Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4C2F060C53811EFB286C4B6762E951A.roa
File: D4C2F060C53811EFB286C4B6762E951A.roa (raw, json)
Hash identifier: yi9s9ztL0TQj6Zn9rcVE7e5SpIcG/QZWMgqkaDtEHs4=
Subject key identifier: DA:D9:BD:C6:C6:FE:44:7A:6A:19:F0:F5:CD:EF:CA:50:9D:3C:F0:C3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012C31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4C2F060C53811EFB286C4B6762E951A.roa
Signing time: Sat 28 Dec 2024 16:28:55 +0000
ROA not before: Sat 28 Dec 2024 16:28:51 +0000
ROA not after: Sun 12 Dec 2027 16:28:51 +0000
asID: 17561
IP address blocks: 154.205.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76849 (0x12c31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 16:28:51 2024 GMT
Not After : Dec 12 16:28:51 2027 GMT
Subject: CN=67702747-4af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:58:d3:78:37:d2:c5:7c:e2:a6:b7:73:32:d2:
bf:f0:c5:f1:a0:c0:d1:13:db:97:73:4b:06:51:72:
e2:ad:49:aa:de:ee:76:68:13:92:0e:b2:6d:d8:8a:
eb:fa:f3:da:24:fb:d8:94:2c:87:1e:fa:4f:39:61:
2f:48:5e:29:cd:b5:16:18:96:3a:6f:42:cd:71:ba:
dc:19:7c:09:34:35:5c:8e:ba:3e:05:74:05:aa:34:
4c:d8:a4:23:1f:fc:99:ef:c9:d2:f5:9c:13:6b:1f:
c8:b1:e1:7f:87:ff:f6:ed:c3:f8:dd:6d:f3:f4:f6:
b2:1e:d7:34:41:13:cd:69:53:f2:48:49:0e:87:97:
2f:44:ef:fb:a5:e6:b9:22:0a:9b:41:66:0b:5c:c4:
d2:23:cd:83:b8:3f:e1:cf:2b:69:75:fc:10:87:82:
4d:17:38:8b:bd:e1:ab:fa:b9:16:08:a3:83:c7:2e:
0e:e5:4b:56:1c:fe:cf:04:07:3e:7e:43:15:1c:19:
a8:42:1c:e3:db:71:96:a4:5a:ae:c0:56:8b:bb:9d:
92:0f:bb:3e:93:ef:0f:ef:ea:bb:cb:f1:2a:84:a3:
14:69:45:d8:4c:1b:ec:a9:81:ed:98:19:e5:32:40:
b8:47:79:8d:86:ee:24:e4:de:86:bc:5a:3d:98:d0:
d3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D9:BD:C6:C6:FE:44:7A:6A:19:F0:F5:CD:EF:CA:50:9D:3C:F0:C3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4C2F060C53811EFB286C4B6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.33.0/24
Signature Algorithm: sha256WithRSAEncryption
d3:8b:fa:36:b9:3e:49:f2:db:dc:04:1f:33:23:25:06:31:8e:
53:68:ee:5a:87:80:c9:4b:14:53:00:0e:ee:b9:41:ff:f1:aa:
d3:c0:b3:e0:55:33:2b:ac:fc:69:e6:c9:28:70:14:10:9f:6c:
b3:38:b5:31:86:65:cc:b6:ef:83:57:34:f5:d2:05:b5:fd:92:
b7:48:4f:b5:8e:9d:73:9f:f5:a1:c9:04:75:09:27:07:d7:11:
42:ce:78:19:a3:8a:be:9e:06:db:b7:22:96:55:04:cd:b4:fa:
9a:4c:5a:46:8a:43:df:01:56:10:6c:c7:ae:ab:66:c0:95:b6:
e3:d8:24:b4:ef:a5:56:2a:88:10:0f:f0:b2:89:d3:9a:36:43:
ce:9a:83:23:0e:48:f7:cf:17:43:57:6f:2c:28:ef:f4:44:e6:
44:f8:55:35:74:db:37:75:6c:78:bc:5f:50:9b:8c:14:e5:c1:
d3:c5:9a:fc:9a:ee:83:13:93:b1:6b:10:a1:8b:6d:95:99:1a:
f5:34:bd:cd:fc:ac:7d:5f:aa:8c:71:85:af:a5:9a:cc:b0:ff:
b2:2e:9b:93:e7:51:5f:3f:ea:a6:e0:bb:3c:80:ae:52:c5:0a:
99:77:9d:3b:14:6a:45:58:68:e4:57:40:85:26:28:0d:b1:28:
5a:f9:68:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:55:27 2025 by rpki-client