Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAE879F8FE4C11EF9265EA84762E951A.roa
File: EAE879F8FE4C11EF9265EA84762E951A.roa (raw, json)
Hash identifier: kcHn7Dzcdz48RSm9ZeJPd/Fm01fUoxsl3mXdHQBdDLY=
Subject key identifier: 0F:C3:71:59:2C:CE:5B:E2:49:DE:87:7D:04:27:7D:6D:7E:D8:29:E9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01736A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAE879F8FE4C11EF9265EA84762E951A.roa
Signing time: Tue 11 Mar 2025 07:46:19 +0000
ROA not before: Tue 11 Mar 2025 07:46:14 +0000
ROA not after: Thu 08 May 2025 07:46:14 +0000
asID: 137443
IP address blocks: 154.223.188.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95082 (0x1736a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 11 07:46:14 2025 GMT
Not After : May 8 07:46:14 2025 GMT
Subject: CN=67cfea4b-f964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:94:99:b0:2d:13:9b:d1:df:6d:11:22:03:e0:
bc:67:bb:56:29:cd:09:5a:85:d4:21:7c:e7:80:65:
8e:6e:af:ff:58:58:ac:83:ca:b0:d0:fc:9c:f7:be:
38:7a:03:66:3f:b3:d3:48:dd:39:6d:03:c1:61:40:
07:03:ba:39:09:b8:10:5b:3a:19:3f:8c:99:68:24:
08:d5:e5:3b:f6:81:59:ba:84:ca:1f:36:30:c5:90:
12:1b:e9:cb:0e:52:63:66:cc:ad:54:f7:97:d9:cc:
8f:3c:a3:d1:31:29:d4:e7:dc:bb:ba:29:f3:57:7f:
d4:47:2d:9f:42:c7:1f:08:41:aa:ac:ae:56:e2:86:
f2:7f:23:be:3d:91:f2:1b:87:61:31:f7:87:f4:a6:
ee:8b:af:cc:9a:00:e1:95:b8:f9:33:86:9e:9f:6d:
3b:dc:49:c3:73:3e:9c:40:8b:bc:31:ac:56:23:32:
16:d7:4b:f0:ce:48:b6:40:3d:6e:3d:3d:35:8b:6c:
36:41:de:85:d4:fe:23:fa:c9:19:3f:bb:8f:f0:22:
03:d7:5f:db:1d:fb:49:f0:a6:40:63:2e:3d:4e:6c:
14:12:ff:b7:7d:51:85:9b:4f:f4:9e:56:f2:2c:a0:
ec:42:53:dd:c3:9d:06:3b:e2:0f:be:cf:3a:ac:17:
bd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:C3:71:59:2C:CE:5B:E2:49:DE:87:7D:04:27:7D:6D:7E:D8:29:E9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EAE879F8FE4C11EF9265EA84762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.223.188.0/22
Signature Algorithm: sha256WithRSAEncryption
36:82:68:5a:bb:48:9e:f9:93:e7:3a:cf:19:0f:e0:69:19:b0:
a4:84:18:a3:73:52:ef:f7:83:6f:2a:5c:04:d7:48:af:fb:a3:
95:1f:89:dd:a3:b2:5a:b9:cd:64:58:92:22:73:b9:1f:82:71:
e3:75:b3:a6:7c:19:95:4e:be:4a:c2:77:df:a5:16:84:91:a0:
36:13:fa:de:61:39:c8:60:52:05:25:06:43:99:90:44:12:aa:
c5:52:8d:49:ef:f2:6d:c2:07:2d:e7:9c:83:bb:55:61:3c:1d:
8b:c1:7f:7f:0b:24:44:82:21:a6:e2:2a:de:14:6d:6e:e6:aa:
94:0c:7c:db:dd:7e:f9:1f:f1:8d:41:b7:2f:98:5b:61:db:78:
59:05:91:10:bb:16:ce:c0:09:90:eb:03:15:d6:06:0c:67:06:
1f:48:46:80:70:52:99:d6:1b:06:4c:ca:14:de:26:af:2b:61:
31:d3:cd:31:a1:f8:61:8b:06:75:ab:ff:b4:44:57:99:26:48:
cd:9d:f4:04:c6:fa:82:d7:64:fd:e8:39:63:4c:b5:88:9f:cb:
08:7a:d6:05:2c:d4:8c:14:35:73:9d:b0:a3:ab:9b:01:3f:76:
a4:17:07:de:1d:49:3a:37:fe:67:14:5a:64:06:be:22:04:ca:
0b:69:f5:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 20:37:26 2025 by rpki-client