Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/712C1F18F3D711EF8A003563762E951A.roa
File: 712C1F18F3D711EF8A003563762E951A.roa (raw, json)
Hash identifier: qTouiJjhmZRBwtNkqRl+LiPH3PTrfehVU2ZFjx8REUc=
Subject key identifier: A8:E4:42:50:9A:FF:86:00:D7:BC:00:83:19:25:8D:9B:52:BE:06:23
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016035
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/712C1F18F3D711EF8A003563762E951A.roa
Signing time: Wed 26 Feb 2025 00:20:11 +0000
ROA not before: Wed 26 Feb 2025 00:00:08 +0000
ROA not after: Thu 19 Feb 2026 00:00:08 +0000
asID: 984
IP address blocks: 154.89.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90165 (0x16035)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 00:00:08 2025 GMT
Not After : Feb 19 00:00:08 2026 GMT
Subject: CN=67be5e3b-852d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fd:32:99:63:b6:3f:22:5e:b3:68:49:df:9b:
40:89:06:fc:15:47:ea:ac:16:43:ca:d2:e9:1e:38:
47:16:dc:97:54:30:c5:9c:56:24:93:4e:f2:89:f4:
80:bd:72:6b:14:6a:10:12:61:2c:60:b9:79:e2:e9:
82:65:17:7d:8f:01:20:bf:a3:e2:91:55:0c:1e:4b:
b8:d5:e3:68:43:dd:f5:d2:72:fa:dd:8a:8f:45:30:
3d:5e:76:06:80:7a:a2:f6:c3:b7:97:c3:27:ce:32:
7e:a0:14:8e:de:73:53:d1:d6:fb:f2:3f:64:c5:a8:
33:39:31:64:da:3e:e3:87:4e:32:3a:be:d4:2c:9a:
0f:97:5a:06:24:4b:27:ba:e4:ff:a7:ab:4b:8f:2a:
a7:18:2e:34:ed:9a:4a:aa:f9:59:86:7c:a1:6b:ba:
80:de:d8:ae:cc:28:93:a2:f6:d0:64:ea:15:b4:58:
99:2f:45:1a:d7:95:5d:ba:ea:5c:c5:23:97:07:13:
8f:0f:64:a1:81:49:65:05:10:d1:c9:45:93:3a:d4:
d3:d5:70:8c:f0:cc:78:95:3c:2f:18:50:7b:d1:51:
96:40:bc:26:73:50:7a:e9:32:74:cc:7a:03:e8:38:
4c:c2:04:f3:78:e6:83:be:36:27:a2:ce:c3:ba:ac:
cc:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:E4:42:50:9A:FF:86:00:D7:BC:00:83:19:25:8D:9B:52:BE:06:23
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/712C1F18F3D711EF8A003563762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.237.0/24
Signature Algorithm: sha256WithRSAEncryption
47:50:be:5a:cd:36:06:7d:a0:a9:70:d1:8b:86:0c:b6:79:0a:
15:db:8d:4a:e1:76:da:f1:6d:ce:6d:1f:5b:d9:38:51:2c:dd:
bf:81:8a:b1:19:24:73:cb:06:be:84:e4:bc:83:37:f3:d1:40:
d9:62:95:77:e6:44:48:f8:b5:90:c7:34:b2:a2:9d:3a:95:fe:
fc:33:5c:c3:9f:95:e8:c6:66:8e:0b:b8:74:23:b7:e7:3e:40:
13:5b:1b:01:ce:de:13:8e:f4:d8:a2:3a:10:a0:63:8b:9a:6d:
f2:2f:87:ef:c9:54:9e:ae:9c:bc:43:2c:28:ef:f0:d4:de:24:
42:b9:1c:b2:a1:70:01:82:f8:c3:4d:f1:81:fd:ab:c9:80:1b:
77:29:b0:b3:b5:bc:5f:67:eb:ce:f5:d4:ac:fe:00:5a:25:2b:
09:b8:51:b9:62:84:3d:73:3d:a4:d7:2a:61:be:79:32:c1:e4:
05:a0:3b:c6:d9:ae:6d:fa:7f:96:ec:05:b6:60:ed:a1:8a:6e:
8c:dc:d7:f1:1e:23:7a:da:b8:a2:3b:c3:ba:d5:4f:77:29:09:
e1:75:b9:cd:64:50:b3:9b:d2:98:3b:70:ca:0d:65:61:a2:47:
07:6c:7d:56:e2:2a:6f:ee:a7:54:c9:0a:5d:b1:85:2f:37:56:
84:6b:7a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 01:50:54 2025 by rpki-client