Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/796A20E6F2E011EF91A85D5F762E951A.roa
File: 796A20E6F2E011EF91A85D5F762E951A.roa (raw, json)
Hash identifier: qSx45sukBjRbDLGFnJh235/ahBy3bRNf/cP8R6DDNkM=
Subject key identifier: DA:DF:3A:32:14:02:70:79:F8:6D:48:1E:DA:19:F8:10:D9:67:3B:7D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015CBC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/796A20E6F2E011EF91A85D5F762E951A.roa
Signing time: Mon 24 Feb 2025 18:52:20 +0000
ROA not before: Mon 24 Feb 2025 18:52:16 +0000
ROA not after: Mon 07 Apr 2025 18:52:16 +0000
asID: 63139
IP address blocks: 154.223.30.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89276 (0x15cbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 24 18:52:16 2025 GMT
Not After : Apr 7 18:52:16 2025 GMT
Subject: CN=67bcbfe3-904d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:39:68:a3:8a:68:5d:45:1c:2f:17:8c:41:f1:
4f:48:c3:64:47:76:05:ef:b8:1b:48:85:e9:ff:67:
06:5e:1e:5b:31:03:06:4e:43:fa:ae:8f:5f:51:2e:
e6:a4:48:61:8a:97:e3:98:4c:c6:8f:41:cb:73:ba:
95:df:d5:0d:fc:0f:4f:c4:13:94:85:d3:2f:96:6d:
c6:aa:31:72:f4:b8:96:22:4e:15:42:27:90:f5:61:
22:be:b6:90:0c:41:81:8a:61:dd:e8:d7:26:8c:23:
b9:b2:24:5e:d4:ed:e8:99:72:3d:a7:9b:0a:b6:fa:
d2:79:d6:f3:1c:a8:02:a1:a7:04:26:8e:5f:02:36:
d0:52:12:d3:7d:1b:7b:6c:ce:9a:e8:eb:bb:a3:d6:
d5:1d:63:63:30:c5:72:4a:a8:86:80:69:bb:eb:45:
5c:a3:ee:8c:1d:40:57:07:cd:60:fd:89:55:92:f8:
31:c1:b0:87:db:53:60:5e:d1:c8:57:0f:60:3d:a2:
44:97:a4:7a:a6:21:c8:3b:23:02:98:6d:98:fe:44:
f9:01:ab:87:0a:21:a7:23:5e:fe:b7:1f:3e:62:87:
a6:86:41:ac:0f:8e:3a:d2:f9:7f:ae:0b:3c:32:5d:
7f:f0:3a:22:31:79:d4:a8:53:1e:32:d4:9c:69:86:
24:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:DF:3A:32:14:02:70:79:F8:6D:48:1E:DA:19:F8:10:D9:67:3B:7D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/796A20E6F2E011EF91A85D5F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.30.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f8:9b:e1:e0:74:ca:60:aa:e6:72:9b:16:94:ee:ad:5b:a0:
20:5e:41:cc:8d:27:ef:d2:fa:19:f5:43:44:64:1b:ce:f5:e5:
ec:cb:b3:32:04:d7:ab:9c:0a:f1:16:42:2e:ca:22:18:b5:cf:
33:42:61:54:6f:96:21:fa:6b:9b:a6:fb:89:51:28:ae:75:21:
b1:ae:5f:de:f1:a9:fc:9d:97:44:31:9d:df:a4:d5:ef:ec:17:
bb:7e:2c:31:4d:b0:d2:78:cd:cb:e8:57:97:86:8f:d1:6c:a2:
f7:13:91:38:e5:ef:ad:64:bd:07:3d:d6:9b:1f:2d:6a:51:90:
4c:5f:cc:6b:f7:9e:57:ec:8a:39:34:7f:10:4a:38:c2:a4:72:
26:03:65:b7:88:8c:84:27:79:f5:3e:72:8f:65:09:d2:53:84:
26:3a:96:3c:65:3e:4f:c6:57:5f:62:90:e2:8b:6a:a4:ed:20:
92:ff:07:d1:77:ca:d2:b8:f6:ef:76:d1:35:4b:54:3a:96:93:
80:3b:00:14:69:e1:cd:1a:68:8c:9b:2b:6a:c2:c1:59:3c:ac:
4a:3d:73:07:f2:91:d9:e7:60:2b:14:2a:5e:0f:7f:b9:ce:38:
a6:c5:d5:9b:2e:60:f7:ef:d8:52:c4:e8:07:4c:69:43:cb:22:
c7:1b:2b:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 11:09:43 2025 by rpki-client