Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1366F5BADD7511EFBD456F93762E951A.roa
File: 1366F5BADD7511EFBD456F93762E951A.roa (raw, json)
Hash identifier: nlLUExPeFTflrmNC1tC8tXepSnqPkjkvHy8ddO7JyNg=
Subject key identifier: A9:AB:FA:FA:2F:9F:B5:D4:83:AB:F8:65:29:F7:1B:6B:3C:0D:96:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D12
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1366F5BADD7511EFBD456F93762E951A.roa
Signing time: Tue 28 Jan 2025 12:40:38 +0000
ROA not before: Tue 28 Jan 2025 12:40:34 +0000
ROA not after: Tue 25 Feb 2025 12:40:34 +0000
asID: 5065
IP address blocks: 154.206.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85266 (0x14d12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 12:40:34 2025 GMT
Not After : Feb 25 12:40:34 2025 GMT
Subject: CN=6798d046-b528
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:60:51:65:f2:ad:1a:8f:31:6c:cd:43:aa:05:
6e:5b:4a:ca:5a:ee:13:eb:f8:ac:ce:be:8b:34:b7:
5b:0a:52:dd:7a:31:83:98:e8:e7:77:d3:77:7d:7c:
9b:1c:6f:85:22:e7:c0:1b:01:29:a5:c5:ca:95:53:
a4:99:24:0b:3d:67:17:24:ac:28:8e:e0:03:8f:a0:
bd:f8:e8:24:11:79:d4:f3:bb:c3:39:05:67:7d:e4:
a6:95:c4:a6:5c:11:d7:48:ef:72:e7:78:2c:58:49:
6b:64:37:f5:cb:b4:a2:69:84:18:8b:df:3a:3b:f5:
8b:d5:c8:72:fd:84:be:9c:a6:a6:db:d5:d9:e5:b1:
23:59:4f:f9:fa:25:dd:75:cc:28:d6:31:fe:1f:94:
f6:9c:21:21:db:62:62:d2:9f:87:a2:11:97:73:22:
2e:81:06:28:ef:11:31:69:e6:32:4f:81:39:fe:99:
d1:8d:f7:9c:d3:49:2f:c5:ed:d5:92:78:2b:83:a2:
55:c7:9b:0c:59:0e:31:9e:f4:78:9c:6d:cb:4d:ea:
90:41:15:2e:8c:9b:c8:70:ea:0f:7a:34:21:c7:07:
85:8e:e0:01:2a:72:9c:66:57:c0:d6:f9:22:53:da:
b0:74:c2:e8:3f:3c:9d:c8:10:27:9e:e0:44:fc:df:
67:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:AB:FA:FA:2F:9F:B5:D4:83:AB:F8:65:29:F7:1B:6B:3C:0D:96:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1366F5BADD7511EFBD456F93762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.44.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:be:82:9b:08:ea:4f:bc:d0:37:c3:d9:98:e3:f5:24:46:72:
59:8c:b6:20:b7:11:a9:68:8b:d1:ec:67:68:0d:0b:2a:dc:ee:
19:af:49:91:a1:ec:85:aa:f0:2e:4a:c9:df:fe:0c:41:62:23:
12:ed:d9:eb:91:71:cc:f6:3a:13:6e:24:7c:83:e4:28:0b:c3:
5b:e7:74:e0:29:eb:f2:92:23:11:36:c1:10:8a:20:03:62:73:
64:d4:45:93:0e:3b:d7:66:17:5d:b0:aa:03:52:83:01:53:e1:
3e:db:23:47:78:1e:d7:d5:36:38:7c:d2:b0:9c:77:37:2a:f8:
47:3c:12:8c:0f:1f:43:d0:54:4e:4f:6a:62:17:49:1f:6c:a1:
10:e8:af:ec:b3:f1:0a:2a:a4:be:cd:35:de:c9:26:fa:6d:66:
47:d9:b1:4e:eb:40:e2:66:93:c9:a3:d8:09:49:c0:a8:7b:70:
e4:a4:09:e0:3e:ce:fb:ca:2c:d1:85:40:08:a4:3f:d0:25:07:
34:ea:8d:bb:cf:45:21:9e:53:0a:65:b8:53:90:7c:9e:03:74:
36:29:a3:f0:79:4e:0b:5a:bd:f8:09:9d:a6:b5:a7:c3:ad:4d:
f7:f8:26:29:bc:d6:05:bc:88:2f:55:23:dc:e0:7b:26:52:1f:
1e:52:90:bf
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAU0SMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI4MTI0MDM0WhcNMjUwMjI1MTI0MDM0WjAYMRYw
FAYDVQQDEw02Nzk4ZDA0Ni1iNTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9WBRZfKtGo8xbM1DqgVuW0rKWu4T6/iszr6LNLdbClLdejGDmOjnd9N3
fXybHG+FIufAGwEppcXKlVOkmSQLPWcXJKwojuADj6C9+OgkEXnU87vDOQVnfeSm
lcSmXBHXSO9y53gsWElrZDf1y7SiaYQYi986O/WL1chy/YS+nKam29XZ5bEjWU/5
+iXddcwo1jH+H5T2nCEh22Ji0p+HohGXcyIugQYo7xExaeYyT4E5/pnRjfec00kv
xe3Vkngrg6JVx5sMWQ4xnvR4nG3LTeqQQRUujJvIcOoPejQhxweFjuABKnKcZlfA
1vkiU9qwdMLoPzydyBAnnuBE/N9neQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKmr
+vovn7XUg6v4ZSn3G2s8DZYmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xMzY2RjVCQURENzUxMUVGQkQ0NTZGOTM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms4sMA0GCSqGSIb3DQEB
CwUAA4IBAQC3voKbCOpPvNA3w9mY4/UkRnJZjLYgtxGpaIvR7GdoDQsq3O4Zr0mR
oeyFqvAuSsnf/gxBYiMS7dnrkXHM9joTbiR8g+QoC8Nb53TgKevykiMRNsEQiiAD
YnNk1EWTDjvXZhddsKoDUoMBU+E+2yNHeB7X1TY4fNKwnHc3KvhHPBKMDx9D0FRO
T2piF0kfbKEQ6K/ss/EKKqS+zTXeySb6bWZH2bFO60DiZpPJo9gJScCoe3DkpAng
Ps77yizRhUAIpD/QJQc06o27z0UhnlMKZbhTkHyeA3Q2KaPweU4LWr34CZ2mtafD
rU33+CYpvNYFvIgvVSPc4HsmUh8eUpC/
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:11:07 2025 by rpki-client