Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F6CF4F4F42111EFB93C4E6E762E951A.roa
File: 7F6CF4F4F42111EFB93C4E6E762E951A.roa (raw, json)
Hash identifier: 9k2C7yfNNGpTaS+LzkcoIUJf0W3yJosvmmRbYonxrzY=
Subject key identifier: 24:D0:2C:0F:97:E9:4A:DF:29:45:4B:72:3C:FF:3C:7A:5B:3B:53:6F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0161A3
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F6CF4F4F42111EFB93C4E6E762E951A.roa
Signing time: Wed 26 Feb 2025 09:10:18 +0000
ROA not before: Wed 26 Feb 2025 09:10:14 +0000
ROA not after: Thu 19 Feb 2026 09:10:14 +0000
asID: 328608
IP address blocks: 154.200.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90531 (0x161a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 09:10:14 2025 GMT
Not After : Feb 19 09:10:14 2026 GMT
Subject: CN=67beda7a-322c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9b:98:c1:45:5f:2a:cf:90:ee:dd:3f:93:d3:
68:a8:07:5e:b9:e7:14:b4:55:0c:f1:a0:fc:95:01:
b5:0f:82:53:ea:ce:71:e9:80:fe:35:cd:d5:30:5e:
be:e6:df:da:c9:b9:89:d1:be:18:d4:2d:25:c4:cc:
84:09:20:3e:5e:83:f2:ef:44:29:fe:2f:d5:27:86:
c0:9a:3f:a0:8f:98:30:ed:3b:a0:7d:67:55:e7:13:
8b:d1:29:0d:90:ed:f8:8c:57:ea:88:2b:a0:af:bd:
b8:0f:31:a8:13:50:fb:c8:59:72:31:6a:53:fe:98:
22:63:4f:d7:66:b9:73:03:6f:78:26:e4:20:01:bb:
60:97:e9:ee:fa:59:99:95:32:43:10:f2:f3:55:28:
d1:1b:54:28:f5:b5:f3:ce:33:71:92:89:dc:f6:55:
c8:d5:2e:a6:40:bc:93:a3:49:54:31:9e:ea:06:d2:
6e:dd:b6:df:41:44:db:62:d3:04:a1:ec:83:2a:87:
5b:ca:ba:4c:f4:68:d0:c9:b6:08:55:2b:59:10:6b:
aa:4f:d1:09:1c:2d:99:70:58:d3:44:13:fd:63:5d:
99:5a:54:d4:e0:c5:f6:d0:8a:3d:36:69:d7:18:d2:
f6:18:dc:67:2f:16:31:a4:dc:13:a0:50:10:a9:d5:
49:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:D0:2C:0F:97:E9:4A:DF:29:45:4B:72:3C:FF:3C:7A:5B:3B:53:6F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7F6CF4F4F42111EFB93C4E6E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.219.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a9:ea:8f:67:31:18:86:06:f4:df:9c:19:fb:3d:0b:35:34:
5f:f9:aa:90:cb:59:82:0a:9c:bb:c8:79:73:7f:41:99:13:e2:
a4:8a:b1:f2:b7:a5:4e:be:39:3d:c2:79:c6:b8:13:5c:0a:86:
bb:bc:72:9d:13:9b:cb:7d:0b:76:89:dd:22:6d:fd:6f:cc:d0:
59:e6:32:38:71:f7:2c:fb:e6:3b:f4:aa:b1:47:7c:d9:f5:8c:
0e:23:c2:ef:4b:c0:cd:1b:19:e8:d2:de:bf:36:d5:a3:9c:3f:
1d:d2:00:ef:e1:08:68:99:93:8a:4c:98:73:42:8a:c0:11:42:
67:f4:5a:ce:82:a3:42:a6:5a:11:ae:a8:20:d6:0c:6f:89:8b:
63:cc:ea:b6:83:e1:b7:58:63:fb:6b:95:4e:3a:69:39:12:15:
06:be:0a:be:80:04:20:98:31:04:e9:f2:a4:8f:44:83:70:67:
da:83:c1:f4:68:62:94:c1:be:76:6b:cf:5a:9b:22:1d:14:b7:
8e:c5:a1:d7:14:de:a2:b6:e6:18:03:d2:03:61:e7:cb:cc:05:
58:61:b0:b7:aa:b1:73:82:a8:4e:c4:24:15:28:30:b1:56:5b:
2a:21:4e:0b:4d:60:65:05:c6:b9:3a:b8:05:ae:b4:7a:67:2f:
28:a1:ef:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:53:50 2025 by rpki-client