Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/943EF524D95C11EFB403F169762E951A.roa
File: 943EF524D95C11EFB403F169762E951A.roa (raw, json)
Hash identifier: s6pm3v41f/trOSmE7igSg7JlzWtUidBmW3d3481pZpI=
Subject key identifier: 98:C4:66:41:E5:A2:15:CE:D6:BF:F1:5B:D9:63:97:70:74:D6:85:09
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014047
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/943EF524D95C11EFB403F169762E951A.roa
Signing time: Thu 23 Jan 2025 07:35:12 +0000
ROA not before: Thu 23 Jan 2025 07:35:08 +0000
ROA not after: Sat 08 Feb 2025 07:35:08 +0000
asID: 18229
IP address blocks: 154.210.164.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81991 (0x14047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 07:35:08 2025 GMT
Not After : Feb 8 07:35:08 2025 GMT
Subject: CN=6791f130-34cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:70:06:fd:24:b3:30:d5:81:66:9e:7d:f0:c5:
eb:62:ef:86:27:6f:7d:e9:1b:24:e2:4e:b2:02:db:
50:d5:eb:48:73:69:d7:94:0e:a4:1f:6e:49:33:8e:
c8:d2:29:fa:ec:71:8b:37:e0:81:27:ba:e2:56:25:
3a:44:37:de:d7:0c:2a:db:42:27:24:84:78:62:16:
f0:9a:c3:93:1a:2f:81:90:b1:6f:c2:e3:d8:cc:f7:
30:41:38:f0:a1:eb:b5:86:fc:54:fc:95:d9:3a:6e:
dd:5c:55:35:ff:31:1e:2f:7b:65:94:ca:83:cb:37:
82:d2:99:9e:a0:8d:2b:bd:e7:67:1b:4c:1a:6e:33:
17:7d:88:94:58:b5:eb:1f:02:15:87:31:0a:76:99:
a2:71:4d:ec:6b:d2:0f:bd:2b:10:d2:7a:db:1b:08:
59:86:55:de:36:7e:11:7d:12:ce:e6:68:e4:f2:6d:
b4:f1:f0:73:dc:54:69:e1:b5:ef:bf:20:06:39:cf:
19:67:97:be:70:bd:2c:58:76:48:c1:4a:2c:9b:84:
ee:72:a1:98:66:ff:e6:5c:2d:fd:6d:9a:73:3a:42:
93:61:3f:69:86:73:51:b0:25:fa:f2:7f:ed:15:82:
40:c9:1e:ed:d9:6c:7b:64:9d:92:e2:a9:0b:5e:54:
0e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:C4:66:41:E5:A2:15:CE:D6:BF:F1:5B:D9:63:97:70:74:D6:85:09
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/943EF524D95C11EFB403F169762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.164.0/24
Signature Algorithm: sha256WithRSAEncryption
35:cc:5b:f4:1a:cf:14:8c:06:be:fc:c1:8a:46:aa:f5:70:6b:
26:ee:1b:c1:6e:0b:b5:a6:07:cf:51:53:b4:cf:ba:1d:1b:59:
67:03:a0:4f:2a:c0:26:dc:6f:ba:49:2f:a7:3d:c4:c2:de:a2:
1f:d0:33:b4:56:0e:71:0d:a3:cb:96:9e:4c:f2:a1:22:fc:f5:
cb:c6:98:43:66:34:91:d7:1a:33:86:3e:8d:f1:ea:c4:44:b8:
88:de:93:1d:94:46:37:0f:54:70:67:aa:f4:30:6c:12:75:e6:
4e:4a:08:c5:ac:86:a1:30:41:d2:e9:19:48:f4:0b:64:e4:70:
66:5b:ee:85:86:05:ac:81:14:42:d0:18:f9:85:8b:e9:93:4b:
0f:39:02:a8:c8:73:7a:fb:ac:46:10:2c:1c:2e:bd:de:5f:f3:
4c:00:20:43:ba:e0:fe:54:5a:25:7a:15:48:c2:61:2a:c0:4a:
3a:6e:ad:70:e1:12:35:a5:4f:4e:c9:53:fb:64:23:e7:f0:4b:
47:e1:75:5e:28:1c:57:d8:b9:90:23:b9:d4:de:d4:e7:32:31:
a7:0f:19:8d:cf:f1:fb:41:a6:27:a1:a7:2b:e3:ac:8c:af:22:
5b:bf:ad:f5:b4:a6:7d:f9:d1:2b:10:89:fc:e2:3d:05:d4:66:
b0:93:d4:f3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUBHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIzMDczNTA4WhcNMjUwMjA4MDczNTA4WjAYMRYw
FAYDVQQDEw02NzkxZjEzMC0zNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAwXAG/SSzMNWBZp598MXrYu+GJ2996Rsk4k6yAttQ1etIc2nXlA6kH25J
M47I0in67HGLN+CBJ7riViU6RDfe1wwq20InJIR4YhbwmsOTGi+BkLFvwuPYzPcw
QTjwoeu1hvxU/JXZOm7dXFU1/zEeL3tllMqDyzeC0pmeoI0rvednG0wabjMXfYiU
WLXrHwIVhzEKdpmicU3sa9IPvSsQ0nrbGwhZhlXeNn4RfRLO5mjk8m208fBz3FRp
4bXvvyAGOc8ZZ5e+cL0sWHZIwUosm4TucqGYZv/mXC39bZpzOkKTYT9phnNRsCX6
8n/tFYJAyR7t2Wx7ZJ2S4qkLXlQOEQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJjE
ZkHlohXO1r/xW9ljl3B01oUJMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NDNFRjUyNEQ5NUMxMUVGQjQwM0YxNjk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtKkMA0GCSqGSIb3DQEB
CwUAA4IBAQA1zFv0Gs8UjAa+/MGKRqr1cGsm7hvBbgu1pgfPUVO0z7odG1lnA6BP
KsAm3G+6SS+nPcTC3qIf0DO0Vg5xDaPLlp5M8qEi/PXLxphDZjSR1xozhj6N8erE
RLiI3pMdlEY3D1RwZ6r0MGwSdeZOSgjFrIahMEHS6RlI9Atk5HBmW+6FhgWsgRRC
0Bj5hYvpk0sPOQKoyHN6+6xGECwcLr3eX/NMACBDuuD+VFolehVIwmEqwEo6bq1w
4RI1pU9OyVP7ZCPn8EtH4XVeKBxX2LmQI7nU3tTnMjGnDxmNz/H7QaYnoacr46yM
ryJbv631tKZ9+dErEIn84j0F1Gawk9Tz
-----END CERTIFICATE-----
Generated at Sun Apr 27 14:15:14 2025 by rpki-client