Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2A79482CF2E11EF9D6EE89D762E951A.roa
File: A2A79482CF2E11EF9D6EE89D762E951A.roa (raw, json)
Hash identifier: ybaJnQTOB1tLnrfKypesF5ibYCdh09SpQ3buzy3faqw=
Subject key identifier: 1E:8D:79:51:6E:55:B9:91:36:22:91:9E:8E:03:2D:2F:42:54:A4:CA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0139BB
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2A79482CF2E11EF9D6EE89D762E951A.roa
Signing time: Fri 10 Jan 2025 08:41:08 +0000
ROA not before: Fri 10 Jan 2025 08:41:04 +0000
ROA not after: Sat 22 Mar 2025 08:41:04 +0000
asID: 135097
IP address blocks: 154.89.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80315 (0x139bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 10 08:41:04 2025 GMT
Not After : Mar 22 08:41:04 2025 GMT
Subject: CN=6780dd23-4132
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:e7:44:f2:02:1b:f2:42:74:46:72:fc:ae:67:
38:90:83:22:fe:3e:c3:6a:4c:ae:51:31:6d:ef:0b:
78:60:a2:83:0d:44:d0:09:f9:db:3e:0f:ae:c6:bb:
c0:45:ff:fb:68:e0:ab:3d:4d:9a:a3:b5:bf:dd:1a:
83:28:9b:51:ea:92:d8:48:37:55:c2:8a:3e:2c:dc:
41:17:4c:c6:6d:81:f6:93:78:35:ec:22:08:9e:84:
25:f1:cf:3d:a0:8e:4c:42:2e:aa:d6:f1:3e:82:f2:
5c:fe:21:6a:7f:42:db:de:6f:c3:aa:5c:82:c3:64:
87:6a:20:81:d6:0b:a2:de:1f:e5:cd:9d:c1:ee:1e:
56:3f:a9:d8:b4:63:9d:d1:97:1e:36:da:c5:15:7c:
cd:29:7e:ec:24:06:d5:8f:92:5a:9a:ed:91:b8:fd:
3d:50:57:36:52:9d:f8:00:ef:65:00:46:fd:53:c5:
68:4e:c5:5f:fb:40:02:7b:d4:62:d9:0c:60:93:42:
bf:e8:7c:94:f1:f4:2c:f9:e1:1e:56:ef:06:62:89:
1f:c5:98:5f:a7:48:bb:97:e8:20:43:fb:69:db:fd:
ba:d8:fc:5e:fa:d0:5c:79:1a:52:d3:b2:54:45:ca:
32:13:69:ee:52:61:91:7a:c7:cb:74:35:da:d0:e2:
32:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:8D:79:51:6E:55:B9:91:36:22:91:9E:8E:03:2D:2F:42:54:A4:CA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A2A79482CF2E11EF9D6EE89D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
11:45:ec:e7:07:a8:86:3c:84:51:6d:ba:7f:99:15:ea:ca:c4:
04:32:a9:82:be:53:94:8a:74:fe:71:cd:7f:f9:88:c3:6d:9d:
a5:5c:e4:64:e7:00:98:65:0a:43:59:e7:11:77:0f:25:d9:fb:
c4:ad:5f:e9:aa:49:b0:2e:f4:69:b1:cd:a9:69:99:26:53:2d:
cb:85:b7:04:88:e4:57:56:53:17:de:c4:7a:bc:c8:7d:41:63:
78:55:f0:a6:b4:38:e9:58:16:83:93:f1:06:0c:3a:32:37:36:
2a:77:32:6a:44:56:9f:94:a9:a9:03:ff:6d:79:d7:71:9d:8b:
a9:79:23:8a:7d:1c:3d:64:e1:13:da:fd:a1:a3:68:54:b5:70:
73:f1:48:d6:cb:b2:5d:f0:32:32:af:15:72:b7:3a:d1:cd:d8:
fa:db:19:8d:50:a7:53:ac:87:e6:30:af:8f:be:3d:fe:6b:f5:
d1:d4:c1:f1:56:e8:08:eb:41:42:08:c0:01:84:74:ec:71:31:
a5:fe:76:bc:52:49:e7:bc:1a:c6:51:e5:52:00:6b:ab:a4:ba:
25:24:78:97:6d:23:de:6d:80:ab:97:57:a8:b6:15:64:fa:36:
eb:46:d2:3c:49:d2:16:1a:1c:b6:34:e6:66:dc:47:2a:c1:49:
48:9f:7e:af
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATm7MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTEwMDg0MTA0WhcNMjUwMzIyMDg0MTA0WjAYMRYw
FAYDVQQDEw02NzgwZGQyMy00MTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+udE8gIb8kJ0RnL8rmc4kIMi/j7DakyuUTFt7wt4YKKDDUTQCfnbPg+u
xrvARf/7aOCrPU2ao7W/3RqDKJtR6pLYSDdVwoo+LNxBF0zGbYH2k3g17CIInoQl
8c89oI5MQi6q1vE+gvJc/iFqf0Lb3m/DqlyCw2SHaiCB1gui3h/lzZ3B7h5WP6nY
tGOd0ZceNtrFFXzNKX7sJAbVj5Jamu2RuP09UFc2Up34AO9lAEb9U8VoTsVf+0AC
e9Ri2Qxgk0K/6HyU8fQs+eEeVu8GYokfxZhfp0i7l+ggQ/tp2/262Pxe+tBceRpS
07JURcoyE2nuUmGResfLdDXa0OIyfwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFB6N
eVFuVbmRNiKRno4DLS9CVKTKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMkE3OTQ4MkNGMkUxMUVGOUQ2RUU4OUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmllAMA0GCSqGSIb3DQEB
CwUAA4IBAQARReznB6iGPIRRbbp/mRXqysQEMqmCvlOUinT+cc1/+YjDbZ2lXORk
5wCYZQpDWecRdw8l2fvErV/pqkmwLvRpsc2paZkmUy3LhbcEiORXVlMX3sR6vMh9
QWN4VfCmtDjpWBaDk/EGDDoyNzYqdzJqRFaflKmpA/9teddxnYupeSOKfRw9ZOET
2v2ho2hUtXBz8UjWy7Jd8DIyrxVytzrRzdj62xmNUKdTrIfmMK+Pvj3+a/XR1MHx
VugI60FCCMABhHTscTGl/na8UknnvBrGUeVSAGurpLolJHiXbSPebYCrl1eothVk
+jbrRtI8SdIWGhy2NOZm3EcqwUlIn36v
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:44:56 2025 by rpki-client