Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D0C8DD6D68111EFAC2D078A762E951A.roa
File: 7D0C8DD6D68111EFAC2D078A762E951A.roa (raw, json)
Hash identifier: d8SKy3CqgkMn/UckIOySHY7V43z1yv11bKF5zjyIGOQ=
Subject key identifier: F3:72:66:88:7B:00:0B:7F:6D:62:B8:19:C9:EA:43:48:32:F9:90:DD
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013E01
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D0C8DD6D68111EFAC2D078A762E951A.roa
Signing time: Sun 19 Jan 2025 16:21:51 +0000
ROA not before: Sun 19 Jan 2025 16:21:47 +0000
ROA not after: Mon 24 Feb 2025 16:21:47 +0000
asID: 18779
IP address blocks: 154.203.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81409 (0x13e01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 19 16:21:47 2025 GMT
Not After : Feb 24 16:21:47 2025 GMT
Subject: CN=678d269f-85df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:f0:76:f1:3a:51:01:d7:88:dc:1a:54:8e:85:
75:72:18:50:6b:6f:73:a0:46:c2:d5:6c:42:55:d0:
9c:ce:bc:b4:61:08:26:ba:ba:85:ba:f6:f3:4b:59:
0a:54:36:b6:fc:c7:b8:32:99:48:d0:ce:3f:8d:e7:
4b:4d:e5:16:03:60:e4:de:57:7e:ac:8d:8a:c0:f3:
0a:8e:54:c9:30:75:66:7a:49:1f:4b:13:8e:57:38:
13:7c:5c:fd:49:95:44:9d:e4:e1:81:88:fb:aa:8b:
0d:e1:ff:41:b9:b0:70:a7:89:60:d3:42:e5:ad:78:
0a:1b:7b:4c:bc:5d:10:68:a5:94:80:55:64:a1:8d:
35:92:71:8b:19:6e:e2:ed:3b:cf:81:49:fb:1d:4b:
73:3a:06:3e:49:6a:33:ac:ac:0f:9d:1c:80:7a:8b:
37:ed:c4:08:d7:eb:50:34:15:bf:87:88:27:16:72:
10:a6:01:be:94:05:f8:18:20:10:91:e3:92:89:1b:
6a:bd:3c:3d:75:2b:c3:82:b7:37:34:e4:1e:7a:c0:
da:f1:3e:79:fa:a6:21:af:5b:0c:2b:7a:28:35:22:
cf:10:b5:09:a2:ef:71:4b:6f:25:68:12:3b:cb:c1:
89:58:a0:ae:6a:37:f6:4e:38:58:27:51:92:0a:c0:
77:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:72:66:88:7B:00:0B:7F:6D:62:B8:19:C9:EA:43:48:32:F9:90:DD
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7D0C8DD6D68111EFAC2D078A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.62.0/24
Signature Algorithm: sha256WithRSAEncryption
46:05:9a:a6:10:6c:7a:84:6d:fc:6d:94:23:21:67:ad:cc:c3:
fe:cc:72:df:24:bf:fd:81:b5:46:c7:2d:fc:7a:22:27:22:cc:
10:f9:11:90:ee:61:1d:5c:f1:fd:f5:d3:a8:d0:9b:41:b6:a0:
21:4d:4b:f0:c1:d9:0e:ee:fd:ed:1f:e3:a9:70:ca:98:fd:e9:
e9:cb:39:a9:8a:13:09:c5:2c:a7:d3:45:7a:c4:e7:a4:83:40:
59:f3:bc:75:26:d2:1e:99:35:c4:40:a7:65:1d:93:1d:1f:ea:
48:31:8c:a6:0e:a7:ed:74:c8:de:32:4b:5a:79:24:9c:8e:f5:
44:63:ad:e4:16:be:2b:71:5f:89:2c:ba:a8:34:2a:29:9c:54:
d1:89:67:72:4e:c2:00:51:7f:ac:d4:37:ea:37:fa:75:7d:36:
b4:ce:80:74:6f:3b:47:fe:54:80:d2:a8:b7:30:8b:21:7d:b1:
06:df:16:b7:f5:b4:f9:84:39:40:ba:4c:ce:67:63:0f:94:53:
d3:71:84:5c:2a:b7:7b:04:d7:5e:76:73:c0:e2:0a:48:2a:61:
c2:ed:ab:d9:c5:b2:4a:b8:b4:16:a2:dd:cf:d8:9c:a6:34:a2:
e7:dc:cc:7e:5c:99:5a:f9:3e:78:4d:b7:4c:82:ac:42:ec:be:
15:a3:26:f6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT4BMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE5MTYyMTQ3WhcNMjUwMjI0MTYyMTQ3WjAYMRYw
FAYDVQQDEw02NzhkMjY5Zi04NWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxfB28TpRAdeI3BpUjoV1chhQa29zoEbC1WxCVdCczry0YQgmurqFuvbz
S1kKVDa2/Me4MplI0M4/jedLTeUWA2Dk3ld+rI2KwPMKjlTJMHVmekkfSxOOVzgT
fFz9SZVEneThgYj7qosN4f9BubBwp4lg00LlrXgKG3tMvF0QaKWUgFVkoY01knGL
GW7i7TvPgUn7HUtzOgY+SWozrKwPnRyAeos37cQI1+tQNBW/h4gnFnIQpgG+lAX4
GCAQkeOSiRtqvTw9dSvDgrc3NOQeesDa8T55+qYhr1sMK3ooNSLPELUJou9xS28l
aBI7y8GJWKCuajf2TjhYJ1GSCsB3JQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPNy
Zoh7AAt/bWK4GcnqQ0gy+ZDdMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RDBDOERENkQ2ODExMUVGQUMyRDA3OEE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmss+MA0GCSqGSIb3DQEB
CwUAA4IBAQBGBZqmEGx6hG38bZQjIWetzMP+zHLfJL/9gbVGxy38eiInIswQ+RGQ
7mEdXPH99dOo0JtBtqAhTUvwwdkO7v3tH+OpcMqY/enpyzmpihMJxSyn00V6xOek
g0BZ87x1JtIemTXEQKdlHZMdH+pIMYymDqftdMjeMktaeSScjvVEY63kFr4rcV+J
LLqoNCopnFTRiWdyTsIAUX+s1DfqN/p1fTa0zoB0bztH/lSA0qi3MIshfbEG3xa3
9bT5hDlAukzOZ2MPlFPTcYRcKrd7BNdednPA4gpIKmHC7avZxbJKuLQWot3P2Jym
NKLn3Mx+XJla+T54TbdMgqxC7L4Voyb2
-----END CERTIFICATE-----
Generated at Sat Apr 26 00:43:51 2025 by rpki-client