Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61DDE0A2D4B311EFB21E2AB9762E951A.roa
File: 61DDE0A2D4B311EFB21E2AB9762E951A.roa (raw, json)
Hash identifier: dJLzyj++xe0XU3jD82jZ8A0WmUwFmJDuFa/F4DyOzAs=
Subject key identifier: 37:CF:6B:FE:B0:05:E3:06:20:BA:FE:19:EA:05:22:F9:E6:C4:1B:87
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013C4D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61DDE0A2D4B311EFB21E2AB9762E951A.roa
Signing time: Fri 17 Jan 2025 09:13:58 +0000
ROA not before: Fri 17 Jan 2025 09:13:54 +0000
ROA not after: Mon 17 Mar 2025 09:13:54 +0000
asID: 17561
IP address blocks: 154.213.185.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80973 (0x13c4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 09:13:54 2025 GMT
Not After : Mar 17 09:13:54 2025 GMT
Subject: CN=678a1f56-60d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:6a:7a:4a:1a:0a:48:77:fd:49:21:7d:7d:
ac:08:d7:74:61:bb:ab:cf:5f:ee:b8:56:63:a9:41:
ac:21:e0:5b:f3:02:02:c5:c5:ef:c9:c1:ee:e9:c3:
6c:fd:de:3f:97:35:b5:2c:a9:3d:05:a4:b2:7e:f2:
51:b1:16:71:21:35:89:90:79:ef:a3:0c:df:8d:44:
f1:b3:e9:5f:64:f8:df:e3:37:a3:ae:69:b1:f0:1f:
cb:c6:96:29:f7:e4:26:97:ed:64:a6:66:ff:ca:3c:
40:46:ec:6a:05:68:12:9b:7e:04:25:41:7a:63:56:
1d:ef:45:20:51:e8:4a:23:2d:66:0e:ed:6c:7e:64:
93:e1:69:b8:46:16:37:0b:ef:52:cc:2e:df:55:e2:
a4:21:ab:83:66:e5:fd:a6:3e:18:c3:bd:e9:07:5f:
6e:b3:55:5e:bd:59:db:53:7d:2a:a5:06:c3:64:33:
e1:3c:64:25:3a:de:34:f0:d4:7f:b9:03:bc:31:bc:
2d:d7:54:7c:c3:42:49:e3:2c:e6:58:cb:75:60:17:
cb:80:69:55:78:1b:1c:da:dc:65:71:1d:b6:26:dc:
20:1f:24:c1:90:0d:36:96:27:d3:5d:7c:20:ab:3f:
9d:bf:9a:76:97:2f:a9:64:f1:b9:51:c7:51:01:1f:
bf:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:CF:6B:FE:B0:05:E3:06:20:BA:FE:19:EA:05:22:F9:E6:C4:1B:87
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/61DDE0A2D4B311EFB21E2AB9762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.185.0/24
Signature Algorithm: sha256WithRSAEncryption
56:7f:c0:17:9a:69:45:70:6e:50:91:21:e7:fe:cf:8e:ca:00:
d0:c8:16:e5:23:a9:a2:02:e8:3a:0c:49:c2:e5:13:5d:18:8f:
f0:4c:6a:ab:5a:e8:8c:2e:85:14:fb:75:12:d1:f7:15:ad:66:
4f:c9:ea:a3:ac:05:f2:b2:92:79:36:ed:4e:a0:db:93:b5:4f:
e7:50:22:e0:e5:30:f1:56:ec:f3:50:3d:ec:c6:12:75:d4:07:
c4:75:2e:c6:ca:77:2a:02:3e:10:5e:03:09:da:8a:6c:cb:27:
e4:97:50:88:3a:35:77:70:49:91:ba:2b:86:e9:79:ae:31:db:
8d:cc:2f:ed:bb:28:e7:8e:38:1a:96:33:12:9c:d4:fb:0a:21:
01:0e:9a:cd:18:79:f0:60:da:1f:fd:15:4e:6a:db:88:6a:44:
2d:e0:a3:5f:d7:c0:9c:27:35:a7:38:b1:c1:9f:45:16:5d:32:
5f:4c:ae:45:f2:a2:6e:f3:51:6d:99:9a:a6:8c:cd:65:dc:ca:
b9:b8:b3:06:d5:bd:61:5a:13:85:32:eb:cd:f5:9e:ae:0d:ac:
39:63:51:60:07:1a:42:39:32:8c:9e:2a:a4:29:4c:e5:34:93:
db:28:84:bf:0f:e5:b3:77:84:47:89:f0:91:de:48:0e:bd:c2:
8a:9b:37:a9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATxNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE3MDkxMzU0WhcNMjUwMzE3MDkxMzU0WjAYMRYw
FAYDVQQDEw02NzhhMWY1Ni02MGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu0NqekoaCkh3/UkhfX2sCNd0Yburz1/uuFZjqUGsIeBb8wICxcXvycHu
6cNs/d4/lzW1LKk9BaSyfvJRsRZxITWJkHnvowzfjUTxs+lfZPjf4zejrmmx8B/L
xpYp9+Qml+1kpmb/yjxARuxqBWgSm34EJUF6Y1Yd70UgUehKIy1mDu1sfmST4Wm4
RhY3C+9SzC7fVeKkIauDZuX9pj4Yw73pB19us1VevVnbU30qpQbDZDPhPGQlOt40
8NR/uQO8Mbwt11R8w0JJ4yzmWMt1YBfLgGlVeBsc2txlcR22JtwgHyTBkA02lifT
XXwgqz+dv5p2ly+pZPG5UcdRAR+/ZQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDfP
a/6wBeMGILr+GeoFIvnmxBuHMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82MURERTBBMkQ0QjMxMUVGQjIxRTJBQjk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtW5MA0GCSqGSIb3DQEB
CwUAA4IBAQBWf8AXmmlFcG5QkSHn/s+OygDQyBblI6miAug6DEnC5RNdGI/wTGqr
WuiMLoUU+3US0fcVrWZPyeqjrAXyspJ5Nu1OoNuTtU/nUCLg5TDxVuzzUD3sxhJ1
1AfEdS7GyncqAj4QXgMJ2opsyyfkl1CIOjV3cEmRuiuG6XmuMduNzC/tuyjnjjga
ljMSnNT7CiEBDprNGHnwYNof/RVOatuIakQt4KNf18CcJzWnOLHBn0UWXTJfTK5F
8qJu81FtmZqmjM1l3Mq5uLMG1b1hWhOFMuvN9Z6uDaw5Y1FgBxpCOTKMniqkKUzl
NJPbKIS/D+Wzd4RHifCR3kgOvcKKmzep
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:42:20 2025 by rpki-client