Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F9EFABEF42811EF85A9949E762E951A.roa
File: 3F9EFABEF42811EF85A9949E762E951A.roa (raw, json)
Hash identifier: 9IISDCOKLiTyxL5Jr7tvnziRQOJT2vLI+bGFzogPqzw=
Subject key identifier: E1:74:60:84:10:CA:2E:E8:37:B1:87:44:61:BA:51:F2:85:8B:1E:B2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016214
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F9EFABEF42811EF85A9949E762E951A.roa
Signing time: Wed 26 Feb 2025 09:58:37 +0000
ROA not before: Wed 26 Feb 2025 09:58:34 +0000
ROA not after: Thu 19 Feb 2026 09:58:34 +0000
asID: 328608
IP address blocks: 154.200.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90644 (0x16214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 09:58:34 2025 GMT
Not After : Feb 19 09:58:34 2026 GMT
Subject: CN=67bee5cd-3bbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:11:0a:4d:81:93:cc:34:6d:ac:50:53:34:f1:
b9:21:84:58:77:e6:04:2b:5a:8a:57:97:53:46:46:
78:2b:5c:e8:0e:66:20:e3:3c:b3:85:ce:11:51:dd:
ce:22:bf:45:f6:8d:18:a6:0a:d1:07:57:a9:56:78:
fb:1d:8f:7d:74:52:1c:12:b7:0d:10:8e:f2:66:f1:
f0:5b:c3:9c:b0:94:72:33:fb:71:5e:d6:e0:00:11:
5b:16:92:8d:82:c5:76:85:37:84:1a:fc:30:e6:f9:
ca:cd:52:a6:32:c9:53:97:12:a4:e8:a0:e8:89:87:
ec:72:e6:6f:3a:cc:f5:77:9d:30:ab:11:f8:1e:a2:
de:4d:1d:6c:10:d7:91:a3:9b:2d:50:fd:a1:a1:73:
59:70:c6:86:2e:c5:05:2b:5a:0f:0e:0f:6d:2b:40:
3d:5d:a2:0d:8e:81:e3:59:b1:ed:e8:0a:8e:9b:89:
5f:2c:d8:f9:65:b2:61:be:ee:1a:53:c3:ea:28:26:
e8:bd:f9:57:ea:7a:32:3f:ba:96:60:d1:ee:e4:c4:
a9:10:74:07:d3:1d:48:27:8d:b8:99:93:5b:f9:50:
fc:59:be:45:b7:a0:48:e5:99:28:f1:a2:48:6a:a3:
8d:3d:2b:c8:84:ca:14:54:8f:ff:3d:0b:1c:45:45:
a6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:74:60:84:10:CA:2E:E8:37:B1:87:44:61:BA:51:F2:85:8B:1E:B2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/3F9EFABEF42811EF85A9949E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.252.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:86:22:d9:37:b3:73:50:26:79:42:e3:70:8e:9b:4c:4f:ce:
1a:42:c5:6e:c3:e5:7d:f9:1e:50:9a:11:73:19:ae:0a:10:d5:
fe:19:11:96:1a:5a:75:60:5f:6c:fe:3b:27:2d:38:ec:ad:4b:
d0:f5:9a:b0:db:29:fe:76:a8:51:69:e4:ee:76:ea:8c:37:89:
88:75:18:94:f0:fa:7d:20:8e:28:89:11:4d:b4:eb:03:5b:25:
d1:b5:71:a8:31:65:61:44:fb:b7:9a:8c:94:41:5d:b0:a8:ea:
53:49:07:a8:64:0b:ff:04:2f:a1:18:fc:c4:d8:ec:2b:e4:cc:
88:a1:4b:c2:60:87:db:9d:ac:e9:a9:e9:d3:e8:55:72:9f:9b:
60:3c:17:69:f2:6b:6a:d7:e8:26:13:32:cb:0a:c6:21:46:58:
d3:3b:f1:53:cd:5a:14:27:3d:38:24:bb:cb:0a:1a:47:66:44:
b3:f9:f6:39:6e:18:b6:5d:e5:70:06:ad:a9:df:b9:37:41:c5:
b2:0b:fa:3b:20:7c:6f:2e:da:8d:35:a4:a7:e9:02:23:ee:66:
1f:30:ff:39:da:59:67:14:a8:9b:77:92:47:6b:44:d4:6c:17:
cd:11:d3:71:31:97:6e:95:e9:1f:a6:aa:95:90:8a:42:76:ce:
1b:2c:71:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:54:09 2025 by rpki-client