Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67A50B9CC93B11EF9C5213B1762E951A.roa
File: 67A50B9CC93B11EF9C5213B1762E951A.roa (raw, json)
Hash identifier: bmp/wdbUfJJDv/8tblIADyDjZB/K8LE8KL38VLQ+XoM=
Subject key identifier: D7:5C:DA:2A:3C:D9:F7:63:47:8E:F2:5F:88:D4:E0:CB:0D:B1:01:06
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0133FD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67A50B9CC93B11EF9C5213B1762E951A.roa
Signing time: Thu 02 Jan 2025 18:57:25 +0000
ROA not before: Thu 02 Jan 2025 18:57:21 +0000
ROA not after: Sat 13 Dec 2025 18:57:21 +0000
asID: 984
IP address blocks: 154.223.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78845 (0x133fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 18:57:21 2025 GMT
Not After : Dec 13 18:57:21 2025 GMT
Subject: CN=6776e195-b9c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1f:5e:cc:b6:30:bc:60:7a:5d:58:c4:ab:36:
33:54:62:2b:81:1f:7f:25:0c:fd:49:f0:d1:b1:88:
e9:a6:fa:4e:d6:ad:0f:57:b1:b3:9d:7a:fb:5d:bd:
4f:a7:08:13:8b:f2:7d:05:0f:1e:d5:4d:37:b7:b2:
1f:05:15:f1:61:c2:74:5a:90:f4:db:fe:ff:b7:f6:
8d:a8:d5:1d:4f:99:7c:61:fd:e8:e7:5e:09:a7:8c:
1c:6f:b0:31:33:e0:69:05:ea:98:ed:05:44:d2:34:
ec:40:8e:d8:f6:2f:9e:ac:18:8e:99:cb:bf:0a:d5:
e7:5e:ea:25:f4:fb:54:15:a7:f3:99:55:4f:13:b2:
ae:9b:23:b9:e5:e6:91:24:d9:35:52:e1:0c:06:4f:
66:5a:05:cb:1e:f8:27:e4:4a:c5:60:3f:03:42:19:
ca:9e:5e:a7:8d:fa:72:de:80:e8:5f:7e:e5:3f:c1:
f8:78:69:80:0f:bc:bf:34:b3:2b:9d:d2:3b:26:b7:
03:96:9c:20:58:1e:2f:47:ef:5e:ae:f1:69:cb:9a:
08:16:82:75:e0:a6:e5:d3:70:a0:40:0f:04:bd:10:
ba:88:52:a7:80:14:21:61:c2:22:7e:90:62:ca:c8:
cd:f9:ba:6c:88:09:2a:5e:28:09:13:94:54:3b:75:
61:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5C:DA:2A:3C:D9:F7:63:47:8E:F2:5F:88:D4:E0:CB:0D:B1:01:06
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67A50B9CC93B11EF9C5213B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.226.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:7d:48:cd:35:35:30:ed:db:f3:10:94:0c:52:07:c9:70:df:
48:a5:c1:76:67:13:f0:51:f6:1a:33:dd:d8:2c:b5:b6:ba:cf:
35:4d:5a:66:58:98:85:b6:83:6a:8e:f9:56:da:99:26:d2:5c:
6f:96:78:2b:1c:aa:5a:d4:34:bd:6e:30:22:21:31:f3:17:34:
34:cc:c7:f1:62:8a:b2:63:93:57:f7:53:98:4e:28:e9:ee:da:
86:2b:63:8a:84:c4:2a:c2:0a:9d:e6:2f:b2:45:e2:26:e1:e7:
46:a9:ca:96:99:53:aa:47:16:65:00:07:65:0e:06:18:a2:ef:
c5:fe:c4:df:4b:fd:5c:7e:bb:0e:72:db:e1:dc:5e:43:10:81:
6f:1c:81:c9:20:9a:2c:05:19:eb:d5:e3:1f:7c:bb:57:f6:69:
33:06:98:2d:6c:19:e4:d2:db:f5:78:03:10:9c:8e:ba:92:44:
67:7c:cf:e6:d8:ed:85:55:9c:2f:65:77:4e:9e:72:e1:f2:c4:
7e:4e:fe:04:2d:64:d2:04:cc:2a:0b:26:95:74:9b:cd:dc:9f:
78:bf:d9:b9:52:00:b0:e8:7b:20:c8:46:d7:36:b2:e0:da:85:
67:27:88:a8:07:ba:35:b5:38:d0:95:b2:ee:e4:45:a4:ad:55:
a0:92:f8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:03 2025 by rpki-client