Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A444C16D50911EFBDAAAD66762E951A.roa
File: 2A444C16D50911EFBDAAAD66762E951A.roa (raw, json)
Hash identifier: P2ZWDgk6SzI965sJjfkAXGaI52Cmm8gO8WR38ho7cdY=
Subject key identifier: 4C:49:C1:1F:A4:77:6D:6C:8C:1E:D3:43:9F:A2:FD:01:D8:C6:CB:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D31
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A444C16D50911EFBDAAAD66762E951A.roa
Signing time: Fri 17 Jan 2025 19:28:01 +0000
ROA not before: Fri 17 Jan 2025 19:27:58 +0000
ROA not after: Sat 22 Feb 2025 19:27:58 +0000
asID: 54801
IP address blocks: 154.86.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81201 (0x13d31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 19:27:58 2025 GMT
Not After : Feb 22 19:27:58 2025 GMT
Subject: CN=678aaf41-068a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:80:63:e9:68:52:98:d1:e5:b7:70:7b:fc:02:
f2:54:36:87:42:5a:ae:cd:3b:5a:67:c1:37:10:0d:
ee:f4:c1:5b:9a:5e:fe:c8:92:e1:05:50:8d:1d:58:
9f:1b:c9:23:32:ee:4d:92:ae:63:b1:d9:5f:83:a5:
b8:de:d3:f3:ce:14:96:7a:2b:f8:57:21:a5:a2:a2:
09:fd:fd:f3:52:c9:bb:67:11:c0:0e:ce:f5:5b:fa:
7e:a9:11:88:3e:80:c3:3a:ef:4f:28:eb:18:2e:a7:
3f:69:97:d0:fd:f4:a9:5b:b2:5f:9d:4c:ae:59:21:
0c:6f:d0:6f:60:69:fa:c0:8c:91:7a:a9:14:d4:05:
79:c5:a2:f4:2f:65:f9:d5:6e:a4:69:7a:45:ff:d8:
8b:b8:9a:34:2f:29:3d:ac:4b:65:24:39:bd:84:f4:
b2:f0:be:fd:e2:75:ef:e2:cb:4f:ff:9d:b2:96:69:
e4:99:ee:1c:ff:27:09:bf:2c:c7:44:e7:d5:b0:81:
7b:7d:b6:1c:2d:cb:00:1d:2b:0a:ce:ff:9f:d4:3f:
62:e3:ac:6c:e4:f9:2e:92:67:48:37:3b:ac:e4:cc:
83:83:19:17:eb:6e:15:e6:d9:90:2f:27:78:5b:c3:
7a:cf:71:d3:c7:22:0d:9e:b0:5b:62:5a:70:0b:33:
e7:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:49:C1:1F:A4:77:6D:6C:8C:1E:D3:43:9F:A2:FD:01:D8:C6:CB:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2A444C16D50911EFBDAAAD66762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.0.0/24
Signature Algorithm: sha256WithRSAEncryption
32:c3:bc:cd:0c:4f:86:40:78:8f:94:63:5d:f8:d6:91:24:2a:
cf:89:c9:5c:0c:e8:71:bd:78:17:03:fd:bb:7c:bd:14:39:c0:
c1:b1:20:5f:69:ab:79:dd:26:ba:0c:8e:3a:27:c7:ee:cf:5a:
b2:16:0c:b8:74:1a:fb:69:e2:5b:3d:d5:0d:3f:32:0c:f7:5c:
ef:48:93:6c:64:44:f1:b8:5d:07:ac:c1:62:76:3f:cc:3a:4d:
55:81:ac:42:15:6d:01:5b:99:6f:67:5d:d4:5b:bd:b1:d1:c0:
c4:dd:02:e0:4f:1c:36:73:af:16:76:9c:54:49:4d:81:40:bf:
2c:23:01:a8:64:ba:4b:ce:4c:00:a7:bd:4f:fa:c5:f1:57:36:
20:a3:44:2a:33:3a:16:3c:84:9d:d4:29:bd:80:1e:6c:7e:71:
f4:51:de:d6:d3:47:ac:52:16:90:dc:e7:49:21:5e:f0:f4:55:
c8:fd:f5:67:93:92:8e:c6:79:51:bc:ea:8b:01:44:a4:72:98:
02:e9:53:f6:23:0f:58:b5:8a:ba:a6:17:40:45:4e:38:32:e7:
9c:f7:a1:84:51:d0:37:fc:7d:54:d5:84:0d:dc:29:f3:fd:e3:
34:7e:71:2d:3d:9c:6b:38:22:59:64:05:56:c0:ea:d7:74:7b:
81:14:20:90
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT0xMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE3MTkyNzU4WhcNMjUwMjIyMTkyNzU4WjAYMRYw
FAYDVQQDEw02NzhhYWY0MS0wNjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAv4Bj6WhSmNHlt3B7/ALyVDaHQlquzTtaZ8E3EA3u9MFbml7+yJLhBVCN
HVifG8kjMu5Nkq5jsdlfg6W43tPzzhSWeiv4VyGloqIJ/f3zUsm7ZxHADs71W/p+
qRGIPoDDOu9PKOsYLqc/aZfQ/fSpW7JfnUyuWSEMb9BvYGn6wIyReqkU1AV5xaL0
L2X51W6kaXpF/9iLuJo0Lyk9rEtlJDm9hPSy8L794nXv4stP/52ylmnkme4c/ycJ
vyzHROfVsIF7fbYcLcsAHSsKzv+f1D9i46xs5PkukmdINzus5MyDgxkX624V5tmQ
Lyd4W8N6z3HTxyINnrBbYlpwCzPnvwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFExJ
wR+kd21sjB7TQ5+i/QHYxsskMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yQTQ0NEMxNkQ1MDkxMUVGQkRBQUFENjY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlYAMA0GCSqGSIb3DQEB
CwUAA4IBAQAyw7zNDE+GQHiPlGNd+NaRJCrPiclcDOhxvXgXA/27fL0UOcDBsSBf
aat53Sa6DI46J8fuz1qyFgy4dBr7aeJbPdUNPzIM91zvSJNsZETxuF0HrMFidj/M
Ok1VgaxCFW0BW5lvZ13UW72x0cDE3QLgTxw2c68WdpxUSU2BQL8sIwGoZLpLzkwA
p71P+sXxVzYgo0QqMzoWPISd1Cm9gB5sfnH0Ud7W00esUhaQ3OdJIV7w9FXI/fVn
k5KOxnlRvOqLAUSkcpgC6VP2Iw9YtYq6phdARU44Muec96GEUdA3/H1U1YQN3Cnz
/eM0fnEtPZxrOCJZZAVWwOrXdHuBFCCQ
-----END CERTIFICATE-----
Generated at Sat Apr 26 04:33:17 2025 by rpki-client