Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A05BE10DA3311EF8F979F8E762E951A.roa
File: 0A05BE10DA3311EF8F979F8E762E951A.roa (raw, json)
Hash identifier: By9iHMf8Iut+XveBBn7C+wiJThy3uL0xU05NYbDCqG0=
Subject key identifier: E9:D9:6A:E9:31:38:7C:1A:1C:AA:E3:F8:01:F7:12:37:20:41:BF:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0144C1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A05BE10DA3311EF8F979F8E762E951A.roa
Signing time: Fri 24 Jan 2025 09:10:22 +0000
ROA not before: Fri 24 Jan 2025 09:10:18 +0000
ROA not after: Wed 05 Mar 2025 09:10:18 +0000
asID: 202656
IP address blocks: 154.219.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83137 (0x144c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 09:10:18 2025 GMT
Not After : Mar 5 09:10:18 2025 GMT
Subject: CN=679358fe-c35f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:58:d7:3a:81:bc:0a:50:85:0c:02:49:18:11:
b8:46:b3:ef:1a:eb:dc:97:ce:f3:90:0f:8c:68:b6:
58:f4:05:6c:99:7d:59:fd:02:01:07:f4:e2:91:ac:
f5:94:ef:f7:c2:37:b9:c7:18:e2:61:b3:3a:94:07:
1e:13:52:3c:ee:9a:29:26:d8:67:65:ef:55:45:a8:
c1:ce:dd:01:38:3a:e9:68:75:00:20:40:e9:80:05:
d5:84:94:34:9d:03:cc:a9:52:a3:65:e6:af:0f:8e:
6f:b0:99:d5:1b:a7:c0:ff:e3:5e:c9:08:dc:74:5b:
51:51:37:05:17:a1:0d:c6:82:f0:c6:7c:43:5a:64:
1c:45:fd:ec:95:36:c4:77:32:f4:ba:21:91:02:73:
d5:fb:e3:fe:51:ec:6a:b6:57:9e:27:5b:4a:1d:fb:
cf:1d:39:00:24:97:02:9e:56:36:44:3d:1f:ec:2f:
24:cc:a5:de:69:c4:20:6e:87:2b:77:c4:08:45:ac:
bd:0f:2c:27:53:e4:88:ab:98:37:73:07:a4:01:42:
e6:be:bc:ad:32:8d:c6:29:01:8f:6e:22:e4:a5:59:
d5:fd:5c:5a:ae:4b:26:de:48:b0:9c:d8:77:46:78:
3f:b5:4b:35:60:d9:c1:38:b5:02:6f:7d:2d:8d:2d:
a4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:D9:6A:E9:31:38:7C:1A:1C:AA:E3:F8:01:F7:12:37:20:41:BF:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0A05BE10DA3311EF8F979F8E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.206.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:cf:ec:e8:86:70:63:1d:3c:4d:56:c6:fc:7e:75:39:2c:b0:
6f:ad:f2:f0:87:70:2f:f9:af:ce:5c:24:47:8b:d6:21:63:ff:
e9:7d:e9:18:ef:d8:0c:98:3a:2c:85:91:b6:c4:0a:9d:3f:e5:
ad:59:11:23:6c:50:93:7b:a5:c5:93:ef:02:89:33:7d:00:f8:
2b:88:17:49:79:fc:69:e2:06:8b:9f:0e:85:96:99:24:5b:66:
9d:c5:e3:06:6c:d6:37:62:52:39:eb:23:54:0e:fe:10:cd:f7:
d3:4e:aa:16:05:be:19:e9:c3:17:a6:0c:7c:06:cf:8f:dd:f8:
07:7f:5e:42:53:d3:c3:75:aa:cb:11:92:21:f3:57:ec:ad:cb:
95:09:77:07:c5:cf:67:ed:dd:e1:f2:32:ca:e1:17:06:4c:f3:
83:cb:89:8f:b6:01:cb:95:28:49:ac:d4:9e:8e:ea:e3:5d:73:
2f:fb:a5:96:f8:85:6e:50:c1:8b:40:14:6d:25:ca:ed:28:6d:
47:30:3e:dd:e8:a2:43:b5:4f:23:88:6c:d7:0f:ea:16:4c:c4:
e4:31:23:b4:5e:b2:bb:38:0e:e2:7d:8a:21:78:d3:d5:d8:2b:
1b:1d:e3:6d:db:ae:63:d3:3d:89:4a:88:99:41:a3:3b:06:f1:
07:00:d1:46
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUTBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MDkxMDE4WhcNMjUwMzA1MDkxMDE4WjAYMRYw
FAYDVQQDEw02NzkzNThmZS1jMzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx1jXOoG8ClCFDAJJGBG4RrPvGuvcl87zkA+MaLZY9AVsmX1Z/QIBB/Ti
kaz1lO/3wje5xxjiYbM6lAceE1I87popJthnZe9VRajBzt0BODrpaHUAIEDpgAXV
hJQ0nQPMqVKjZeavD45vsJnVG6fA/+NeyQjcdFtRUTcFF6ENxoLwxnxDWmQcRf3s
lTbEdzL0uiGRAnPV++P+UexqtleeJ1tKHfvPHTkAJJcCnlY2RD0f7C8kzKXeacQg
bocrd8QIRay9DywnU+SIq5g3cwekAULmvrytMo3GKQGPbiLkpVnV/Vxarksm3kiw
nNh3Rng/tUs1YNnBOLUCb30tjS2kIQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOnZ
aukxOHwaHKrj+AH3EjcgQb/iMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQTA1QkUxMERBMzMxMUVGOEY5NzlGOEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtvOMA0GCSqGSIb3DQEB
CwUAA4IBAQCnz+zohnBjHTxNVsb8fnU5LLBvrfLwh3Av+a/OXCRHi9YhY//pfekY
79gMmDoshZG2xAqdP+WtWREjbFCTe6XFk+8CiTN9APgriBdJefxp4gaLnw6Flpkk
W2adxeMGbNY3YlI56yNUDv4QzffTTqoWBb4Z6cMXpgx8Bs+P3fgHf15CU9PDdarL
EZIh81fsrcuVCXcHxc9n7d3h8jLK4RcGTPODy4mPtgHLlShJrNSejurjXXMv+6WW
+IVuUMGLQBRtJcrtKG1HMD7d6KJDtU8jiGzXD+oWTMTkMSO0XrK7OA7ifYoheNPV
2CsbHeNt265j0z2JSoiZQaM7BvEHANFG
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:38:41 2025 by rpki-client