Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F2A43EACBE911EF930B1144762E951A.roa
File: 6F2A43EACBE911EF930B1144762E951A.roa (raw, json)
Hash identifier: t4tXvIFmN+bySltGjYs6anCunSn1rV7SxrtqSu4BJXY=
Subject key identifier: 66:95:09:09:14:E5:74:78:29:DC:DA:E1:E5:56:7B:3E:F7:27:44:CC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01359D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F2A43EACBE911EF930B1144762E951A.roa
Signing time: Mon 06 Jan 2025 04:48:12 +0000
ROA not before: Mon 06 Jan 2025 04:48:09 +0000
ROA not after: Tue 04 Feb 2025 04:48:09 +0000
asID: 38264
IP address blocks: 154.198.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79261 (0x1359d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 6 04:48:09 2025 GMT
Not After : Feb 4 04:48:09 2025 GMT
Subject: CN=677b608c-ad58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f2:d3:eb:7b:19:88:7d:66:87:34:1a:27:73:
5a:b3:83:2b:05:62:17:ec:1c:37:88:a0:77:bc:f2:
5e:36:f5:a4:d3:77:65:52:83:8a:c4:cd:19:e1:36:
12:14:ba:a0:9b:58:a5:56:88:ac:49:dd:c1:6d:64:
8b:58:93:63:39:02:44:94:22:36:f6:10:39:2a:83:
41:84:ad:5e:bb:2c:21:20:dd:6d:83:bc:7d:e0:b4:
37:48:11:dc:13:0d:bf:85:96:ca:64:c3:af:da:97:
30:da:28:2b:78:3b:80:eb:d7:be:75:27:75:f6:db:
b6:aa:aa:ec:d7:78:7b:15:5b:39:d7:25:01:22:24:
e8:fb:e7:51:fb:d2:f4:e9:97:9c:72:e6:70:9b:45:
9f:53:54:59:d9:e3:4e:0d:0c:4f:58:93:b8:68:84:
1e:87:ba:83:05:64:2a:53:02:7f:30:a2:ee:43:c2:
42:df:33:d4:45:8b:01:69:e5:1a:b8:1c:0c:6a:99:
12:e3:ff:b5:6b:2a:03:53:54:04:58:aa:05:39:37:
02:8d:cb:59:f6:60:59:36:a9:b9:bb:05:b8:3e:00:
f8:29:18:16:31:14:fd:ea:23:44:16:86:97:10:7f:
37:e2:7b:05:09:69:64:92:e6:0f:e4:25:5e:be:00:
65:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:95:09:09:14:E5:74:78:29:DC:DA:E1:E5:56:7B:3E:F7:27:44:CC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/6F2A43EACBE911EF930B1144762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.198.13.0/24
Signature Algorithm: sha256WithRSAEncryption
45:1d:ad:64:a8:50:5a:0a:a5:80:e1:ab:cb:12:16:12:51:7c:
1e:ca:64:eb:36:97:c1:a9:b1:43:96:13:5e:e5:31:45:07:c0:
ff:c9:9c:6c:da:1e:a1:32:17:bb:c8:fb:fa:8c:d0:1e:da:1e:
fc:e4:9f:8e:d8:6d:83:fe:f5:15:17:0c:02:a1:db:4e:13:7d:
af:59:f2:f5:92:d9:4a:9b:6a:0a:f4:e1:52:41:12:e6:52:41:
75:64:84:af:0d:47:66:00:8d:08:07:8e:37:88:86:95:31:d4:
ad:c5:8f:fa:62:66:30:e2:e5:c6:fa:43:19:9a:1d:79:74:ec:
12:55:43:93:6a:d2:f4:88:c3:36:52:e9:f8:4c:dd:13:df:cc:
b1:50:cd:c4:83:02:2d:d7:a3:2b:64:45:15:84:e9:f1:14:da:
e1:57:10:61:1f:b0:a8:97:08:15:58:c2:70:ab:6c:14:74:aa:
c1:89:99:e3:d8:ee:7e:b5:f9:96:99:f6:ae:2c:c6:d7:95:de:
1d:36:fd:0a:fa:26:4a:5f:f4:e6:7f:dc:6f:95:c6:81:41:c9:
77:6c:5b:54:4d:db:3a:14:a0:83:25:12:c0:e2:6e:dd:c0:6d:
68:4c:c1:b0:54:bf:3c:0f:8d:31:0c:ef:36:16:a9:9e:9c:94:
db:41:fc:37
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATWdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTA2MDQ0ODA5WhcNMjUwMjA0MDQ0ODA5WjAYMRYw
FAYDVQQDEw02NzdiNjA4Yy1hZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnPLT63sZiH1mhzQaJ3Nas4MrBWIX7Bw3iKB3vPJeNvWk03dlUoOKxM0Z
4TYSFLqgm1ilVoisSd3BbWSLWJNjOQJElCI29hA5KoNBhK1euywhIN1tg7x94LQ3
SBHcEw2/hZbKZMOv2pcw2igreDuA69e+dSd19tu2qqrs13h7FVs51yUBIiTo++dR
+9L06ZeccuZwm0WfU1RZ2eNODQxPWJO4aIQeh7qDBWQqUwJ/MKLuQ8JC3zPURYsB
aeUauBwMapkS4/+1ayoDU1QEWKoFOTcCjctZ9mBZNqm5uwW4PgD4KRgWMRT96iNE
FoaXEH834nsFCWlkkuYP5CVevgBlYQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGaV
CQkU5XR4Kdza4eVWez73J0TMMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82RjJBNDNFQUNCRTkxMUVGOTMwQjExNDQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsYNMA0GCSqGSIb3DQEB
CwUAA4IBAQBFHa1kqFBaCqWA4avLEhYSUXweymTrNpfBqbFDlhNe5TFFB8D/yZxs
2h6hMhe7yPv6jNAe2h785J+O2G2D/vUVFwwCodtOE32vWfL1ktlKm2oK9OFSQRLm
UkF1ZISvDUdmAI0IB443iIaVMdStxY/6YmYw4uXG+kMZmh15dOwSVUOTatL0iMM2
Uun4TN0T38yxUM3EgwIt16MrZEUVhOnxFNrhVxBhH7ColwgVWMJwq2wUdKrBiZnj
2O5+tfmWmfauLMbXld4dNv0K+iZKX/Tmf9xvlcaBQcl3bFtUTds6FKCDJRLA4m7d
wG1oTMGwVL88D40xDO82FqmenJTbQfw3
-----END CERTIFICATE-----
Generated at Sat Apr 26 17:02:02 2025 by rpki-client