Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4695DE8E06B11EF8D967A93762E951A.roa
File: A4695DE8E06B11EF8D967A93762E951A.roa (raw, json)
Hash identifier: AYSnmHCSXz+ofIAShzhyGBgNtmhtvQ4NdiptnNEBUzE=
Subject key identifier: 68:A2:AF:25:9F:82:83:CB:6F:EC:47:20:C3:BA:17:F6:70:67:90:F2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014E8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4695DE8E06B11EF8D967A93762E951A.roa
Signing time: Sat 01 Feb 2025 07:10:40 +0000
ROA not before: Sat 01 Feb 2025 07:10:36 +0000
ROA not after: Thu 01 May 2025 07:10:36 +0000
asID: 328608
IP address blocks: 154.201.48.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85644 (0x14e8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 1 07:10:36 2025 GMT
Not After : May 1 07:10:36 2025 GMT
Subject: CN=679dc8f0-fb1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3c:a7:36:7e:72:e6:c9:94:37:70:54:54:2b:
3f:92:cd:14:ed:ab:14:6b:39:00:cc:f7:38:ba:a2:
a2:ef:dd:79:19:d2:4a:f8:df:25:4c:1a:77:cf:b0:
bb:44:18:23:85:f6:3f:cd:bb:08:0a:fc:32:84:14:
ba:3e:78:dc:e2:cb:fe:4f:18:c4:ab:74:5d:7f:e5:
78:0d:1f:08:11:0f:53:c7:d1:df:7b:8c:07:e8:95:
75:34:ab:d5:44:c7:8c:39:ff:c2:1f:36:3d:69:70:
82:52:19:ff:c8:af:02:ba:55:92:8d:b7:0b:7f:81:
b4:1d:d1:05:db:45:8d:69:90:a8:c3:36:71:87:40:
ef:e8:9a:39:cd:f2:f9:e2:32:2b:cd:30:85:c3:61:
1e:7d:db:88:10:35:2e:08:16:5c:a6:f1:72:38:04:
41:1b:39:00:6f:21:a6:20:b6:d7:d8:06:41:2b:de:
8e:ed:1e:36:e0:42:7d:6a:1e:40:93:68:c5:9f:12:
74:bf:f5:af:11:6b:21:62:f8:47:ec:c4:ed:0c:0a:
3a:44:6e:83:13:57:e0:5f:ba:94:43:39:6a:e3:38:
1b:5a:48:18:17:52:df:04:5a:ed:23:99:71:75:1f:
87:ad:26:9f:2f:ef:c2:7f:1c:74:5a:88:34:df:f7:
b5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A2:AF:25:9F:82:83:CB:6F:EC:47:20:C3:BA:17:F6:70:67:90:F2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A4695DE8E06B11EF8D967A93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.48.0/22
Signature Algorithm: sha256WithRSAEncryption
67:d8:fd:bb:a0:fc:24:00:35:d9:1d:04:9b:d9:48:3a:e0:75:
83:1f:07:34:9d:ea:eb:6f:e8:e3:f6:ce:e4:45:33:dc:0e:ae:
c9:37:95:76:58:af:32:c5:28:8f:a1:c6:3c:69:ce:78:f5:c2:
c5:ef:94:4e:cc:30:41:41:76:c5:07:a0:38:7b:6a:f1:36:cd:
a8:b6:67:7a:bb:f4:f4:c0:e9:75:af:19:b6:8d:6b:f7:a5:4b:
04:ef:78:d4:42:36:b3:31:76:05:10:06:ba:08:d1:da:24:80:
7b:c0:ca:e0:d1:88:c0:75:aa:7a:1b:ac:a3:d1:98:1b:b6:75:
87:d0:09:1a:ef:fc:20:b1:a3:ef:70:29:aa:fa:69:6f:5f:f2:
57:cc:de:db:31:0e:f1:3b:66:c5:63:1c:1e:4a:49:90:e3:6a:
39:bc:ac:34:dc:b4:31:83:86:e6:21:81:81:59:24:07:a4:11:
01:89:89:95:e9:1f:e3:6b:58:28:2f:0d:70:dc:d9:3e:30:46:
c9:b0:73:8f:2f:1a:e0:0f:b7:f6:84:6d:8f:3f:0d:a8:45:8d:
28:97:a2:bd:9e:ee:2a:07:03:56:4c:2f:65:cb:de:65:d4:95:
b6:36:35:ff:7c:86:43:ce:ea:cd:17:38:11:59:27:15:8c:d7:
eb:43:9c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:59:04 2025 by rpki-client