Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9672FD7AF65011EF96EC318A762E951A.roa
File: 9672FD7AF65011EF96EC318A762E951A.roa (raw, json)
Hash identifier: 6GZFEHea242QXdx0XgAqi8I0sN6if9fQWNKPLzdzMFY=
Subject key identifier: D2:06:6E:36:4F:78:92:FA:B9:E9:71:FB:CB:B7:61:70:CE:B9:32:8C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016CFA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9672FD7AF65011EF96EC318A762E951A.roa
Signing time: Sat 01 Mar 2025 03:52:25 +0000
ROA not before: Sat 01 Mar 2025 03:52:22 +0000
ROA not after: Thu 19 Feb 2026 03:52:22 +0000
asID: 984
IP address blocks: 154.205.39.0/24 maxlen: 24
154.205.40.0/24 maxlen: 24
154.205.41.0/24 maxlen: 24
154.205.42.0/24 maxlen: 24
154.205.43.0/24 maxlen: 24
154.205.45.0/24 maxlen: 24
154.205.46.0/24 maxlen: 24
154.205.64.0/24 maxlen: 24
154.205.65.0/24 maxlen: 24
154.205.66.0/24 maxlen: 24
154.205.67.0/24 maxlen: 24
154.205.68.0/24 maxlen: 24
154.205.69.0/24 maxlen: 24
154.205.70.0/24 maxlen: 24
154.205.71.0/24 maxlen: 24
154.205.72.0/24 maxlen: 24
154.205.73.0/24 maxlen: 24
154.205.74.0/24 maxlen: 24
154.205.75.0/24 maxlen: 24
154.205.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93434 (0x16cfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 1 03:52:22 2025 GMT
Not After : Feb 19 03:52:22 2026 GMT
Subject: CN=67c28479-c961
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d0:38:05:f0:7a:ac:1f:1b:51:20:3e:a8:20:
7c:c1:aa:7c:94:e1:f0:87:2f:2d:d2:d1:7f:63:cf:
42:79:02:97:f4:ed:14:24:a0:a7:7f:15:80:fc:31:
12:d4:20:67:0d:ef:a9:44:b4:bc:e4:18:b8:b4:8b:
04:72:07:dd:a8:bb:9c:f6:6e:14:46:97:bf:65:e8:
9e:4b:fe:5c:d6:3d:6a:77:0f:ef:80:b0:a7:b2:0f:
eb:7f:ca:4e:9a:00:fe:55:68:da:65:fe:5a:d4:5c:
ed:2e:40:86:29:44:7a:c6:3e:68:40:07:a3:03:0c:
95:06:56:61:2d:18:a5:a8:67:19:c6:ea:d4:48:28:
94:ad:d1:0b:79:f9:4b:e3:87:5d:d2:46:43:02:5c:
6d:37:ec:7a:66:2b:a6:5c:25:3e:13:a3:86:1b:f3:
88:c8:7b:36:0d:39:7f:5d:80:4b:3d:1a:96:29:27:
2d:76:f2:71:0b:94:71:c0:18:64:56:ba:4a:27:a6:
8b:f3:5c:78:27:d6:f0:9c:9c:45:17:8f:e9:fb:19:
38:fe:17:7c:ba:41:46:39:c8:4a:64:f5:d0:9d:a1:
06:85:c8:df:0a:20:25:45:9e:24:29:20:a6:a1:27:
0b:13:ee:bc:84:22:9a:51:a8:b1:f7:69:34:a8:0a:
30:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:06:6E:36:4F:78:92:FA:B9:E9:71:FB:CB:B7:61:70:CE:B9:32:8C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9672FD7AF65011EF96EC318A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.39.0-154.205.43.255
154.205.45.0-154.205.46.255
154.205.64.0-154.205.76.255
Signature Algorithm: sha256WithRSAEncryption
c3:16:03:94:a4:5d:e9:b0:46:02:1b:7f:b1:be:82:7a:6c:30:
64:08:20:04:3b:fa:0f:26:ee:a0:32:34:44:ae:70:06:5c:87:
6a:4f:19:a1:6c:fa:3a:00:05:4a:a0:66:a0:de:3b:09:98:2c:
02:21:b8:32:3c:b1:a3:79:08:54:5f:f8:e8:6a:96:c6:19:aa:
74:32:49:e8:e3:14:fd:51:df:e1:d2:1b:63:8f:42:07:6a:29:
d4:a0:94:44:58:79:62:03:c6:a2:91:d1:f9:87:55:f6:ab:dd:
5b:cd:9f:4a:5a:50:78:c1:29:18:5f:20:0c:3d:c1:74:51:f9:
d6:8f:04:bb:7a:ad:75:8c:33:ee:bc:d1:32:d9:d8:d4:f1:56:
72:f6:8b:a9:28:5b:f9:7e:40:84:d4:89:fe:3e:b1:17:cc:83:
39:b7:42:fc:9a:f9:92:d2:b7:51:9f:ec:1c:83:7b:63:78:26:
d7:ae:3c:54:47:44:53:2d:66:04:c3:53:e0:fe:cf:8a:e2:9a:
f8:1d:f3:6b:1d:92:63:b9:fa:40:44:95:30:84:06:94:8c:3c:
83:a5:c2:4e:a0:c0:37:bf:07:89:79:11:1a:dd:d6:62:7e:3d:
2b:da:ac:dc:94:b2:eb:c8:7e:17:83:83:a0:70:50:ef:92:46:
57:46:a2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 22:08:03 2025 by rpki-client