Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51B71BDCDB1911EFA208D5A6762E951A.roa
File: 51B71BDCDB1911EFA208D5A6762E951A.roa (raw, json)
Hash identifier: muy6Hhu1qE7+g3N6+j1Mdbl5sSAvo5uxHYM0Q7BsJX8=
Subject key identifier: 2F:49:32:A9:DD:30:64:F9:73:89:53:3D:32:82:43:95:B3:23:AF:C2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01494E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51B71BDCDB1911EFA208D5A6762E951A.roa
Signing time: Sat 25 Jan 2025 12:38:46 +0000
ROA not before: Sat 25 Jan 2025 12:38:43 +0000
ROA not after: Mon 03 Mar 2025 12:38:43 +0000
asID: 202656
IP address blocks: 154.219.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84302 (0x1494e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 25 12:38:43 2025 GMT
Not After : Mar 3 12:38:43 2025 GMT
Subject: CN=6794db56-0076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:01:89:9f:ae:a8:de:98:5e:bf:77:39:18:d9:
7b:0d:e2:0e:f0:e3:72:3e:89:6d:62:d1:4e:f0:3b:
22:78:07:5f:76:0f:37:06:89:47:b8:94:6d:ba:2a:
72:a7:d1:ad:84:9b:38:3b:a4:97:67:cb:80:54:b0:
f4:34:98:d8:5d:34:33:81:da:6c:cd:ae:d9:18:69:
46:80:6b:14:73:da:23:7b:f2:d3:e9:48:01:b6:91:
dd:7a:dc:d4:9f:3a:43:c8:62:90:5e:fd:77:c3:ca:
d2:2e:ff:e5:e9:73:be:6e:6e:94:bb:ff:4b:4a:c9:
92:eb:34:7b:8c:1a:62:27:db:53:4e:f4:b2:4a:f5:
e4:e2:a0:9f:b0:91:51:8f:e9:79:16:f2:c6:4a:9c:
c7:0a:ac:b7:8e:45:c1:db:fd:1a:8a:b5:45:57:20:
bf:1e:17:58:56:19:52:67:c0:20:e9:3a:6d:bb:ff:
b7:47:a0:90:dc:1f:77:cf:2d:5c:3f:ef:c4:04:05:
ad:76:56:a1:f8:f8:88:ea:74:8b:2b:20:6e:96:b3:
d2:9b:b3:e8:ef:22:b0:f8:d1:7a:b7:8a:6d:de:fe:
7f:f8:4f:92:fb:bb:13:7a:55:88:12:31:22:16:2c:
48:d1:0b:29:40:75:de:79:bc:d8:9a:60:c7:15:4a:
3a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:49:32:A9:DD:30:64:F9:73:89:53:3D:32:82:43:95:B3:23:AF:C2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/51B71BDCDB1911EFA208D5A6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.219.222.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:5d:eb:23:7c:82:99:ba:dc:e2:43:21:15:94:c7:95:c4:10:
f3:f9:8a:5d:bd:09:e1:95:6e:b4:f1:08:97:2c:c1:f5:89:39:
d7:8f:9c:37:55:1b:88:05:bd:94:85:5b:ec:2a:dd:17:ec:72:
e7:e5:d6:e4:33:d6:09:26:79:a6:4d:58:67:8b:d5:c6:56:3d:
24:ea:04:54:92:15:10:77:1d:5a:d8:49:ef:3c:39:3e:f6:e1:
3c:19:81:f6:25:53:ba:5a:12:05:1a:75:2b:f5:64:90:5d:3d:
9e:23:83:02:3b:f0:c8:56:a0:d8:cc:fc:06:20:d9:18:d0:51:
d8:52:d9:41:fa:3d:44:d0:c7:07:df:d0:fc:4e:2b:8c:d4:71:
5d:a0:2b:84:f6:1f:c8:aa:c6:ac:6c:b9:51:28:17:1a:b8:f5:
e3:14:93:9b:e9:a0:61:ff:ab:10:58:55:f4:f2:d3:d7:d5:37:
0a:95:24:fe:5b:d4:1a:e3:10:b7:8c:56:c4:fd:4d:51:e0:a2:
5e:49:cb:aa:62:da:52:ae:fe:4b:73:6a:dc:30:71:f8:d5:1a:
c3:22:76:5e:a4:b0:28:84:52:d0:7c:08:a3:0e:42:d1:5e:44:
08:57:27:d5:92:b4:ba:a1:eb:74:88:eb:41:ed:a5:ad:ae:21:
88:a8:cc:6a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUlOMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI1MTIzODQzWhcNMjUwMzAzMTIzODQzWjAYMRYw
FAYDVQQDEw02Nzk0ZGI1Ni0wMDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA5AGJn66o3phev3c5GNl7DeIO8ONyPoltYtFO8DsieAdfdg83BolHuJRt
uipyp9GthJs4O6SXZ8uAVLD0NJjYXTQzgdpsza7ZGGlGgGsUc9oje/LT6UgBtpHd
etzUnzpDyGKQXv13w8rSLv/l6XO+bm6Uu/9LSsmS6zR7jBpiJ9tTTvSySvXk4qCf
sJFRj+l5FvLGSpzHCqy3jkXB2/0airVFVyC/HhdYVhlSZ8Ag6Tptu/+3R6CQ3B93
zy1cP+/EBAWtdlah+PiI6nSLKyBulrPSm7Po7yKw+NF6t4pt3v5/+E+S+7sTelWI
EjEiFixI0QspQHXeebzYmmDHFUo6iwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFC9J
MqndMGT5c4lTPTKCQ5WzI6/CMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81MUI3MUJEQ0RCMTkxMUVGQTIwOEQ1QTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtveMA0GCSqGSIb3DQEB
CwUAA4IBAQCcXesjfIKZutziQyEVlMeVxBDz+YpdvQnhlW608QiXLMH1iTnXj5w3
VRuIBb2UhVvsKt0X7HLn5dbkM9YJJnmmTVhni9XGVj0k6gRUkhUQdx1a2EnvPDk+
9uE8GYH2JVO6WhIFGnUr9WSQXT2eI4MCO/DIVqDYzPwGINkY0FHYUtlB+j1E0McH
39D8TiuM1HFdoCuE9h/IqsasbLlRKBcauPXjFJOb6aBh/6sQWFX08tPX1TcKlST+
W9Qa4xC3jFbE/U1R4KJeScuqYtpSrv5Lc2rcMHH41RrDInZepLAohFLQfAijDkLR
XkQIVyfVkrS6oet0iOtB7aWtriGIqMxq
-----END CERTIFICATE-----
Generated at Sun Apr 27 07:32:24 2025 by rpki-client