Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36E3406ED9C611EF882354A6762E951A.roa
File: 36E3406ED9C611EF882354A6762E951A.roa (raw, json)
Hash identifier: gQ3cNlDi7o77e90g0Qv9ORdJiwru/WZEzFxoJO7GvGQ=
Subject key identifier: 34:E1:F9:99:24:01:16:57:CD:84:78:C4:F1:56:1F:26:12:7D:59:DB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142C0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36E3406ED9C611EF882354A6762E951A.roa
Signing time: Thu 23 Jan 2025 20:11:22 +0000
ROA not before: Fri 24 Jan 2025 20:11:18 +0000
ROA not after: Fri 28 Feb 2025 20:11:18 +0000
asID: 62240
IP address blocks: 154.196.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82624 (0x142c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 20:11:18 2025 GMT
Not After : Feb 28 20:11:18 2025 GMT
Subject: CN=6792a26a-215c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:14:e6:fe:7c:1e:de:db:f3:72:2e:41:22:30:
02:ef:41:08:cf:84:ca:d2:4f:92:cd:3e:03:df:f5:
9e:ab:d8:76:47:29:7f:df:bf:30:5a:42:8e:b9:b3:
0f:3e:94:d1:ef:19:1c:a3:ca:ad:0b:aa:1c:6b:a7:
af:92:30:c6:15:85:4e:53:59:dd:7d:f1:9c:42:4b:
68:ef:6d:57:fd:bb:1d:23:cb:46:63:3f:19:04:ca:
79:9b:e2:cd:b9:92:f7:c6:a3:7f:b9:37:5e:59:a7:
51:9d:9a:86:2f:46:4b:8c:21:9f:21:0b:97:64:50:
37:30:de:1c:76:c1:07:6f:3c:e4:bc:d1:7e:2d:f9:
52:dd:1f:85:ed:ce:80:01:2c:c8:c5:ca:02:b2:91:
a1:53:3a:6c:36:fe:97:e2:58:00:77:f8:b1:31:fd:
c4:e9:95:ad:14:3b:3f:fe:2f:92:29:cc:2e:11:66:
01:aa:a5:97:2b:e8:dd:69:c6:db:8c:8a:d7:40:5d:
56:32:52:ad:9b:1e:a2:63:46:f1:38:37:fa:73:e6:
c6:7f:d8:ce:0b:2f:11:ff:91:cc:9a:1b:28:73:8b:
f9:f9:62:fd:f6:30:87:05:66:7c:44:25:ac:00:14:
d4:66:57:29:22:2f:81:67:d6:61:17:bd:12:b5:0c:
a8:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E1:F9:99:24:01:16:57:CD:84:78:C4:F1:56:1F:26:12:7D:59:DB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/36E3406ED9C611EF882354A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:e7:c4:94:c7:90:73:a6:8d:67:6d:77:06:1b:74:0d:b0:d9:
ae:a3:41:79:a8:0d:d5:8e:64:f6:0b:1c:f8:96:cc:3b:a6:5d:
77:c8:be:25:17:8c:f8:2b:21:06:7e:aa:ce:63:35:71:9d:3e:
23:da:ea:40:06:5b:dc:f1:60:d3:93:f4:1f:b6:2b:93:7d:53:
92:59:4c:f9:e9:01:f9:3a:ef:e9:e9:23:53:83:cc:b3:16:33:
6a:9f:91:e5:e6:27:fc:ec:ae:fe:49:3a:be:c8:64:bf:4f:00:
ab:ba:f2:6e:f4:4c:a5:ba:76:82:72:28:16:77:bb:fc:e1:c6:
bf:fe:45:0b:c9:3b:65:35:bb:1a:a2:b5:14:65:53:57:5f:3a:
43:d4:7c:17:34:d8:3c:25:41:c8:24:19:e1:f6:ba:60:b5:8e:
b4:9e:aa:e3:d4:43:a0:d1:7d:da:c2:bb:23:91:f6:82:f2:b9:
99:34:9f:32:b7:77:d3:0e:67:20:9c:ac:be:ee:be:09:47:b8:
3e:c2:9e:ee:57:ce:3b:95:39:06:ac:09:62:c0:18:1c:ce:14:
9c:f6:85:51:37:74:5b:b8:e0:28:2f:ec:b0:0c:4a:6d:28:ff:
ff:b5:18:9d:9a:72:b7:e0:49:64:e9:1b:02:5e:ed:d2:e3:11:
62:bf:50:54
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAULAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MjAxMTE4WhcNMjUwMjI4MjAxMTE4WjAYMRYw
FAYDVQQDEw02NzkyYTI2YS0yMTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzxTm/nwe3tvzci5BIjAC70EIz4TK0k+SzT4D3/Weq9h2Ryl/378wWkKO
ubMPPpTR7xkco8qtC6oca6evkjDGFYVOU1ndffGcQkto721X/bsdI8tGYz8ZBMp5
m+LNuZL3xqN/uTdeWadRnZqGL0ZLjCGfIQuXZFA3MN4cdsEHbzzkvNF+LflS3R+F
7c6AASzIxcoCspGhUzpsNv6X4lgAd/ixMf3E6ZWtFDs//i+SKcwuEWYBqqWXK+jd
acbbjIrXQF1WMlKtmx6iY0bxODf6c+bGf9jOCy8R/5HMmhsoc4v5+WL99jCHBWZ8
RCWsABTUZlcpIi+BZ9ZhF70StQyo8QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDTh
+ZkkARZXzYR4xPFWHyYSfVnbMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNkUzNDA2RUQ5QzYxMUVGODgyMzU0QTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQsMA0GCSqGSIb3DQEB
CwUAA4IBAQBN58SUx5Bzpo1nbXcGG3QNsNmuo0F5qA3VjmT2Cxz4lsw7pl13yL4l
F4z4KyEGfqrOYzVxnT4j2upABlvc8WDTk/QftiuTfVOSWUz56QH5Ou/p6SNTg8yz
FjNqn5Hl5if87K7+STq+yGS/TwCruvJu9EylunaCcigWd7v84ca//kULyTtlNbsa
orUUZVNXXzpD1HwXNNg8JUHIJBnh9rpgtY60nqrj1EOg0X3awrsjkfaC8rmZNJ8y
t3fTDmcgnKy+7r4JR7g+wp7uV847lTkGrAliwBgczhSc9oVRN3RbuOAoL+ywDEpt
KP//tRidmnK34Elk6RsCXu3S4xFiv1BU
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:16:51 2025 by rpki-client