Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E95320CF42911EFBB48CCA5762E951A.roa
File: 5E95320CF42911EFBB48CCA5762E951A.roa (raw, json)
Hash identifier: VRFXS7yfLYrQvlf7X19hgcZe/xw1jCFblwMYo4tFCD0=
Subject key identifier: F7:43:EE:C8:44:2E:34:66:66:E7:9F:7F:CA:B2:E9:73:55:B7:3C:4D
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01621F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E95320CF42911EFBB48CCA5762E951A.roa
Signing time: Wed 26 Feb 2025 10:06:39 +0000
ROA not before: Wed 26 Feb 2025 10:06:35 +0000
ROA not after: Thu 19 Feb 2026 10:06:35 +0000
asID: 984
IP address blocks: 154.208.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90655 (0x1621f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 10:06:35 2025 GMT
Not After : Feb 19 10:06:35 2026 GMT
Subject: CN=67bee7af-d0da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a5:93:71:11:6c:4d:a9:16:93:38:8a:67:4e:
8b:d3:11:60:bd:3e:c1:5d:3e:28:35:18:e3:63:0d:
96:6f:68:5f:be:48:81:24:9a:7c:20:36:f6:9c:d3:
9f:90:45:b6:23:fa:18:40:5a:54:e5:89:06:9c:21:
7d:6d:b6:ba:dd:92:6d:a1:62:4f:50:ef:ad:d2:d3:
1e:88:e6:35:a7:06:56:47:61:f9:2f:b0:e7:d0:a8:
b6:84:d4:b1:19:1d:0d:9b:44:90:35:a3:84:98:aa:
c3:7d:e2:dd:52:fb:97:d9:43:36:68:38:33:62:a4:
fd:6b:c1:34:5d:70:31:f8:1b:31:8a:df:95:26:9d:
12:d8:4e:2f:dc:e3:ef:f4:dd:84:17:79:3a:51:7c:
c5:9c:26:6e:44:0c:52:e1:b0:8b:f0:af:9d:1d:f8:
3f:27:27:81:4d:3a:0d:1a:ef:f4:8d:c3:97:47:41:
7b:29:24:a5:f1:d5:81:bd:a3:ef:bb:e1:58:ca:c7:
da:ea:1e:d3:ea:36:1f:76:fe:66:95:88:cd:0f:b2:
92:dc:52:36:96:75:fb:87:e2:96:ec:40:cb:a9:0b:
17:5d:9b:3f:83:ca:84:76:0a:b5:64:78:59:5e:56:
2d:b7:ba:b1:83:7d:82:8d:e2:91:8c:19:70:a1:f9:
af:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:43:EE:C8:44:2E:34:66:66:E7:9F:7F:CA:B2:E9:73:55:B7:3C:4D
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5E95320CF42911EFBB48CCA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.67.0/24
Signature Algorithm: sha256WithRSAEncryption
81:68:35:c0:24:22:9a:5b:cc:d5:03:3a:c4:7d:cf:16:2e:58:
65:f6:38:ce:d6:45:7d:5b:f0:8f:be:d4:5c:a5:77:47:1a:8c:
c3:79:89:80:3c:88:13:67:95:41:32:b0:9e:95:1b:b7:80:bc:
c9:96:aa:5e:c7:cb:90:3c:0d:f4:b0:57:8d:01:64:a2:00:46:
f0:cc:46:57:12:e3:57:a5:96:7d:cc:ec:c6:84:97:59:1b:4e:
c3:32:67:78:c6:8c:3d:47:15:10:89:51:40:a0:8a:e5:06:5f:
e2:ad:a0:47:df:ba:3b:df:5e:3a:8c:b0:e7:c0:f2:82:24:a5:
be:1f:02:31:30:25:b8:cb:a9:af:69:55:cc:1d:10:c0:bd:da:
f4:5e:d7:92:6d:45:ea:2f:98:4d:95:8d:da:44:d5:e1:34:3a:
bc:b4:92:23:7f:6e:91:11:c6:5f:2d:74:88:19:5b:0c:31:5b:
bf:a4:d4:a2:fd:0d:c0:94:79:eb:19:6e:e0:08:74:d6:72:43:
fe:41:f3:14:af:0a:3e:5f:82:2f:e6:cc:27:9b:b4:24:fa:c7:
8c:ee:72:58:09:d5:ce:93:ac:88:04:0a:03:fc:36:95:a8:ca:
57:1b:c9:79:96:c9:dd:f0:21:d9:f1:ca:e5:11:67:f1:3d:a2:
2b:00:25:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:39:28 2025 by rpki-client