Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505A6D02D9D911EF80A46CA5762E951A.roa
File: 505A6D02D9D911EF80A46CA5762E951A.roa (raw, json)
Hash identifier: zcRIx9usTEQzxVRPK881RdAwOSUeRViCDrD27H7S+j4=
Subject key identifier: C5:CC:0B:CD:4F:1F:D8:A3:9F:63:00:94:98:DA:89:79:60:35:07:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01434D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505A6D02D9D911EF80A46CA5762E951A.roa
Signing time: Thu 23 Jan 2025 22:28:05 +0000
ROA not before: Fri 24 Jan 2025 22:28:01 +0000
ROA not after: Sat 01 Mar 2025 22:28:01 +0000
asID: 44559
IP address blocks: 154.205.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82765 (0x1434d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 22:28:01 2025 GMT
Not After : Mar 1 22:28:01 2025 GMT
Subject: CN=6792c275-73b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:04:b5:af:ca:9c:3f:df:bb:cd:47:54:bd:74:
42:cb:36:93:62:0e:dd:e5:0b:7f:a2:82:b2:cd:ea:
a5:ad:48:ad:10:6a:fe:81:c5:ec:d2:8c:52:75:8c:
03:d1:a7:14:df:5b:64:98:d2:27:0a:d4:ff:98:df:
3b:bf:64:74:ce:bf:87:04:96:4c:6f:b5:b7:64:f4:
b4:63:ac:97:18:c8:b3:53:4d:8c:65:28:1a:93:49:
63:54:a5:bc:c5:b4:55:86:68:9a:81:29:ae:6f:71:
d2:dd:51:dc:2e:9a:f2:4c:65:90:ec:0d:27:a7:ce:
0d:ce:d8:46:87:c2:08:4e:46:22:3d:a1:0e:bc:ec:
71:58:da:be:26:63:95:d5:07:68:a4:38:9e:b0:13:
93:98:74:9e:e4:1c:27:b3:df:db:99:bb:df:e3:78:
e5:f8:be:46:2c:5f:36:74:b3:ea:1b:6d:8c:af:89:
9e:4e:b9:bf:02:a9:15:ff:ea:7d:a1:3f:8c:55:33:
1d:17:43:76:47:9b:db:33:3d:70:74:21:af:1a:f3:
18:6a:d4:5e:38:ae:5e:76:35:b0:23:67:14:c4:be:
7d:ec:a2:53:52:15:7b:be:cb:d7:e4:b5:ac:f1:6f:
cc:fb:63:ef:98:b3:c4:85:b0:e2:ac:2b:35:ea:9b:
18:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:CC:0B:CD:4F:1F:D8:A3:9F:63:00:94:98:DA:89:79:60:35:07:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/505A6D02D9D911EF80A46CA5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.205.237.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:ef:03:b0:4f:4e:4c:ef:c4:b0:2e:86:2b:72:a0:e8:b4:65:
20:38:8e:bf:95:62:24:57:f6:3c:73:c9:af:ec:36:75:18:0d:
9e:e6:43:14:c4:eb:fc:7c:7d:d6:36:82:cf:b1:ac:98:0f:60:
6e:43:ad:2c:ad:5c:3e:e2:6e:a4:0e:64:27:74:47:2d:05:9d:
73:eb:cc:dd:b5:b2:22:94:76:57:75:c1:46:ba:7f:50:a0:b4:
be:a2:2d:d3:d7:01:1a:65:71:fa:d3:b3:e6:96:0b:1c:de:a3:
ae:1b:b6:a3:a5:9b:de:b1:52:45:aa:8f:b4:6c:6f:c9:b5:bf:
11:2c:10:a9:1f:91:a5:2c:0e:35:b3:79:f7:60:ac:2c:4f:74:
a0:cd:2a:ec:5e:69:03:8d:61:da:fa:e8:6c:c1:04:1d:24:91:
36:d0:84:1f:8c:47:ee:88:8f:17:63:30:3f:96:a9:99:67:dc:
11:49:f9:d5:8a:4e:d7:93:9c:f6:24:e2:d2:01:1a:bf:82:03:
f9:78:2f:bd:0f:b6:0a:07:26:21:00:98:77:ae:97:7d:54:72:
06:fd:24:73:c7:25:a0:80:22:b5:93:7e:9f:02:97:e0:9b:f9:
5e:d3:2f:cb:69:de:a9:3b:7f:52:34:3b:8b:9a:2a:c6:16:bb:
e4:3a:1d:51
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUNNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MjIyODAxWhcNMjUwMzAxMjIyODAxWjAYMRYw
FAYDVQQDEw02NzkyYzI3NS03M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2AS1r8qcP9+7zUdUvXRCyzaTYg7d5Qt/ooKyzeqlrUitEGr+gcXs0oxS
dYwD0acU31tkmNInCtT/mN87v2R0zr+HBJZMb7W3ZPS0Y6yXGMizU02MZSgak0lj
VKW8xbRVhmiagSmub3HS3VHcLpryTGWQ7A0np84NzthGh8IITkYiPaEOvOxxWNq+
JmOV1QdopDiesBOTmHSe5Bwns9/bmbvf43jl+L5GLF82dLPqG22Mr4meTrm/AqkV
/+p9oT+MVTMdF0N2R5vbMz1wdCGvGvMYatReOK5edjWwI2cUxL597KJTUhV7vsvX
5LWs8W/M+2PvmLPEhbDirCs16psYzQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMXM
C81PH9ijn2MAlJjaiXlgNQePMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MDVBNkQwMkQ5RDkxMUVGODBBNDZDQTU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms3tMA0GCSqGSIb3DQEB
CwUAA4IBAQC67wOwT05M78SwLoYrcqDotGUgOI6/lWIkV/Y8c8mv7DZ1GA2e5kMU
xOv8fH3WNoLPsayYD2BuQ60srVw+4m6kDmQndEctBZ1z68zdtbIilHZXdcFGun9Q
oLS+oi3T1wEaZXH607Pmlgsc3qOuG7ajpZvesVJFqo+0bG/Jtb8RLBCpH5GlLA41
s3n3YKwsT3SgzSrsXmkDjWHa+uhswQQdJJE20IQfjEfuiI8XYzA/lqmZZ9wRSfnV
ik7Xk5z2JOLSARq/ggP5eC+9D7YKByYhAJh3rpd9VHIG/SRzxyWggCK1k36fApfg
m/le0y/Lad6pO39SNDuLmirGFrvkOh1R
-----END CERTIFICATE-----
Generated at Sun Apr 27 06:15:00 2025 by rpki-client