Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25D02984DD6A11EFA958754B762E951A.roa
File: 25D02984DD6A11EFA958754B762E951A.roa (raw, json)
Hash identifier: QD4tGEDAwx9TFwhnSIpA+KxAswx7Umqy9V0appBx0Kk=
Subject key identifier: D2:FB:E3:58:10:F9:32:FD:7D:06:62:7B:05:4F:EE:0C:4E:32:EB:95
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014CD8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25D02984DD6A11EFA958754B762E951A.roa
Signing time: Tue 28 Jan 2025 11:22:24 +0000
ROA not before: Tue 28 Jan 2025 11:22:21 +0000
ROA not after: Wed 12 Feb 2025 11:22:21 +0000
asID: 5065
IP address blocks: 154.94.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85208 (0x14cd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 11:22:21 2025 GMT
Not After : Feb 12 11:22:21 2025 GMT
Subject: CN=6798bdf0-a405
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5c:2f:b7:92:82:5d:98:4c:68:ad:63:97:09:
f2:9a:b2:1d:d7:41:48:a2:7e:a9:16:f2:bd:66:43:
59:40:c9:86:a5:b6:7e:cb:6e:c5:d4:b7:40:a3:2e:
59:fd:22:9a:27:a8:2a:cb:dd:c4:47:39:ee:68:d5:
5c:30:49:80:b9:d5:4c:df:38:cf:4e:b1:1b:b2:4e:
36:14:00:c6:be:88:30:bc:82:fc:b8:a9:15:0c:8b:
48:39:b5:97:ae:19:3a:50:0f:c9:5d:e8:5c:ee:e2:
2e:82:7b:c5:12:53:7a:f3:84:0c:98:72:66:69:97:
ea:07:2f:dd:19:6d:90:dd:34:d5:a3:e0:a1:33:d0:
77:dd:53:14:e7:74:67:67:5f:21:cd:dc:8b:09:68:
11:dc:be:df:eb:82:c0:41:4f:0a:9c:41:c2:82:48:
6d:75:ce:c0:f2:42:89:61:35:9c:64:3d:9e:ac:70:
c8:5e:2f:4a:5a:75:76:71:50:ac:9b:d0:24:53:21:
11:1a:13:c1:4b:c0:8f:97:ec:b6:1c:d2:13:69:09:
2b:e0:ef:84:ba:d4:22:90:e0:a8:f7:7f:68:ad:4b:
5d:db:13:cf:1b:31:29:48:54:01:9e:fa:e9:33:2f:
a3:21:65:16:af:d9:78:86:84:15:39:e2:7a:a4:fd:
e7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FB:E3:58:10:F9:32:FD:7D:06:62:7B:05:4F:EE:0C:4E:32:EB:95
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/25D02984DD6A11EFA958754B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.63.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:ee:53:3a:a3:41:fa:a7:98:1e:4b:76:84:09:ae:db:12:06:
07:68:9c:c8:07:c6:25:db:6a:fb:d9:59:9e:d1:25:c6:d4:77:
4f:96:45:83:8b:18:70:b2:64:27:13:c9:89:49:12:01:88:28:
c4:89:4d:5c:1f:ea:d9:4d:43:98:da:47:83:9a:26:cb:e1:6e:
c4:a1:ee:f4:77:5e:24:dc:64:f9:f8:fa:df:57:97:01:41:e6:
d0:ab:69:5f:98:31:e8:c3:d5:de:dc:3c:15:37:36:b5:90:bc:
58:44:3e:1f:66:37:29:43:fe:42:39:99:1a:3e:1e:aa:bc:57:
88:9e:43:62:b8:d9:04:30:47:ee:6c:ec:4c:ff:be:4a:fa:e8:
f5:56:48:42:19:9c:bf:82:14:a2:de:8a:bd:63:dd:ec:93:a3:
73:fb:63:0c:9e:c3:eb:df:7b:ee:ab:5b:92:e8:8c:be:62:62:
d1:93:8d:b3:6c:f6:88:9e:ce:8f:e5:67:52:45:86:b2:03:44:
78:9b:5e:b5:95:9d:05:ea:86:4e:ec:91:d4:17:43:6f:0e:39:
fd:58:42:c5:14:1a:0c:b8:f8:bc:fd:36:df:5d:b0:85:86:7d:
00:89:51:c3:69:4a:d3:61:e2:26:ff:72:1c:57:1c:16:30:1a:
63:29:2b:6a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUzYMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI4MTEyMjIxWhcNMjUwMjEyMTEyMjIxWjAYMRYw
FAYDVQQDEw02Nzk4YmRmMC1hNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAn1wvt5KCXZhMaK1jlwnymrId10FIon6pFvK9ZkNZQMmGpbZ+y27F1LdA
oy5Z/SKaJ6gqy93ERznuaNVcMEmAudVM3zjPTrEbsk42FADGvogwvIL8uKkVDItI
ObWXrhk6UA/JXehc7uIugnvFElN684QMmHJmaZfqBy/dGW2Q3TTVo+ChM9B33VMU
53RnZ18hzdyLCWgR3L7f64LAQU8KnEHCgkhtdc7A8kKJYTWcZD2erHDIXi9KWnV2
cVCsm9AkUyERGhPBS8CPl+y2HNITaQkr4O+EutQikOCo939orUtd2xPPGzEpSFQB
nvrpMy+jIWUWr9l4hoQVOeJ6pP3nSQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNL7
41gQ+TL9fQZiewVP7gxOMuuVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNUQwMjk4NERENkExMUVGQTk1ODc1NEI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml4/MA0GCSqGSIb3DQEB
CwUAA4IBAQDI7lM6o0H6p5geS3aECa7bEgYHaJzIB8Yl22r72Vme0SXG1HdPlkWD
ixhwsmQnE8mJSRIBiCjEiU1cH+rZTUOY2keDmibL4W7Eoe70d14k3GT5+PrfV5cB
QebQq2lfmDHow9Xe3DwVNza1kLxYRD4fZjcpQ/5COZkaPh6qvFeInkNiuNkEMEfu
bOxM/75K+uj1VkhCGZy/ghSi3oq9Y93sk6Nz+2MMnsPr33vuq1uS6Iy+YmLRk42z
bPaIns6P5WdSRYayA0R4m161lZ0F6oZO7JHUF0NvDjn9WELFFBoMuPi8/TbfXbCF
hn0AiVHDaUrTYeIm/3IcVxwWMBpjKStq
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:06:06 2025 by rpki-client