Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66C49E02D8AB11EFBB748DBF762E951A.roa
File: 66C49E02D8AB11EFBB748DBF762E951A.roa (raw, json)
Hash identifier: l5Ntb6jTtHDZ1mo4FS6xRIs+6OJqIjy/iHpdxjrQPB0=
Subject key identifier: E9:F7:9E:B3:8D:6F:D3:E0:10:B6:A6:1A:D3:18:C2:CF:8D:97:7E:FB
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013EC0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66C49E02D8AB11EFBB748DBF762E951A.roa
Signing time: Wed 22 Jan 2025 10:26:55 +0000
ROA not before: Wed 22 Jan 2025 10:26:51 +0000
ROA not after: Sat 08 Feb 2025 10:26:51 +0000
asID: 150008
IP address blocks: 154.209.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81600 (0x13ec0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 10:26:51 2025 GMT
Not After : Feb 8 10:26:51 2025 GMT
Subject: CN=6790c7ef-f6cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:90:2d:08:34:cd:dc:b9:46:d8:6d:65:28:01:
78:e4:2e:6a:66:ca:dd:ee:b7:4c:a9:42:c1:c8:a1:
e1:05:75:55:55:11:bf:b9:bb:39:4c:4e:28:23:2a:
b3:93:a3:41:32:89:37:26:17:fb:f9:bd:a3:1d:4a:
e9:e7:84:c2:0b:8c:b5:da:56:25:18:76:16:84:b3:
4b:be:45:c3:63:54:92:90:99:70:3f:09:08:be:5e:
33:82:fb:b1:98:e5:e6:b4:e0:e9:c1:d6:61:b1:aa:
44:06:84:92:fc:a0:fa:62:49:03:d2:0d:c8:11:7f:
68:6b:73:61:ba:17:4a:3f:f8:03:d0:ad:31:68:d8:
14:fc:cb:c7:c5:ff:d4:e5:aa:e2:54:80:ae:05:99:
c8:8c:48:fa:8a:15:27:90:10:7c:d3:11:b8:a2:ec:
7d:b1:6d:de:ba:df:8d:3d:00:4f:39:f2:36:4a:cf:
57:57:dc:9b:9a:01:c4:3c:d0:f9:dd:75:b6:3c:cb:
cd:3a:9d:87:3d:ae:2d:8d:25:2b:60:31:21:27:4e:
d7:c8:f2:b3:a9:5c:d2:52:c3:6f:96:f3:61:2a:02:
bd:71:68:e8:b4:e5:c7:14:24:e0:d3:bb:cf:57:80:
70:71:6d:b4:61:e0:f5:58:33:bf:98:dd:30:0a:8a:
c9:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F7:9E:B3:8D:6F:D3:E0:10:B6:A6:1A:D3:18:C2:CF:8D:97:7E:FB
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66C49E02D8AB11EFBB748DBF762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.254.0/24
Signature Algorithm: sha256WithRSAEncryption
36:f7:7b:1b:88:72:6b:eb:3a:f5:f3:53:82:6b:bb:ad:eb:40:
96:c0:ac:20:87:5f:39:c8:62:6d:f9:1d:93:1f:ba:7e:55:aa:
9f:95:93:8e:5a:57:86:08:4c:64:ad:52:ce:8e:bc:2a:15:af:
98:84:4d:31:64:d6:12:33:e7:38:84:fe:b7:f7:cd:06:83:8b:
db:66:56:db:74:8e:52:9f:f8:da:c6:54:30:22:45:1c:6f:c5:
46:78:27:f1:46:40:00:d6:2a:8b:cd:45:93:3c:01:bb:dc:99:
b7:30:5d:72:85:cb:1e:cb:90:9d:8e:46:60:c4:dd:20:46:3e:
be:f7:fb:e5:f1:07:81:a3:85:22:b7:13:0e:34:5c:65:46:a3:
6b:bc:ca:7b:88:8e:7a:47:60:23:90:0f:29:ec:b4:98:45:20:
6e:09:fd:5d:83:af:df:35:f9:85:20:ba:b8:c6:22:02:22:64:
f6:68:05:6e:cd:d5:58:ac:cb:a0:5a:c1:b3:aa:41:43:b1:b4:
62:bf:d5:a8:c2:7f:c3:50:16:09:89:d5:2d:90:a0:c3:64:c2:
f9:4f:66:fb:8e:e0:a3:94:e0:2f:88:80:35:47:7a:a6:41:47:
3e:16:0c:df:48:ec:70:da:24:98:f9:46:df:a1:08:f1:9a:63:
3b:4b:14:c3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT7AMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIyMTAyNjUxWhcNMjUwMjA4MTAyNjUxWjAYMRYw
FAYDVQQDEw02NzkwYzdlZi1mNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnpAtCDTN3LlG2G1lKAF45C5qZsrd7rdMqULByKHhBXVVVRG/ubs5TE4o
Iyqzk6NBMok3Jhf7+b2jHUrp54TCC4y12lYlGHYWhLNLvkXDY1SSkJlwPwkIvl4z
gvuxmOXmtODpwdZhsapEBoSS/KD6YkkD0g3IEX9oa3NhuhdKP/gD0K0xaNgU/MvH
xf/U5ariVICuBZnIjEj6ihUnkBB80xG4oux9sW3eut+NPQBPOfI2Ss9XV9ybmgHE
PND53XW2PMvNOp2HPa4tjSUrYDEhJ07XyPKzqVzSUsNvlvNhKgK9cWjotOXHFCTg
07vPV4BwcW20YeD1WDO/mN0wCorJ/wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOn3
nrONb9PgELamGtMYws+Nl377MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NkM0OUUwMkQ4QUIxMUVGQkI3NDhEQkY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtH+MA0GCSqGSIb3DQEB
CwUAA4IBAQA293sbiHJr6zr181OCa7ut60CWwKwgh185yGJt+R2TH7p+VaqflZOO
WleGCExkrVLOjrwqFa+YhE0xZNYSM+c4hP63980Gg4vbZlbbdI5Sn/jaxlQwIkUc
b8VGeCfxRkAA1iqLzUWTPAG73Jm3MF1yhcsey5CdjkZgxN0gRj6+9/vl8QeBo4Ui
txMONFxlRqNrvMp7iI56R2AjkA8p7LSYRSBuCf1dg6/fNfmFILq4xiICImT2aAVu
zdVYrMugWsGzqkFDsbRiv9Wown/DUBYJidUtkKDDZML5T2b7juCjlOAviIA1R3qm
QUc+FgzfSOxw2iSY+UbfoQjxmmM7SxTD
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:49:43 2025 by rpki-client