Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8554D106DE1511EFB9780950762E951A.roa
File: 8554D106DE1511EFB9780950762E951A.roa (raw, json)
Hash identifier: hWaGo4uhIBslWG+BtxrCVqZWMTACKRjgwOx7xRM7NtA=
Subject key identifier: 4F:36:7D:1A:18:E2:FC:3E:21:39:1F:15:7E:D5:AF:5F:45:18:48:E1
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014D33
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8554D106DE1511EFB9780950762E951A.roa
Signing time: Wed 29 Jan 2025 07:49:08 +0000
ROA not before: Wed 29 Jan 2025 07:49:04 +0000
ROA not after: Wed 05 Mar 2025 07:49:04 +0000
asID: 203020
IP address blocks: 154.208.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85299 (0x14d33)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 29 07:49:04 2025 GMT
Not After : Mar 5 07:49:04 2025 GMT
Subject: CN=6799dd74-91f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:e5:d7:c1:40:6e:c8:8e:67:19:b7:6d:f1:
07:b3:0c:6d:0e:10:21:d9:33:e5:41:bf:a2:21:d6:
e6:7c:a5:7d:4c:98:4a:22:2e:5b:d5:6c:70:d9:59:
71:d8:d8:e4:8b:eb:61:fc:d7:59:6c:c5:69:b7:64:
64:1a:7b:1d:da:dd:c1:79:ed:ef:64:4e:10:92:d7:
b5:14:e8:b3:7c:5a:5c:59:f6:db:0d:cf:c1:92:11:
34:ee:eb:2b:71:cd:9e:aa:eb:d7:e8:38:39:8f:72:
25:ec:6e:af:13:0d:ba:08:0b:a3:b1:3f:8a:1e:0f:
d4:7d:f6:64:f8:e7:96:e2:10:00:fb:30:7f:24:df:
78:87:e2:77:14:7e:c2:62:96:45:1e:0c:47:8f:0e:
30:35:3c:41:4d:8b:c3:0c:ec:05:12:06:0e:57:44:
06:6b:8a:1d:f1:1c:56:7d:03:e0:e6:1d:68:98:1d:
dd:39:ae:10:b2:4c:f2:68:b6:b1:5b:65:2a:dc:18:
b6:a7:02:e0:f6:67:20:e8:72:be:37:5f:62:e7:18:
26:c2:d2:e4:e5:41:b5:8d:89:a9:1e:15:4b:dd:53:
6e:78:3b:b9:a8:23:e1:42:6d:f1:a2:20:bc:16:01:
e4:7e:23:95:72:54:dd:7f:b7:52:7b:0d:c5:12:a8:
f2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:36:7D:1A:18:E2:FC:3E:21:39:1F:15:7E:D5:AF:5F:45:18:48:E1
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8554D106DE1511EFB9780950762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.175.0/24
Signature Algorithm: sha256WithRSAEncryption
14:79:0d:5f:fc:14:32:01:a1:47:b8:74:d0:65:37:c9:c0:87:
f1:8a:53:68:3b:8b:3c:bd:eb:61:52:1f:0a:9e:43:c9:aa:54:
e3:e0:2c:65:7e:1b:82:93:14:04:3d:2c:4f:26:85:d1:e3:d9:
df:cb:ea:97:de:6f:bf:5b:09:37:43:88:fe:96:46:92:19:7c:
5f:b6:62:93:77:34:c3:a6:a6:78:80:6c:2f:bd:69:d5:91:26:
84:27:7f:39:5f:6d:3f:52:88:38:25:c3:0d:f9:86:b8:b0:a6:
04:e7:bd:03:72:68:c4:6c:39:89:c4:f0:d6:1c:ea:81:f5:49:
9f:24:48:4a:cd:b3:cb:0d:d6:1e:17:09:bf:76:c7:84:91:aa:
c7:3d:98:e7:0b:29:d9:cc:f7:d2:96:3e:b4:98:6a:c2:28:6f:
c9:87:43:8c:6e:b7:91:79:6e:66:c1:d7:be:f2:e2:fd:88:89:
b3:19:87:3b:26:e7:87:cd:2a:3e:80:0c:b4:90:1b:3e:5f:bc:
f9:18:88:46:28:78:f3:3f:b1:b9:13:f4:b2:bb:16:15:cb:21:
0f:ab:dd:f6:38:9e:5b:a0:53:b2:4e:41:bc:6c:53:06:9f:9d:
3a:13:5f:aa:f4:84:a0:05:a3:43:9c:f0:b4:7c:1d:c5:3d:61:
73:85:31:26
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAU0zMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI5MDc0OTA0WhcNMjUwMzA1MDc0OTA0WjAYMRYw
FAYDVQQDEw02Nzk5ZGQ3NC05MWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAqo3l18FAbsiOZxm3bfEHswxtDhAh2TPlQb+iIdbmfKV9TJhKIi5b1Wxw
2Vlx2Njki+th/NdZbMVpt2RkGnsd2t3Bee3vZE4Qkte1FOizfFpcWfbbDc/BkhE0
7usrcc2equvX6Dg5j3Il7G6vEw26CAujsT+KHg/UffZk+OeW4hAA+zB/JN94h+J3
FH7CYpZFHgxHjw4wNTxBTYvDDOwFEgYOV0QGa4od8RxWfQPg5h1omB3dOa4Qskzy
aLaxW2Uq3Bi2pwLg9mcg6HK+N19i5xgmwtLk5UG1jYmpHhVL3VNueDu5qCPhQm3x
oiC8FgHkfiOVclTdf7dSew3FEqjyNQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFE82
fRoY4vw+ITkfFX7Vr19FGEjhMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84NTU0RDEwNkRFMTUxMUVGQjk3ODA5NTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtCvMA0GCSqGSIb3DQEB
CwUAA4IBAQAUeQ1f/BQyAaFHuHTQZTfJwIfxilNoO4s8vethUh8KnkPJqlTj4Cxl
fhuCkxQEPSxPJoXR49nfy+qX3m+/Wwk3Q4j+lkaSGXxftmKTdzTDpqZ4gGwvvWnV
kSaEJ385X20/Uog4JcMN+Ya4sKYE570DcmjEbDmJxPDWHOqB9UmfJEhKzbPLDdYe
Fwm/dseEkarHPZjnCynZzPfSlj60mGrCKG/Jh0OMbreReW5mwde+8uL9iImzGYc7
JueHzSo+gAy0kBs+X7z5GIhGKHjzP7G5E/SyuxYVyyEPq932OJ5boFOyTkG8bFMG
n506E1+q9ISgBaNDnPC0fB3FPWFzhTEm
-----END CERTIFICATE-----
Generated at Fri Apr 25 17:00:47 2025 by rpki-client