Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ED6EB06DA4711EFB6316699762E951A.roa
File: 7ED6EB06DA4711EFB6316699762E951A.roa (raw, json)
Hash identifier: AD7qtWul3EO3OM2nFYjoo5GPjhY6YB6NJdgim3pT6WU=
Subject key identifier: B3:1F:DB:E8:FD:59:14:95:71:86:B7:39:8D:DE:59:ED:18:37:FC:52
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014627
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ED6EB06DA4711EFB6316699762E951A.roa
Signing time: Fri 24 Jan 2025 11:36:48 +0000
ROA not before: Fri 24 Jan 2025 11:36:44 +0000
ROA not after: Fri 28 Feb 2025 11:36:44 +0000
asID: 62240
IP address blocks: 154.196.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83495 (0x14627)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 11:36:44 2025 GMT
Not After : Feb 28 11:36:44 2025 GMT
Subject: CN=67937b50-37ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:00:6d:9a:07:57:65:0d:37:05:b8:40:6d:82:
00:66:2b:27:3b:74:fe:95:99:c5:63:22:dc:bd:7e:
72:e9:88:d2:b5:25:e6:64:66:c5:5f:3a:99:dd:7e:
af:23:52:a6:6d:ed:fc:7b:04:0b:13:e2:59:47:4f:
ba:2d:e9:74:36:71:98:09:8e:24:8b:ce:ba:aa:de:
21:a9:af:25:65:9b:2c:2b:c3:a8:8a:6f:7b:3f:f5:
2e:d0:8c:8e:e7:54:61:a1:90:3a:e7:07:4f:27:95:
3e:51:d7:8d:8c:83:07:0a:27:7f:a7:f6:76:be:58:
3a:70:25:ab:46:18:f9:4b:6f:7f:bc:fd:d7:92:99:
1b:7f:a1:ae:38:e9:97:c0:e6:d7:e7:d8:66:02:90:
8b:e0:03:23:11:45:e5:f2:6f:e3:79:da:47:47:1a:
0b:f7:2e:0b:bf:76:a9:a6:3b:78:44:ce:fc:c0:74:
80:56:63:15:16:7a:e6:62:dd:5f:68:6b:47:96:9b:
cf:f1:50:a0:50:3e:47:f7:82:f5:68:da:7c:a3:ad:
24:4c:c0:cf:d9:9b:80:32:cf:d5:2d:1c:23:6a:e2:
01:b3:32:dc:93:c7:a9:ca:7c:f8:ab:a4:18:b8:6d:
7b:e7:94:ce:b4:07:ee:98:13:c5:7e:af:ef:ea:55:
97:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:1F:DB:E8:FD:59:14:95:71:86:B7:39:8D:DE:59:ED:18:37:FC:52
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7ED6EB06DA4711EFB6316699762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.91.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d1:c4:68:20:4b:98:93:43:6a:91:7a:0f:19:57:73:3e:e8:
06:94:d0:27:e7:4b:09:81:39:d7:2d:b1:79:90:61:7e:f1:99:
ff:61:0c:24:81:81:8b:44:31:f4:da:54:43:b6:94:1b:0d:3a:
fd:95:6a:00:98:b9:6e:48:6c:b3:e4:a8:52:3a:c2:e3:5f:f6:
b0:8f:0f:df:e6:0b:13:dc:81:ef:8f:6d:1f:20:7c:ef:4c:b4:
a5:51:7d:51:b2:78:6a:cc:cd:95:17:65:71:22:fe:1d:38:52:
bc:8a:bb:64:e5:c8:f0:6d:5c:52:46:85:1b:eb:44:b9:4b:ee:
2f:a0:f4:5f:a8:11:bd:a7:90:f6:c9:f6:5b:02:4b:d5:28:c6:
08:77:0e:4c:bb:07:98:d6:8f:0a:15:8b:47:2b:fa:ef:9b:19:
1b:41:7c:30:a3:be:18:24:84:13:b8:72:55:89:75:31:71:fb:
f7:7b:0f:8a:41:b2:5d:5a:26:b6:55:92:74:de:b3:ad:42:51:
83:26:83:f1:4a:60:96:e4:e1:00:c8:d8:28:f1:fa:53:11:84:
93:f8:ee:cb:23:04:79:1a:1d:d7:5c:6a:7e:ed:f3:ad:89:73:
43:47:98:9f:26:73:11:dc:a8:2c:51:01:74:ef:eb:a7:94:d6:
ce:41:68:11
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUYnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MTEzNjQ0WhcNMjUwMjI4MTEzNjQ0WjAYMRYw
FAYDVQQDEw02NzkzN2I1MC0zN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0gBtmgdXZQ03BbhAbYIAZisnO3T+lZnFYyLcvX5y6YjStSXmZGbFXzqZ
3X6vI1Kmbe38ewQLE+JZR0+6Lel0NnGYCY4ki866qt4hqa8lZZssK8Ooim97P/Uu
0IyO51RhoZA65wdPJ5U+UdeNjIMHCid/p/Z2vlg6cCWrRhj5S29/vP3Xkpkbf6Gu
OOmXwObX59hmApCL4AMjEUXl8m/jedpHRxoL9y4Lv3appjt4RM78wHSAVmMVFnrm
Yt1faGtHlpvP8VCgUD5H94L1aNp8o60kTMDP2ZuAMs/VLRwjauIBszLck8epynz4
q6QYuG1755TOtAfumBPFfq/v6lWXhQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLMf
2+j9WRSVcYa3OY3eWe0YN/xSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83RUQ2RUIwNkRBNDcxMUVGQjYzMTY2OTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsRbMA0GCSqGSIb3DQEB
CwUAA4IBAQA90cRoIEuYk0NqkXoPGVdzPugGlNAn50sJgTnXLbF5kGF+8Zn/YQwk
gYGLRDH02lRDtpQbDTr9lWoAmLluSGyz5KhSOsLjX/awjw/f5gsT3IHvj20fIHzv
TLSlUX1RsnhqzM2VF2VxIv4dOFK8irtk5cjwbVxSRoUb60S5S+4voPRfqBG9p5D2
yfZbAkvVKMYIdw5MuweY1o8KFYtHK/rvmxkbQXwwo74YJIQTuHJViXUxcfv3ew+K
QbJdWia2VZJ03rOtQlGDJoPxSmCW5OEAyNgo8fpTEYST+O7LIwR5Gh3XXGp+7fOt
iXNDR5ifJnMR3KgsUQF07+unlNbOQWgR
-----END CERTIFICATE-----
Generated at Fri Apr 25 16:52:51 2025 by rpki-client