Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D32774CEF41D11EFBCA42A56762E951A.roa
File: D32774CEF41D11EFBCA42A56762E951A.roa (raw, json)
Hash identifier: jb8RV5jQIZ61xK3pwaGKahUlmQv/TuG/HXFyqs9NeZc=
Subject key identifier: 6E:9D:52:B6:9C:9D:3B:4E:96:EB:24:75:D6:AB:62:66:C5:25:55:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016171
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D32774CEF41D11EFBCA42A56762E951A.roa
Signing time: Wed 26 Feb 2025 08:44:01 +0000
ROA not before: Wed 26 Feb 2025 08:43:57 +0000
ROA not after: Thu 19 Feb 2026 08:43:57 +0000
asID: 328608
IP address blocks: 154.200.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90481 (0x16171)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 08:43:57 2025 GMT
Not After : Feb 19 08:43:57 2026 GMT
Subject: CN=67bed450-b0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:69:cd:27:31:56:05:c1:71:ff:d4:10:48:50:
27:15:a7:5c:79:12:b0:e5:27:b4:c0:69:a8:87:41:
18:a5:7c:f6:44:bb:26:21:59:df:2d:d8:66:49:1e:
a5:49:89:e8:f4:dc:e3:6d:63:be:11:11:7c:d5:d3:
ac:8d:88:ba:3d:ff:51:bf:84:85:75:de:83:29:ba:
30:27:75:07:49:e8:6d:7e:cb:f2:13:6a:eb:d9:a4:
7d:7e:c4:5b:0a:75:30:bd:e9:79:18:30:fe:c3:a9:
2c:3c:c0:b4:0a:47:1c:fb:1e:d8:e9:5f:12:cc:58:
bc:b0:85:8b:05:be:14:c6:62:b6:f4:cf:31:6c:9b:
96:33:63:a6:0c:8d:d2:08:a8:92:79:32:df:b4:db:
53:26:1c:89:aa:33:09:d9:4f:f9:42:e0:f4:74:3c:
1d:08:62:cb:cc:6a:36:38:0c:6e:b0:ce:5c:cc:03:
d0:f1:35:7c:7c:e5:cb:bf:11:c2:c5:29:1c:86:ec:
6e:c7:3e:d0:e2:e8:8f:61:b8:b0:fb:bd:74:39:92:
e3:39:9e:5a:60:12:96:4e:02:41:ef:8e:e0:32:25:
21:e0:65:89:57:35:0d:b6:fe:7c:56:8a:06:f3:da:
db:a1:06:1e:f4:f4:fc:7b:db:65:48:e2:b2:e4:ed:
6e:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:9D:52:B6:9C:9D:3B:4E:96:EB:24:75:D6:AB:62:66:C5:25:55:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D32774CEF41D11EFBCA42A56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.197.0/24
Signature Algorithm: sha256WithRSAEncryption
be:18:8b:b9:15:0d:8b:d4:ad:3f:25:ee:3c:e6:89:02:99:2b:
72:90:f6:6a:b3:bf:a4:87:cb:8b:79:f2:95:b3:45:94:68:e5:
7f:51:c0:8b:9c:a9:8c:30:e6:21:88:8f:eb:82:31:0e:b2:3c:
41:13:a0:8e:65:a0:55:1a:dd:d3:f5:77:ba:b6:8c:6b:22:7e:
e0:52:a2:e2:b2:02:6c:0d:0f:6a:18:7d:00:b7:b3:2b:13:5c:
f6:4c:22:47:3b:13:78:99:3b:c2:4a:d3:cf:d4:26:4a:b5:fe:
ea:5f:be:01:c2:fc:25:2e:d6:31:e2:69:9d:82:3a:1f:0c:64:
c0:c0:e3:fd:4b:d5:ea:cd:b6:0b:9d:2e:41:1e:64:a4:6c:e0:
ac:a3:0f:0e:8c:13:5c:75:8a:b9:ca:a4:f3:03:c3:60:84:03:
94:07:5d:4e:8e:76:db:c6:53:30:97:3e:d4:d4:ca:99:ea:b8:
b2:a0:66:c3:b0:82:35:a8:cc:80:6d:a8:38:12:cc:a3:9f:12:
e4:2c:66:07:4c:cf:a2:28:dd:38:fc:52:9e:c4:a2:36:69:f7:
c2:93:05:29:e7:1a:16:27:e3:ff:b7:13:47:11:1a:bb:63:60:
a9:c4:2a:9c:cd:e3:2e:20:0f:37:55:ad:6e:ee:3e:6e:ea:11:
90:15:d7:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:30 2025 by rpki-client