Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BFD0938D56711EFB8B28E5D762E951A.roa
File: 5BFD0938D56711EFB8B28E5D762E951A.roa (raw, json)
Hash identifier: 7XVCXWxD+Dn3Sk7aaQiv16P1OLq/KpC/rHTXkgOB3Nk=
Subject key identifier: 73:77:52:8D:6E:63:BB:47:54:32:96:D8:65:35:E4:B8:21:AF:CF:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D78
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BFD0938D56711EFB8B28E5D762E951A.roa
Signing time: Sat 18 Jan 2025 06:42:17 +0000
ROA not before: Sat 18 Jan 2025 06:42:13 +0000
ROA not after: Sat 22 Feb 2025 06:42:13 +0000
asID: 8796
IP address blocks: 154.217.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81272 (0x13d78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 18 06:42:13 2025 GMT
Not After : Feb 22 06:42:13 2025 GMT
Subject: CN=678b4d49-1951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:25:0c:08:ba:9d:24:4f:b5:61:4b:90:70:e4:
7d:85:5b:77:b3:07:56:a8:ba:b0:fe:61:dc:da:a4:
7a:05:40:5e:86:5a:c6:ad:17:8b:e6:64:a0:7b:95:
26:38:20:d0:79:b1:2b:47:14:3a:6d:ba:f3:7e:26:
0d:f0:e6:6a:13:8d:de:71:8f:a3:1c:83:79:2a:6c:
58:62:e1:8f:a8:ee:4e:f7:d3:9d:36:38:7e:13:e8:
cc:33:27:2e:c2:21:a7:bc:97:b3:59:7b:32:b4:24:
52:8f:e4:e2:8e:7d:ce:a1:41:42:05:66:22:bd:f4:
bf:2b:38:d6:c9:01:db:5d:f7:c9:0d:b8:0e:63:7e:
4e:cd:db:86:33:2e:08:cb:34:3e:3e:f6:bd:f3:dd:
d9:6d:27:c2:04:35:f2:43:40:10:9f:d3:a9:6a:4f:
11:14:e7:39:af:49:a1:2e:29:6f:ff:7c:fe:68:53:
21:dd:ce:ff:ac:85:5d:36:da:9c:da:e1:05:e4:61:
4b:41:1b:b2:33:a3:e0:d8:f6:10:ee:fe:00:ee:c1:
c7:65:f8:bb:a9:07:da:93:62:8d:90:41:10:9d:28:
2b:2f:db:03:35:d9:15:74:45:98:7b:d5:a3:8e:ea:
b6:87:46:f7:3b:c2:07:29:c3:f4:c9:50:cb:2a:0c:
8d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:77:52:8D:6E:63:BB:47:54:32:96:D8:65:35:E4:B8:21:AF:CF:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5BFD0938D56711EFB8B28E5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.236.0/22
Signature Algorithm: sha256WithRSAEncryption
15:ba:39:57:bb:f8:ae:b3:ee:df:37:08:0e:92:11:2a:f3:0c:
34:4e:8a:2c:34:c0:00:88:20:82:b0:11:3f:9c:02:99:fa:79:
9b:81:bb:19:b4:51:ca:3c:10:0f:07:e5:3e:64:15:85:4d:47:
6c:89:99:77:de:85:26:0e:cd:ad:c8:11:c1:c3:2d:0f:a3:8b:
d3:c3:2e:8b:6a:99:24:b7:53:e6:0c:95:62:62:05:80:62:4e:
4e:59:eb:bb:c5:d1:3b:9d:25:98:d6:88:17:c9:6a:7a:7e:56:
e3:d6:e4:f1:bd:80:0a:d1:ef:47:75:8b:27:56:f5:03:ee:eb:
c5:d9:8b:e4:fe:86:13:7b:2e:de:58:9a:29:f8:5f:92:4f:21:
df:de:03:ea:d9:27:70:00:ba:51:fc:68:ad:75:c5:16:ca:16:
fe:15:50:2f:5f:8b:ec:9b:25:06:7c:b2:e0:66:d3:42:00:b2:
c2:b5:80:a9:93:ad:c0:c0:97:17:7f:a1:7d:fd:a4:d4:f5:6e:
aa:e6:29:c7:5f:e7:aa:d6:4e:27:e1:18:19:9e:2d:05:57:a5:
36:c2:2c:ab:c6:5f:db:af:05:1d:3a:c0:3b:1b:f3:b8:17:a4:
72:74:f8:36:ce:2f:74:2f:fa:6f:f2:a5:86:3c:27:72:a6:09:
ad:0e:56:b5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT14MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE4MDY0MjEzWhcNMjUwMjIyMDY0MjEzWjAYMRYw
FAYDVQQDEw02NzhiNGQ0OS0xOTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnyUMCLqdJE+1YUuQcOR9hVt3swdWqLqw/mHc2qR6BUBehlrGrReL5mSg
e5UmOCDQebErRxQ6bbrzfiYN8OZqE43ecY+jHIN5KmxYYuGPqO5O99OdNjh+E+jM
MycuwiGnvJezWXsytCRSj+Tijn3OoUFCBWYivfS/KzjWyQHbXffJDbgOY35OzduG
My4IyzQ+Pva9893ZbSfCBDXyQ0AQn9Opak8RFOc5r0mhLilv/3z+aFMh3c7/rIVd
Ntqc2uEF5GFLQRuyM6Pg2PYQ7v4A7sHHZfi7qQfak2KNkEEQnSgrL9sDNdkVdEWY
e9Wjjuq2h0b3O8IHKcP0yVDLKgyNIwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHN3
Uo1uY7tHVDKW2GU15Lghr8/vMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QkZEMDkzOEQ1NjcxMUVGQjhCMjhFNUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmtnsMA0GCSqGSIb3DQEB
CwUAA4IBAQAVujlXu/ius+7fNwgOkhEq8ww0ToosNMAAiCCCsBE/nAKZ+nmbgbsZ
tFHKPBAPB+U+ZBWFTUdsiZl33oUmDs2tyBHBwy0Po4vTwy6Lapkkt1PmDJViYgWA
Yk5OWeu7xdE7nSWY1ogXyWp6flbj1uTxvYAK0e9HdYsnVvUD7uvF2Yvk/oYTey7e
WJop+F+STyHf3gPq2SdwALpR/GitdcUWyhb+FVAvX4vsmyUGfLLgZtNCALLCtYCp
k63AwJcXf6F9/aTU9W6q5inHX+eq1k4n4RgZni0FV6U2wiyrxl/brwUdOsA7G/O4
F6RydPg2zi90L/pv8qWGPCdypgmtDla1
-----END CERTIFICATE-----
Generated at Sat Apr 26 08:56:52 2025 by rpki-client