Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFBEB10C0B9711F08D656185762E951A.roa
File: DFBEB10C0B9711F08D656185762E951A.roa (raw, json)
Hash identifier: 5CpV437+AzQPqBXR0doc+kvmHsiaHCncW8FrMUEae8g=
Subject key identifier: C9:5B:54:77:B5:A3:AF:2F:DA:B7:87:8D:12:89:46:0E:DD:44:AD:1D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017694
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFBEB10C0B9711F08D656185762E951A.roa
Signing time: Fri 28 Mar 2025 05:45:37 +0000
ROA not before: Fri 28 Mar 2025 05:45:33 +0000
ROA not after: Thu 17 Apr 2025 05:45:33 +0000
asID: 400619
IP address blocks: 154.222.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95892 (0x17694)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 28 05:45:33 2025 GMT
Not After : Apr 17 05:45:33 2025 GMT
Subject: CN=67e63781-ae2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:54:f1:14:94:47:37:08:fa:45:a8:a8:83:70:
fb:5b:fd:8c:b9:61:62:5c:48:04:b6:dc:3d:c9:ac:
e3:70:bd:57:b7:24:44:21:dd:52:47:47:a9:77:ea:
e1:08:5f:3d:71:ee:a6:0c:a3:d8:57:dc:02:cd:13:
c4:e3:e9:93:aa:31:08:40:c3:c5:8f:26:16:40:6f:
54:6d:1a:47:a7:2c:06:7d:f8:f2:51:0f:30:d0:cc:
c9:94:48:ba:cb:38:e4:43:6e:0a:39:06:26:7c:ec:
fa:9b:cc:c3:8a:04:ca:8e:ac:26:37:8a:6b:c4:e5:
96:99:ea:bc:51:77:7b:31:ec:9a:04:ed:41:f4:40:
02:5d:25:88:21:d0:fa:65:b8:4f:1a:28:d2:c8:5b:
d9:84:aa:55:cf:8b:ea:a2:c9:39:2b:24:c2:e0:08:
0a:19:f2:ae:8a:7f:fa:f3:b5:3b:25:92:99:4f:2f:
3a:0a:7a:b0:85:e9:43:e4:15:bf:36:d1:96:70:1f:
56:77:14:16:73:39:84:34:7f:f5:02:a1:d6:d5:c9:
9d:8e:ec:38:c6:d5:d8:9a:af:c4:1c:54:1e:80:88:
33:22:ed:24:d6:d0:13:f2:ff:67:fd:b0:53:2d:e9:
e1:4d:c5:a9:1e:05:3f:4f:78:c9:ea:fe:94:54:8d:
b9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5B:54:77:B5:A3:AF:2F:DA:B7:87:8D:12:89:46:0E:DD:44:AD:1D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DFBEB10C0B9711F08D656185762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.222.224.0/20
Signature Algorithm: sha256WithRSAEncryption
26:d4:88:5a:76:70:c1:dc:a7:41:9e:83:3a:26:51:24:4a:60:
b0:7b:e1:58:e1:9d:f7:73:fb:fe:04:f6:0d:a9:b9:8f:cd:04:
76:b7:ba:36:fd:c1:5c:0e:d1:90:e0:17:c0:4d:09:68:4e:c0:
39:1e:d2:67:84:49:04:38:6e:8c:90:dd:f6:3e:70:df:bf:38:
61:41:84:89:6c:c7:52:df:08:c4:45:90:76:69:45:7c:40:52:
37:62:be:ce:8e:f9:20:fc:e1:1f:8a:a5:2b:aa:8a:b8:47:a5:
0f:77:4e:76:5e:9b:3a:1a:5e:ab:42:46:20:a1:ca:d6:ca:77:
02:98:82:f5:53:d6:51:ca:87:2a:bb:cc:d9:87:5d:3f:66:55:
e9:6c:5d:f3:61:56:35:5d:31:b4:4e:71:d7:95:b5:42:3d:ca:
79:ac:21:df:ff:b6:d1:f3:bd:a7:d1:2d:dc:f5:4a:03:80:29:
01:0b:f8:ab:8b:13:5d:44:20:3f:50:8e:57:c3:3a:a1:b5:00:
b9:fe:23:4c:4c:e0:74:56:e0:91:0b:73:5e:b6:0e:b6:66:28:
c9:c0:ff:91:e4:8c:77:5e:48:50:a9:f0:4a:ec:c6:79:89:9c:
d7:a6:78:fd:54:5e:07:45:a2:3b:c1:11:c6:47:76:33:f6:ac:
ae:94:01:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 00:37:13 2025 by rpki-client