Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7904E4B8D3F711EFA123FE6B762E951A.roa
File: 7904E4B8D3F711EFA123FE6B762E951A.roa (raw, json)
Hash identifier: S93djbGM5+Q+In3p1yRJf/23yOcvq8ITZqo4e6g1lVQ=
Subject key identifier: 42:38:CF:04:AB:A0:0E:3D:48:AA:FA:1D:DC:B2:E2:5A:71:0B:31:6E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013BDC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7904E4B8D3F711EFA123FE6B762E951A.roa
Signing time: Thu 16 Jan 2025 10:48:51 +0000
ROA not before: Thu 16 Jan 2025 10:48:47 +0000
ROA not after: Sun 16 Mar 2025 10:48:47 +0000
asID: 17561
IP address blocks: 154.213.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80860 (0x13bdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 16 10:48:47 2025 GMT
Not After : Mar 16 10:48:47 2025 GMT
Subject: CN=6788e413-5eac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2a:50:57:a6:7f:07:80:08:fb:fd:7c:e0:30:
df:ac:40:4a:f9:52:b2:96:1a:be:ae:72:8a:be:42:
9b:9c:bd:32:9e:b7:ce:d9:ac:5b:7e:39:e6:2c:e9:
ac:ea:17:4e:b3:dc:8b:4c:14:3b:43:5c:81:df:0f:
d5:9c:28:12:84:83:ca:a5:00:3b:e4:f9:5c:be:04:
5b:6a:7a:73:9a:4e:9f:60:41:6c:51:da:ff:68:ef:
75:82:93:dd:c0:fb:ec:8c:03:86:2e:01:55:16:d3:
69:cc:0c:d2:25:06:95:02:a4:42:59:c0:33:67:99:
93:59:48:4f:81:de:ba:f2:77:09:0e:d6:70:07:ed:
a8:18:d2:0a:89:3e:38:0d:2c:b0:d5:e9:fa:4b:29:
d5:49:78:92:2b:d9:83:fe:e2:72:5f:63:b1:0c:06:
c5:06:3d:a6:f8:24:63:41:f5:cd:61:f8:09:32:8f:
0a:9c:4d:5d:7a:ef:ab:c2:b8:a3:28:82:9d:3a:5b:
d1:0b:ae:57:95:dc:4f:68:b6:fb:d0:3a:ee:c1:fe:
77:c7:d3:20:a6:75:99:e5:6d:85:f6:cc:22:f4:88:
00:e7:e7:77:39:79:24:bf:f1:59:ee:f6:77:71:79:
eb:55:b5:96:26:ac:2c:5d:b9:9a:0c:dd:8a:6b:d0:
6d:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:38:CF:04:AB:A0:0E:3D:48:AA:FA:1D:DC:B2:E2:5A:71:0B:31:6E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7904E4B8D3F711EFA123FE6B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.31.0/24
Signature Algorithm: sha256WithRSAEncryption
11:2a:96:1c:bd:8d:a7:09:d5:1e:c0:b5:39:bb:70:9e:28:c9:
ec:eb:f9:94:d9:a4:10:e3:94:6f:6b:03:60:39:aa:06:3a:83:
f7:51:21:9c:81:8c:c0:d6:8d:a6:96:46:b2:04:2b:bc:2a:84:
99:f5:3d:25:8d:32:49:02:88:c1:33:9b:8c:66:12:65:13:19:
c4:67:60:26:a3:b4:d1:7e:78:1f:e6:9f:17:4c:c8:1c:de:fc:
fb:7c:ad:7f:fa:dd:59:4b:19:84:e1:54:4f:a4:d4:9e:11:4f:
14:a6:db:04:e2:e7:44:ca:f3:16:1e:d6:4c:01:c7:b0:a9:c7:
29:62:44:cd:9d:4a:f6:55:cc:98:f2:88:b7:b9:17:b3:65:b4:
6d:f9:7f:24:37:ea:15:a4:a6:05:db:df:1d:f4:a0:2f:dd:08:
4c:81:11:3b:95:9d:5e:f0:af:70:6c:c8:36:05:58:b3:38:20:
b1:37:a4:d6:ec:0a:33:36:8a:f7:40:02:d7:73:64:08:1c:75:
7b:c7:cc:1f:47:bf:94:62:8a:74:fa:00:59:20:44:b0:e2:2f:
00:2c:8e:05:88:ab:ca:83:9a:45:ed:cd:89:f0:84:4c:4e:e6:
06:30:6c:3d:21:fd:f7:04:fb:54:15:f0:bd:b5:50:90:1d:af:
c3:77:3c:cf
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATvcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE2MTA0ODQ3WhcNMjUwMzE2MTA0ODQ3WjAYMRYw
FAYDVQQDEw02Nzg4ZTQxMy01ZWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0CpQV6Z/B4AI+/184DDfrEBK+VKylhq+rnKKvkKbnL0ynrfO2axbfjnm
LOms6hdOs9yLTBQ7Q1yB3w/VnCgShIPKpQA75PlcvgRbanpzmk6fYEFsUdr/aO91
gpPdwPvsjAOGLgFVFtNpzAzSJQaVAqRCWcAzZ5mTWUhPgd668ncJDtZwB+2oGNIK
iT44DSyw1en6SynVSXiSK9mD/uJyX2OxDAbFBj2m+CRjQfXNYfgJMo8KnE1deu+r
wrijKIKdOlvRC65XldxPaLb70Druwf53x9MgpnWZ5W2F9swi9IgA5+d3OXkkv/FZ
7vZ3cXnrVbWWJqwsXbmaDN2Ka9BtWwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEI4
zwSroA49SKr6Hdyy4lpxCzFuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83OTA0RTRCOEQzRjcxMUVGQTEyM0ZFNkI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtUfMA0GCSqGSIb3DQEB
CwUAA4IBAQARKpYcvY2nCdUewLU5u3CeKMns6/mU2aQQ45RvawNgOaoGOoP3USGc
gYzA1o2mlkayBCu8KoSZ9T0ljTJJAojBM5uMZhJlExnEZ2Amo7TRfngf5p8XTMgc
3vz7fK1/+t1ZSxmE4VRPpNSeEU8UptsE4udEyvMWHtZMAcewqccpYkTNnUr2VcyY
8oi3uRezZbRt+X8kN+oVpKYF298d9KAv3QhMgRE7lZ1e8K9wbMg2BVizOCCxN6TW
7AozNor3QALXc2QIHHV7x8wfR7+UYop0+gBZIESw4i8ALI4FiKvKg5pF7c2J8IRM
TuYGMGw9If33BPtUFfC9tVCQHa/DdzzP
-----END CERTIFICATE-----
Generated at Tue Apr 29 00:59:02 2025 by rpki-client