Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37EA9EACDFEE11EFAA3BACB9762E951A.roa
File: 37EA9EACDFEE11EFAA3BACB9762E951A.roa (raw, json)
Hash identifier: CGXlbGb96yJ1uETXHl/Ms72oY0kzYojUaN/6kjg2Kw0=
Subject key identifier: 01:EF:7A:6B:0D:FC:CF:EA:B2:32:87:2D:C5:DD:47:2A:D9:2F:C9:C5
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014E11
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37EA9EACDFEE11EFAA3BACB9762E951A.roa
Signing time: Fri 31 Jan 2025 16:12:51 +0000
ROA not before: Fri 31 Jan 2025 16:12:47 +0000
ROA not after: Thu 27 Feb 2025 16:12:47 +0000
asID: 54801
IP address blocks: 154.91.224.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85521 (0x14e11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 31 16:12:47 2025 GMT
Not After : Feb 27 16:12:47 2025 GMT
Subject: CN=679cf682-dc95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:36:91:a2:55:48:9f:00:62:e6:10:75:bf:89:
75:39:15:e1:48:05:a8:c4:be:0c:46:5f:b5:cd:91:
85:19:03:cd:34:e4:d1:95:dd:26:3d:93:08:cc:7d:
26:ff:34:ec:04:ec:d8:02:a1:49:83:55:09:c8:5c:
77:57:91:ac:0f:66:55:91:bc:6b:f7:52:72:23:17:
bb:ae:b0:ac:fb:b3:0e:8f:05:17:cc:23:d5:ac:26:
e9:a5:5c:3c:31:60:66:85:3a:0b:1b:ae:f7:e4:73:
2f:a9:38:cd:1d:43:fa:4a:c8:35:1a:52:f0:70:5f:
35:32:24:26:61:10:e7:f2:ba:bb:c4:a0:12:bb:57:
3d:6c:18:4a:4c:2f:b5:bf:c3:73:f0:1b:40:b9:c6:
94:0f:04:a0:f2:df:4c:63:cb:d7:86:05:cd:fd:a5:
08:f7:3c:30:8b:6b:06:8b:c5:3a:e2:bf:14:9d:92:
db:47:3e:74:07:1f:01:82:fa:91:65:79:11:df:0a:
80:5d:36:12:e0:33:56:f5:12:d4:58:23:86:ab:65:
da:82:54:cc:31:07:b6:6b:8c:0a:21:c1:e5:97:fb:
94:78:a4:3a:7d:2f:ff:22:a8:6e:34:97:c2:7c:f0:
89:94:7f:aa:74:ac:7a:8a:7e:ec:c4:04:81:f7:4a:
56:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:EF:7A:6B:0D:FC:CF:EA:B2:32:87:2D:C5:DD:47:2A:D9:2F:C9:C5
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/37EA9EACDFEE11EFAA3BACB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.224.0/19
Signature Algorithm: sha256WithRSAEncryption
95:97:e7:33:ff:94:ed:2d:8b:5d:52:07:5d:b1:ab:c8:61:98:
6b:91:c0:ab:d6:cd:7f:90:96:49:2f:72:16:ff:24:37:03:ee:
8b:a7:53:5a:0e:d5:9b:34:72:5f:37:25:20:91:03:ad:09:bd:
ba:f3:cb:e7:b5:69:f2:8b:b6:10:18:ba:36:c5:b1:72:3f:de:
c9:2e:cf:e8:7c:f6:cf:97:04:8a:20:f1:9e:2e:ed:ea:ea:4a:
bf:c8:f2:bf:48:05:cc:ad:06:1c:e9:0c:b3:68:34:d9:26:e8:
c9:38:b5:dc:17:90:01:24:e5:7c:19:fd:52:f8:a5:f3:f6:5c:
14:3c:0a:51:6c:21:a0:70:37:d9:34:2e:aa:b7:77:aa:b1:13:
42:fd:f5:57:ab:29:57:87:57:a0:04:d2:27:5a:49:ea:19:3e:
bb:bb:ec:9b:08:36:c2:1c:ed:5a:ca:b8:be:d5:65:67:92:4e:
a8:b2:64:86:95:d2:8c:b1:68:fc:74:96:10:8c:d3:9a:30:5d:
fb:a8:f1:9e:c6:bb:bf:cb:94:5a:07:18:e6:6b:17:20:c9:1d:
f7:52:c9:73:b0:a2:2c:3f:f6:2e:93:c7:3f:0e:83:e1:f9:d1:
44:92:eb:8f:f0:25:43:06:de:41:90:58:df:2c:74:54:6f:3c:
60:90:ce:06
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAU4RMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTMxMTYxMjQ3WhcNMjUwMjI3MTYxMjQ3WjAYMRYw
FAYDVQQDEw02NzljZjY4Mi1kYzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxDaRolVInwBi5hB1v4l1ORXhSAWoxL4MRl+1zZGFGQPNNOTRld0mPZMI
zH0m/zTsBOzYAqFJg1UJyFx3V5GsD2ZVkbxr91JyIxe7rrCs+7MOjwUXzCPVrCbp
pVw8MWBmhToLG6735HMvqTjNHUP6Ssg1GlLwcF81MiQmYRDn8rq7xKASu1c9bBhK
TC+1v8Nz8BtAucaUDwSg8t9MY8vXhgXN/aUI9zwwi2sGi8U64r8UnZLbRz50Bx8B
gvqRZXkR3wqAXTYS4DNW9RLUWCOGq2XaglTMMQe2a4wKIcHll/uUeKQ6fS//Iqhu
NJfCfPCJlH+qdKx6in7sxASB90pWmQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAHv
emsN/M/qsjKHLcXdRyrZL8nFMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zN0VBOUVBQ0RGRUUxMUVGQUEzQkFDQjk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFmlvgMA0GCSqGSIb3DQEB
CwUAA4IBAQCVl+cz/5TtLYtdUgddsavIYZhrkcCr1s1/kJZJL3IW/yQ3A+6Lp1Na
DtWbNHJfNyUgkQOtCb2688vntWnyi7YQGLo2xbFyP97JLs/ofPbPlwSKIPGeLu3q
6kq/yPK/SAXMrQYc6QyzaDTZJujJOLXcF5ABJOV8Gf1S+KXz9lwUPApRbCGgcDfZ
NC6qt3eqsRNC/fVXqylXh1egBNInWknqGT67u+ybCDbCHO1ayri+1WVnkk6osmSG
ldKMsWj8dJYQjNOaMF37qPGexru/y5RaBxjmaxcgyR33UslzsKIsP/Yuk8c/DoPh
+dFEkuuP8CVDBt5BkFjfLHRUbzxgkM4G
-----END CERTIFICATE-----
Generated at Sat Apr 26 00:52:16 2025 by rpki-client