Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/623C2A24F99611EFA4B5C5B9762E951A.roa
File: 623C2A24F99611EFA4B5C5B9762E951A.roa (raw, json)
Hash identifier: pp0n/SPSy4kIb8BAPi9HZn8fDq4TXQu64A6NkNoQJLA=
Subject key identifier: FC:B5:3A:35:50:65:96:27:5C:37:92:1A:7B:9B:5E:7C:B7:83:37:8A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017244
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/623C2A24F99611EFA4B5C5B9762E951A.roa
Signing time: Wed 05 Mar 2025 07:49:36 +0000
ROA not before: Wed 05 Mar 2025 07:49:33 +0000
ROA not after: Sun 13 Apr 2025 07:49:33 +0000
asID: 20457
IP address blocks: 154.198.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94788 (0x17244)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 5 07:49:33 2025 GMT
Not After : Apr 13 07:49:33 2025 GMT
Subject: CN=67c80210-d1fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b1:15:1b:8a:c8:06:0d:2e:64:c6:a1:d5:06:
8a:37:61:9e:22:79:ae:d2:5f:d2:0d:2e:13:1e:cf:
5f:fd:37:ab:6e:16:05:3e:da:0f:d5:d1:75:12:28:
34:90:f8:f1:bc:24:a0:3d:66:19:cf:57:db:f5:ce:
cc:03:70:90:c1:df:da:a4:a3:32:b5:6b:fd:56:52:
55:ea:0e:05:31:7e:83:6b:36:24:99:17:a9:6f:c6:
18:97:e3:c4:d7:0a:8e:91:b6:cf:bb:0d:e0:52:42:
f1:22:35:21:8d:04:37:65:c5:15:6e:1d:46:1c:81:
4b:6c:6b:87:e5:e2:c5:88:6a:62:68:1e:a3:37:1d:
93:fc:d0:44:b9:05:bc:9a:e8:06:73:7e:af:e5:26:
e8:71:65:2d:99:8c:16:ee:a9:15:91:66:ae:40:f1:
bc:21:de:e6:9b:e7:75:46:c2:b1:bf:ab:ff:6a:90:
3d:e5:05:8e:f8:a4:58:1a:d0:90:37:bd:2f:ee:94:
e1:cb:82:b1:b9:f9:a8:31:25:e2:21:66:21:fb:76:
49:1d:dd:b2:91:34:18:ae:2c:a4:60:97:55:f2:08:
94:85:61:ac:71:24:98:46:99:28:3b:97:da:98:3e:
a7:46:1a:0d:90:54:0b:e2:e1:5c:9e:fe:9c:1d:27:
e2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B5:3A:35:50:65:96:27:5C:37:92:1A:7B:9B:5E:7C:B7:83:37:8A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/623C2A24F99611EFA4B5C5B9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.11.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:e7:26:a3:0f:de:8c:f9:56:c0:bb:e4:7e:77:97:c2:00:28:
3e:eb:7b:cd:a4:32:13:4c:ba:43:e6:22:9e:a2:c0:84:b5:cd:
57:82:d4:36:e7:a3:07:99:3b:7d:6c:10:0a:a4:84:b1:35:ac:
f7:9a:15:e5:93:8a:ed:92:31:27:0e:c7:20:81:16:41:16:3a:
2a:5e:9d:41:ce:7e:93:79:83:75:97:f1:bc:c9:fb:2f:18:a6:
91:18:c5:a3:10:e7:5a:6f:18:8e:10:d6:57:27:9f:d4:fc:04:
2b:66:03:5c:d3:f8:bd:fe:69:c6:3d:85:22:b7:b6:10:63:6d:
86:0e:ef:34:47:6f:52:0a:45:f3:f9:01:93:24:e6:a8:50:83:
f9:1f:3f:3b:d2:13:bf:6d:98:15:ac:e6:12:b2:ae:61:f2:14:
17:63:a2:c6:c1:f5:b3:82:28:c3:f3:5a:bb:0f:12:28:91:e1:
40:2e:e8:26:75:25:33:2e:ff:b2:e5:77:b1:c2:97:84:c5:92:
8e:51:a0:45:80:f2:d3:00:44:fc:d0:b7:6a:44:83:31:76:0f:
16:4e:0e:dd:6e:61:22:27:14:b5:60:61:7f:29:71:58:78:40:
c9:bd:e5:66:b5:8c:a4:5b:0b:70:94:57:13:f3:c2:c2:77:a9:
30:b6:7f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:41 2025 by rpki-client