Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1824889AD95D11EF8388F06D762E951A.roa
File: 1824889AD95D11EF8388F06D762E951A.roa (raw, json)
Hash identifier: g2+tvnc5a6OP0yZMFveTHFAbNPdnWxc3K+aN8ummd20=
Subject key identifier: 66:46:DA:CE:DF:78:EF:1A:F0:87:52:83:51:BE:1E:FE:E2:88:05:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01404B
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1824889AD95D11EF8388F06D762E951A.roa
Signing time: Thu 23 Jan 2025 07:38:53 +0000
ROA not before: Thu 23 Jan 2025 07:38:49 +0000
ROA not after: Sat 08 Feb 2025 07:38:49 +0000
asID: 18229
IP address blocks: 154.210.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81995 (0x1404b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 07:38:49 2025 GMT
Not After : Feb 8 07:38:49 2025 GMT
Subject: CN=6791f20d-001e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:90:c3:8a:66:82:9f:c0:60:99:c0:7a:f2:8c:
10:a4:5c:c4:4a:84:0a:60:3a:11:10:f2:6a:e5:c3:
8c:f8:ff:c4:eb:4d:5e:4b:4d:b4:3d:f3:7b:51:c5:
33:48:bd:3f:d7:ee:d7:bb:6e:2c:19:24:ea:9c:0a:
5f:b8:a2:52:72:bb:f1:c0:e2:b8:2a:e2:ad:69:24:
e1:e4:4b:3e:c3:00:d0:83:3b:f5:ea:33:6b:53:e7:
14:65:ac:9f:44:85:66:a0:f8:10:20:d4:f0:4b:c6:
57:17:3b:93:65:f6:8c:79:3c:0e:3f:b8:c0:6c:28:
6a:b0:91:76:8b:ac:71:4b:57:0c:d3:cc:36:11:e7:
8d:40:34:45:91:16:f8:3e:4b:d8:f7:64:dc:25:8d:
e4:36:a2:d0:19:de:f8:8d:83:43:3e:3f:a5:39:6a:
a1:12:89:fc:10:1d:05:26:4c:e8:51:6d:90:0e:d7:
36:c7:10:fa:8c:2f:ac:88:b7:38:37:61:a5:81:e9:
d1:4b:9a:3c:35:11:54:a4:e5:5e:1e:f8:0c:d9:28:
5c:48:6e:d6:9c:0c:ff:09:ac:a9:41:66:ab:af:00:
92:e0:a3:f6:ac:b3:c9:d1:74:28:01:3c:f4:05:8e:
e6:21:9c:41:4e:95:02:b5:3c:d3:26:80:fc:98:6d:
75:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:46:DA:CE:DF:78:EF:1A:F0:87:52:83:51:BE:1E:FE:E2:88:05:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1824889AD95D11EF8388F06D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.166.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:3c:63:3f:11:24:d8:20:92:65:26:0c:7a:e6:4e:54:84:f0:
a5:19:28:6d:ba:ad:83:76:ff:c7:62:01:a8:7f:66:ba:79:99:
65:33:1e:26:bf:6a:a4:aa:f6:9d:bb:d9:eb:c5:54:1d:9a:5a:
99:75:61:bb:7a:47:25:b7:f5:b5:e2:69:90:c4:d4:25:bc:38:
48:03:b1:f4:5f:52:9f:f6:7f:96:b1:c4:3b:53:31:6d:ec:f7:
d2:a7:8e:45:44:0e:1f:eb:44:de:d2:50:57:2d:44:4a:c0:ae:
21:e3:f6:43:3d:05:df:0f:bc:e8:57:03:e6:85:48:47:b0:56:
1d:e1:f0:ef:34:5d:45:79:6a:72:b1:12:ae:69:08:31:ef:c8:
93:14:bd:9c:b6:23:5a:3d:9f:9e:66:75:32:f1:a3:dd:ec:ab:
a9:c9:85:2e:47:96:d5:1e:a6:ac:62:f2:25:16:7b:04:09:e1:
25:3c:2c:4e:b2:37:8c:55:1d:d0:eb:d5:02:2d:af:de:b8:f3:
3a:82:01:29:1f:7a:75:97:06:15:5e:8e:43:81:4e:a4:c1:3e:
d3:91:d1:51:46:e5:1f:7c:e7:7c:ed:0a:51:c6:97:eb:66:c5:
32:cc:3c:aa:0d:aa:e7:e7:84:73:d8:e1:62:96:0d:c1:9c:28:
0c:76:da:10
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUBLMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIzMDczODQ5WhcNMjUwMjA4MDczODQ5WjAYMRYw
FAYDVQQDEw02NzkxZjIwZC0wMDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqJDDimaCn8BgmcB68owQpFzESoQKYDoREPJq5cOM+P/E601eS020PfN7
UcUzSL0/1+7Xu24sGSTqnApfuKJScrvxwOK4KuKtaSTh5Es+wwDQgzv16jNrU+cU
ZayfRIVmoPgQINTwS8ZXFzuTZfaMeTwOP7jAbChqsJF2i6xxS1cM08w2EeeNQDRF
kRb4PkvY92TcJY3kNqLQGd74jYNDPj+lOWqhEon8EB0FJkzoUW2QDtc2xxD6jC+s
iLc4N2GlgenRS5o8NRFUpOVeHvgM2ShcSG7WnAz/CaypQWarrwCS4KP2rLPJ0XQo
ATz0BY7mIZxBTpUCtTzTJoD8mG11HQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGZG
2s7feO8a8IdSg1G+Hv7iiAUVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xODI0ODg5QUQ5NUQxMUVGODM4OEYwNkQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtKmMA0GCSqGSIb3DQEB
CwUAA4IBAQBcPGM/ESTYIJJlJgx65k5UhPClGShtuq2Ddv/HYgGof2a6eZllMx4m
v2qkqvadu9nrxVQdmlqZdWG7ekclt/W14mmQxNQlvDhIA7H0X1Kf9n+WscQ7UzFt
7PfSp45FRA4f60Te0lBXLURKwK4h4/ZDPQXfD7zoVwPmhUhHsFYd4fDvNF1FeWpy
sRKuaQgx78iTFL2ctiNaPZ+eZnUy8aPd7KupyYUuR5bVHqasYvIlFnsECeElPCxO
sjeMVR3Q69UCLa/euPM6ggEpH3p1lwYVXo5DgU6kwT7TkdFRRuUffOd87QpRxpfr
ZsUyzDyqDarn54Rz2OFilg3BnCgMdtoQ
-----END CERTIFICATE-----
Generated at Sun Apr 27 16:42:28 2025 by rpki-client