Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CAC7AB4DD5B11EFB7ABA564762E951A.roa
File: 7CAC7AB4DD5B11EFB7ABA564762E951A.roa (raw, json)
Hash identifier: 8DK4oYVOOHri08/69Hx7Q3NIdfsdihLRo1v+j8/hZYU=
Subject key identifier: F4:A1:B7:65:F6:AE:F1:94:5F:14:A4:67:81:12:4A:AB:69:03:5B:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014CA4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CAC7AB4DD5B11EFB7ABA564762E951A.roa
Signing time: Tue 28 Jan 2025 09:37:28 +0000
ROA not before: Tue 28 Jan 2025 09:37:24 +0000
ROA not after: Tue 04 Feb 2025 09:37:24 +0000
asID: 5065
IP address blocks: 154.206.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85156 (0x14ca4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 09:37:24 2025 GMT
Not After : Feb 4 09:37:24 2025 GMT
Subject: CN=6798a557-055a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1b:0b:97:2f:c4:e5:00:03:be:ce:22:31:04:
c8:c9:a1:87:5b:b4:aa:fd:b1:08:79:52:3a:b2:55:
2e:e7:5f:e9:d8:f5:54:67:76:73:3c:8a:86:5b:6b:
72:d3:09:71:bf:b3:d0:36:e2:53:c7:bc:9f:88:28:
31:33:74:75:8b:47:45:05:b9:1e:ce:91:67:d3:81:
e3:60:90:ca:cd:5e:cc:f1:a7:0f:91:7f:a2:41:ed:
06:e3:4a:6b:e7:8e:e8:74:48:ed:a0:1d:67:18:32:
6a:15:e7:f9:15:26:57:94:48:67:81:15:c9:aa:79:
dd:e6:99:45:c6:e7:be:81:9c:ba:60:35:74:a0:0a:
38:5c:bb:c3:08:fa:df:1d:65:c6:92:f6:9c:1e:c7:
95:fb:b5:12:4c:b0:19:08:51:dd:26:7f:aa:95:8c:
fc:79:14:44:98:c6:81:90:73:c7:03:75:14:00:86:
ae:49:f1:ac:e7:5f:ca:1f:7a:29:7d:0f:13:8f:9c:
64:bd:da:54:9e:d1:ce:6c:24:8e:aa:f1:41:c2:89:
69:2b:7b:d7:76:d3:48:68:fd:5f:06:15:a0:24:70:
74:fd:aa:8b:b6:57:47:fd:b2:cc:a5:af:6e:43:8b:
c0:07:46:74:74:85:ae:24:85:a7:6c:d0:ff:82:30:
e2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A1:B7:65:F6:AE:F1:94:5F:14:A4:67:81:12:4A:AB:69:03:5B:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7CAC7AB4DD5B11EFB7ABA564762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.42.0/24
Signature Algorithm: sha256WithRSAEncryption
72:d5:53:03:00:35:34:9c:3e:18:f1:ee:6b:71:8b:cd:b5:32:
d3:ee:f3:74:3d:2f:f2:db:d8:2f:67:dd:ba:26:56:3b:3e:e1:
7e:8c:1b:40:28:14:51:3e:ab:b1:66:d0:a2:a3:09:32:d5:50:
f8:0b:fc:c5:e7:ec:f0:1f:98:51:2f:4c:4e:b5:73:8b:51:4b:
16:ea:04:54:0b:35:3c:ee:93:27:fc:70:ab:57:ed:26:1b:9a:
20:37:61:df:ce:5d:74:fa:8a:c6:37:4d:f2:f4:0b:31:5a:eb:
da:62:5c:95:e2:fd:10:81:c0:12:a0:63:1e:54:75:db:78:64:
ad:58:9a:23:1f:e7:16:e1:ea:d7:0b:e0:aa:2a:3c:7e:c9:63:
0e:c1:75:ec:a2:b6:13:61:ae:ae:d7:37:7f:5d:d5:c5:ac:50:
8d:7c:e9:9b:a3:40:bb:f3:3e:32:2d:c7:cd:ba:07:ae:0a:69:
72:82:83:0e:af:1b:8c:4c:6e:c5:c5:5c:e6:4d:7c:5a:6f:8b:
b6:a6:80:ae:89:10:04:19:77:bf:3e:47:d0:5c:c7:e7:c3:7c:
78:8c:c2:15:ae:1d:33:57:a0:4b:a5:a1:b8:a5:e6:eb:99:61:
3d:1c:74:42:9d:e9:06:f1:a1:55:f3:18:7a:71:a9:54:84:c0:
56:04:13:2e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUykMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI4MDkzNzI0WhcNMjUwMjA0MDkzNzI0WjAYMRYw
FAYDVQQDEw02Nzk4YTU1Ny0wNTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1xsLly/E5QADvs4iMQTIyaGHW7Sq/bEIeVI6slUu51/p2PVUZ3ZzPIqG
W2ty0wlxv7PQNuJTx7yfiCgxM3R1i0dFBbkezpFn04HjYJDKzV7M8acPkX+iQe0G
40pr547odEjtoB1nGDJqFef5FSZXlEhngRXJqnnd5plFxue+gZy6YDV0oAo4XLvD
CPrfHWXGkvacHseV+7USTLAZCFHdJn+qlYz8eRREmMaBkHPHA3UUAIauSfGs51/K
H3opfQ8Tj5xkvdpUntHObCSOqvFBwolpK3vXdtNIaP1fBhWgJHB0/aqLtldH/bLM
pa9uQ4vAB0Z0dIWuJIWnbND/gjDiNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPSh
t2X2rvGUXxSkZ4ESSqtpA1skMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83Q0FDN0FCNERENUIxMUVGQjdBQkE1NjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms4qMA0GCSqGSIb3DQEB
CwUAA4IBAQBy1VMDADU0nD4Y8e5rcYvNtTLT7vN0PS/y29gvZ926JlY7PuF+jBtA
KBRRPquxZtCiowky1VD4C/zF5+zwH5hRL0xOtXOLUUsW6gRUCzU87pMn/HCrV+0m
G5ogN2Hfzl10+orGN03y9AsxWuvaYlyV4v0QgcASoGMeVHXbeGStWJojH+cW4erX
C+CqKjx+yWMOwXXsorYTYa6u1zd/XdXFrFCNfOmbo0C78z4yLcfNugeuCmlygoMO
rxuMTG7FxVzmTXxab4u2poCuiRAEGXe/PkfQXMfnw3x4jMIVrh0zV6BLpaG4pebr
mWE9HHRCnekG8aFV8xh6calUhMBWBBMu
-----END CERTIFICATE-----
Generated at Fri Apr 25 11:55:51 2025 by rpki-client