Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56BCF556CEF411EF972E4AA0762E951A.roa
File: 56BCF556CEF411EF972E4AA0762E951A.roa (raw, json)
Hash identifier: uaNqAq+FMo+eUZACBk/tXRHC9X0JpJ8/2iYh3JKGj4M=
Subject key identifier: C3:3C:85:E0:61:C2:ED:60:96:7E:EC:EE:5E:A1:25:AD:0B:AF:FE:00
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01397F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56BCF556CEF411EF972E4AA0762E951A.roa
Signing time: Fri 10 Jan 2025 01:43:49 +0000
ROA not before: Fri 10 Jan 2025 01:43:46 +0000
ROA not after: Wed 12 Feb 2025 01:43:46 +0000
asID: 272854
IP address blocks: 154.194.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80255 (0x1397f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 10 01:43:46 2025 GMT
Not After : Feb 12 01:43:46 2025 GMT
Subject: CN=67807b55-bda4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4c:11:0c:06:62:3c:f1:3b:41:8b:77:7b:3f:
01:65:9b:43:de:22:10:9c:2f:c9:5b:13:2e:5e:3b:
e4:58:f7:8a:26:47:da:25:46:5e:3c:56:5f:3c:2d:
09:a7:14:ca:0c:b4:c2:2a:cf:f3:de:af:f4:d1:8f:
7b:eb:36:12:3a:49:30:2a:7e:d7:59:1b:3d:5f:44:
de:ce:9a:fa:f9:a0:cd:98:24:be:58:06:cd:ef:a8:
b3:0a:59:89:26:bc:89:24:36:45:24:7e:80:23:bd:
d3:11:31:c4:bf:12:43:eb:18:19:50:3c:dc:8b:5d:
fb:5a:40:a3:58:96:3d:b0:dc:f4:9b:7b:cb:7b:49:
02:b8:71:dc:7e:81:fa:a5:b0:0f:57:90:d5:54:c9:
42:3a:6c:50:c4:57:1b:ff:31:99:85:58:eb:f1:f7:
9d:90:50:80:7d:3c:ab:56:5c:96:7e:16:ea:be:09:
1a:af:df:b0:15:f5:ea:35:80:c7:42:45:95:8c:13:
18:57:f0:a8:73:db:b0:61:de:f3:22:b7:5c:83:35:
33:a9:d1:c2:ba:27:b5:04:68:e4:9a:97:79:32:27:
95:5c:19:4a:dc:6c:5f:bb:da:ee:6a:05:2b:2a:ec:
19:72:8d:a3:49:e5:2c:3e:d8:ae:60:19:f8:5d:35:
fa:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3C:85:E0:61:C2:ED:60:96:7E:EC:EE:5E:A1:25:AD:0B:AF:FE:00
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/56BCF556CEF411EF972E4AA0762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.14.0/24
Signature Algorithm: sha256WithRSAEncryption
25:0e:f3:61:7e:17:4e:22:15:c5:4a:39:b1:ae:d7:be:63:82:
98:f9:85:d3:86:13:5f:d6:cb:65:19:e5:89:72:5b:77:82:26:
b3:39:65:25:a6:7a:b9:b3:88:e7:05:de:c6:e2:cc:56:21:af:
c1:5c:15:8a:e7:fc:ca:cf:01:38:c3:ed:dd:9a:0f:aa:d9:0d:
fc:4f:f9:b9:fd:e6:c9:42:20:30:11:9a:c3:e4:76:7c:1e:34:
b2:44:5c:d4:f5:94:82:10:ca:0c:c5:db:87:30:b8:c9:ab:20:
9b:05:70:c9:be:2b:2f:55:94:b9:a9:c0:18:a5:94:27:87:b7:
3c:8b:ab:7f:82:bd:6f:b2:f4:56:20:41:ea:07:de:bc:4a:36:
de:c8:75:fb:a5:18:1f:d1:ea:51:d4:7c:0d:e3:9f:0f:76:a2:
61:e2:91:81:69:66:30:ca:7e:b4:20:10:e7:7f:2d:a6:a3:60:
71:16:ff:ff:6e:4d:cd:bc:4e:df:b6:74:51:31:e3:7a:0e:40:
01:5f:1b:d5:46:5e:23:a2:49:88:e2:1e:6c:7f:18:c7:48:31:
32:7e:16:c3:36:38:47:70:77:5d:b9:47:84:3b:f2:60:d9:bd:
96:d0:8b:30:23:b3:37:32:93:10:08:3a:95:42:32:75:c2:80:
a8:7f:db:69
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATl/MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTEwMDE0MzQ2WhcNMjUwMjEyMDE0MzQ2WjAYMRYw
FAYDVQQDEw02NzgwN2I1NS1iZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArUwRDAZiPPE7QYt3ez8BZZtD3iIQnC/JWxMuXjvkWPeKJkfaJUZePFZf
PC0JpxTKDLTCKs/z3q/00Y976zYSOkkwKn7XWRs9X0Tezpr6+aDNmCS+WAbN76iz
ClmJJryJJDZFJH6AI73TETHEvxJD6xgZUDzci137WkCjWJY9sNz0m3vLe0kCuHHc
foH6pbAPV5DVVMlCOmxQxFcb/zGZhVjr8fedkFCAfTyrVlyWfhbqvgkar9+wFfXq
NYDHQkWVjBMYV/Coc9uwYd7zIrdcgzUzqdHCuie1BGjkmpd5MieVXBlK3Gxfu9ru
agUrKuwZco2jSeUsPtiuYBn4XTX6fQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMM8
heBhwu1gln7s7l6hJa0Lr/4AMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NkJDRjU1NkNFRjQxMUVGOTcyRTRBQTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsIOMA0GCSqGSIb3DQEB
CwUAA4IBAQAlDvNhfhdOIhXFSjmxrte+Y4KY+YXThhNf1stlGeWJclt3giazOWUl
pnq5s4jnBd7G4sxWIa/BXBWK5/zKzwE4w+3dmg+q2Q38T/m5/ebJQiAwEZrD5HZ8
HjSyRFzU9ZSCEMoMxduHMLjJqyCbBXDJvisvVZS5qcAYpZQnh7c8i6t/gr1vsvRW
IEHqB968SjbeyHX7pRgf0epR1HwN458PdqJh4pGBaWYwyn60IBDnfy2mo2BxFv//
bk3NvE7ftnRRMeN6DkABXxvVRl4jokmI4h5sfxjHSDEyfhbDNjhHcHdduUeEO/Jg
2b2W0IswI7M3MpMQCDqVQjJ1woCof9tp
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:45:04 2025 by rpki-client