Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/961672BCDBE811EF935D8E9C762E951A.roa
File: 961672BCDBE811EF935D8E9C762E951A.roa (raw, json)
Hash identifier: 5cletLZUfHE308/r6B4/itEz8yjEjX1QpMZSnzeMl28=
Subject key identifier: 06:28:BC:9D:30:EC:63:28:05:16:1D:F0:39:78:C1:3A:E8:64:12:93
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014A9A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/961672BCDBE811EF935D8E9C762E951A.roa
Signing time: Sun 26 Jan 2025 13:22:27 +0000
ROA not before: Sun 26 Jan 2025 13:22:23 +0000
ROA not after: Wed 05 Mar 2025 13:22:23 +0000
asID: 44559
IP address blocks: 154.209.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84634 (0x14a9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 26 13:22:23 2025 GMT
Not After : Mar 5 13:22:23 2025 GMT
Subject: CN=67963713-8c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c1:ed:b4:91:8d:dc:a9:46:2a:4f:6e:15:89:
0b:f1:4a:50:cf:bb:11:aa:8a:fa:32:f4:94:11:e8:
f1:84:87:6a:f5:ee:e1:ab:67:ee:8d:eb:49:c3:91:
18:28:0b:dd:f7:48:02:3b:86:91:9c:67:7f:40:29:
95:36:85:62:6d:af:ab:f6:c9:70:cf:9f:a7:c2:3c:
17:b5:73:30:33:14:3b:d0:5d:cb:ea:73:de:6a:1c:
0a:1e:83:ec:4b:73:ba:06:49:23:6d:54:cb:9a:52:
f6:9d:2c:4c:6f:1f:e7:f8:41:39:9a:ce:3b:fb:d8:
a6:a5:82:db:fe:1c:00:95:59:bb:c4:11:06:29:fa:
cd:cb:b6:3a:b7:bf:e9:a6:f0:66:c0:f1:17:10:70:
84:f6:5d:2b:8c:2a:50:aa:16:7c:11:ea:7d:37:eb:
f0:56:76:33:54:cd:44:b5:a1:39:4f:d6:a4:be:0a:
1e:4f:8e:fd:6e:e5:ba:ec:c1:30:15:23:e8:40:d1:
39:68:fe:5a:18:9e:16:7a:fc:df:88:9a:12:07:30:
6d:38:0b:04:e5:2f:2f:95:74:82:bf:ac:08:a7:eb:
f0:3f:e2:a5:cc:41:c7:2f:c8:cc:2d:94:17:e7:4a:
75:99:a4:4c:fc:66:56:bc:08:8c:bd:04:bd:28:4e:
21:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:28:BC:9D:30:EC:63:28:05:16:1D:F0:39:78:C1:3A:E8:64:12:93
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/961672BCDBE811EF935D8E9C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.159.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:bc:03:3b:84:bf:6f:f9:b0:c6:10:75:64:0e:83:30:02:84:
67:f1:9b:f2:2a:dc:e1:1e:0e:a4:88:e6:c2:38:f4:87:af:84:
0e:62:a3:86:06:a4:26:fa:5c:fb:af:41:ba:71:cc:cb:43:77:
33:5f:7f:86:3b:da:4a:9b:a4:0b:83:ad:70:ff:54:94:34:82:
c6:54:87:9f:d2:73:22:b2:ad:86:7e:36:c2:98:d8:3a:c0:a4:
8e:1f:d2:d7:60:49:40:88:5b:8d:63:03:52:c2:60:4b:d8:43:
da:e3:03:10:4a:27:e0:bb:df:d0:c1:a9:fd:7d:62:82:29:49:
d6:18:08:de:ad:e6:3b:13:8a:c3:9e:bf:99:bc:81:3c:f4:31:
02:f4:92:19:a9:74:21:81:78:6b:fe:60:7e:8e:31:ee:b4:88:
16:e9:f9:8c:db:39:a4:7d:c7:21:6c:ae:1a:96:7a:0c:d9:55:
b5:0e:f9:4d:86:4b:5d:89:0a:61:12:5a:22:97:32:f9:53:b5:
35:70:fa:f5:12:4f:33:63:79:d3:d7:96:f0:57:8b:19:d0:ea:
47:a5:dc:a1:52:82:44:fe:3c:d1:22:fc:96:39:06:c9:1d:c1:
12:ca:92:ae:3a:37:1b:98:ef:5d:78:04:bc:28:e9:b9:8b:a0:
6a:26:86:bd
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUqaMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI2MTMyMjIzWhcNMjUwMzA1MTMyMjIzWjAYMRYw
FAYDVQQDEw02Nzk2MzcxMy04Yzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArMHttJGN3KlGKk9uFYkL8UpQz7sRqor6MvSUEejxhIdq9e7hq2fujetJ
w5EYKAvd90gCO4aRnGd/QCmVNoViba+r9slwz5+nwjwXtXMwMxQ70F3L6nPeahwK
HoPsS3O6BkkjbVTLmlL2nSxMbx/n+EE5ms47+9impYLb/hwAlVm7xBEGKfrNy7Y6
t7/ppvBmwPEXEHCE9l0rjCpQqhZ8Eep9N+vwVnYzVM1EtaE5T9akvgoeT479buW6
7MEwFSPoQNE5aP5aGJ4WevzfiJoSBzBtOAsE5S8vlXSCv6wIp+vwP+KlzEHHL8jM
LZQX50p1maRM/GZWvAiMvQS9KE4hcwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAYo
vJ0w7GMoBRYd8Dl4wTroZBKTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NjE2NzJCQ0RCRTgxMUVGOTM1RDhFOUM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtGfMA0GCSqGSIb3DQEB
CwUAA4IBAQAqvAM7hL9v+bDGEHVkDoMwAoRn8ZvyKtzhHg6kiObCOPSHr4QOYqOG
BqQm+lz7r0G6cczLQ3czX3+GO9pKm6QLg61w/1SUNILGVIef0nMisq2GfjbCmNg6
wKSOH9LXYElAiFuNYwNSwmBL2EPa4wMQSifgu9/Qwan9fWKCKUnWGAjereY7E4rD
nr+ZvIE89DEC9JIZqXQhgXhr/mB+jjHutIgW6fmM2zmkfcchbK4alnoM2VW1DvlN
hktdiQphEloilzL5U7U1cPr1Ek8zY3nT15bwV4sZ0OpHpdyhUoJE/jzRIvyWOQbJ
HcESypKuOjcbmO9deAS8KOm5i6BqJoa9
-----END CERTIFICATE-----
Generated at Sat Apr 26 10:17:50 2025 by rpki-client