:a0:b3:de:25:d0:4a:57:
6d:9e:53:24:f9:ff:c3:08:2e:3a:20:01:51:8b:2c:
89:9c:16:b9:63:7a:01:b9:ed:cb:7d:71:bf:f6:11:
08:9c:15:4f:c8:92:ec:b8:93:80:87:e1:88:da:0f:
a4:78:e9:5e:c4:86:ab:48:7f:48:12:db:a7:f2:20:
72:9e:57:d0:25:b6:7d:aa:b7:4b:00:5d:18:71:dc:
db:3b:fa:25:89:a8:81:03:48:ee:c7:09:0d:c9:97:
aa:7e:85:63:71:e9:4c:b0:a2:da:2e:fe:6a:5d:0e:
ff:34:7a:1e:35:d3:18:3d:77:e1:96:e8:32:29:2a:
47:e9:55:d7:c9:55:a1:25:50:1d:4b:04:a0:b5:7a:
d1:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:86:EE:77:17:14:F7:CD:BD:EF:81:43:A9:3C:15:6D:CA:D1:03:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5778DE46088911F08F5CD362762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.22.0/24
154.223.25.0/24
154.223.27.0/24
154.223.30.0/23
154.223.36.0/24
154.223.38.0/23
154.223.50.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:2f:1a:a0:c4:69:15:33:9f:47:e5:5b:e8:9e:a4:87:36:1e:
68:12:f9:84:28:4b:59:bc:b1:07:18:67:21:60:60:b6:de:8c:
ba:41:96:1a:a2:36:9c:48:78:c1:3a:1a:59:db:78:6b:22:42:
70:f1:ad:37:db:1a:83:a1:04:a1:92:7a:1e:43:e3:90:d7:3a:
80:e7:ec:b4:95:09:7c:89:c6:bc:94:58:5a:a9:33:d0:60:57:
85:ab:d1:a3:e9:e8:21:48:2b:f0:fe:d3:43:0e:ed:c9:45:6d:
31:b2:e8:89:ed:10:d2:6c:59:8c:54:e0:d1:d0:57:1f:2c:0d:
a0:46:7f:f2:55:c4:65:5e:f8:1f:0a:41:13:5e:e7:58:cf:cd:
8b:58:80:61:d1:31:ef:56:b8:79:49:dc:dd:cb:fc:0d:8f:bb:
b7:f4:4b:9e:b9:4f:60:16:67:7d:20:bb:fa:8a:8c:18:b6:7b:
5d:71:e4:67:4b:67:21:da:24:06:bd:2b:3a:41:36:de:d0:c7:
99:ce:2e:08:bd:0a:23:7f:9c:72:ed:15:0d:b7:e6:53:d2:b1:
05:5c:56:c9:59:eb:f8:56:fc:ed:3b:df:6f:50:c7:12:1e:8d:
e0:f8:90:4a:14:39:82:b5:59:06:6a:2a:e9:6d:87:1f:55:0a:
2b:2b:1b:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:27 2025 by rpki-client