Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A37C28E6D40111EF90AB1CAD762E951A.roa
File: A37C28E6D40111EF90AB1CAD762E951A.roa (raw, json)
Hash identifier: x6X+KPdEyscmiv5urSFPImpBapsfUnjuQZpeId6uBhc=
Subject key identifier: 15:1F:3B:DE:CF:C7:61:1E:10:85:F4:62:CE:E9:1F:DD:61:34:B9:A3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013C14
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A37C28E6D40111EF90AB1CAD762E951A.roa
Signing time: Thu 16 Jan 2025 12:01:38 +0000
ROA not before: Thu 16 Jan 2025 12:01:28 +0000
ROA not after: Sun 16 Mar 2025 12:01:28 +0000
asID: 17561
IP address blocks: 154.206.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80916 (0x13c14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 16 12:01:28 2025 GMT
Not After : Mar 16 12:01:28 2025 GMT
Subject: CN=6788f522-78e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4b:e3:d1:db:c2:d0:cd:c5:8b:fe:c5:68:38:
8f:28:4d:c8:56:4f:5a:fd:bf:cc:06:5a:7f:f8:d8:
2f:c8:d3:cf:b9:32:ed:e8:14:84:40:ec:68:73:1c:
2c:98:34:7e:ce:27:5a:c4:19:62:7f:df:d3:c5:e1:
3d:59:f4:a9:de:40:f5:20:bd:e2:f8:86:39:28:5e:
1e:df:b3:ac:03:2a:dc:4e:0f:9f:cb:3b:71:af:13:
62:0b:0f:b7:80:1a:ff:77:17:f8:16:81:52:75:54:
54:00:43:47:a0:c4:ec:8d:e6:3d:40:f2:dd:71:87:
bd:21:51:99:b2:f6:5b:ea:1b:77:82:38:45:2c:3c:
6e:69:a1:34:c5:e5:81:50:a4:84:0b:f0:54:02:62:
44:f2:49:bd:1c:07:55:96:83:f2:dc:6c:55:01:f1:
a0:78:0f:c1:76:17:46:a0:e0:fd:dc:d2:1a:04:6c:
76:69:54:72:1c:4d:c1:e6:d2:ab:a0:7e:31:34:11:
d5:b6:4e:99:e6:ee:85:c8:17:0e:5b:de:4a:20:3a:
13:02:d8:d8:19:f4:7a:03:b3:34:52:37:32:6c:21:
44:e0:2b:12:22:a9:5c:5f:be:48:1b:40:c4:60:b1:
68:e8:64:fb:db:2d:66:eb:d0:bd:3c:7b:2b:26:02:
20:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:1F:3B:DE:CF:C7:61:1E:10:85:F4:62:CE:E9:1F:DD:61:34:B9:A3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A37C28E6D40111EF90AB1CAD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.204.0/24
Signature Algorithm: sha256WithRSAEncryption
42:79:75:09:df:06:40:55:7c:43:cb:c0:82:85:7f:58:73:91:
b5:a3:49:23:94:77:c4:df:dd:fb:12:59:3f:8d:03:c8:e1:b1:
2a:7c:bb:e3:98:2f:0f:08:ca:cd:ff:0d:19:c2:bd:4e:95:b7:
22:9d:0f:e9:c6:4c:13:aa:4f:6d:6d:c7:fb:31:b9:c7:8f:82:
c1:f5:92:76:69:3d:d7:4c:d8:1a:9b:21:0b:4b:58:14:cc:e3:
9d:76:50:96:b5:bc:95:29:f6:86:aa:07:ac:48:35:f2:e6:84:
99:9c:a3:a0:67:35:6d:4a:8d:30:c2:07:e4:13:61:0f:bd:26:
df:bb:9c:93:f5:e6:57:3c:b0:d4:b2:ab:0a:c3:27:b2:f1:17:
9e:9f:94:69:87:7c:91:d6:b6:18:71:fe:84:c3:88:7b:8c:26:
83:86:70:ae:cb:f7:59:a1:b6:61:c9:de:7d:54:55:12:4b:c6:
0f:f3:40:87:ff:99:9e:03:73:84:1d:a2:14:8b:60:da:6d:64:
4d:28:c7:e2:b1:b9:98:68:15:03:97:1e:ee:d3:58:ba:89:1f:
4a:73:27:00:4d:f1:9c:af:54:2c:b3:e5:ee:1e:a8:b9:9b:0a:
ab:c7:cb:37:e3:5a:1f:56:7e:27:3f:85:db:ea:10:8e:6c:73:
54:6b:63:46
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATwUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE2MTIwMTI4WhcNMjUwMzE2MTIwMTI4WjAYMRYw
FAYDVQQDEw02Nzg4ZjUyMi03OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2Uvj0dvC0M3Fi/7FaDiPKE3IVk9a/b/MBlp/+NgvyNPPuTLt6BSEQOxo
cxwsmDR+zidaxBlif9/TxeE9WfSp3kD1IL3i+IY5KF4e37OsAyrcTg+fyztxrxNi
Cw+3gBr/dxf4FoFSdVRUAENHoMTsjeY9QPLdcYe9IVGZsvZb6ht3gjhFLDxuaaE0
xeWBUKSEC/BUAmJE8km9HAdVloPy3GxVAfGgeA/BdhdGoOD93NIaBGx2aVRyHE3B
5tKroH4xNBHVtk6Z5u6FyBcOW95KIDoTAtjYGfR6A7M0UjcybCFE4CsSIqlcX75I
G0DEYLFo6GT72y1m69C9PHsrJgIg5QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBUf
O97Px2EeEIX0Ys7pH91hNLmjMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMzdDMjhFNkQ0MDExMUVGOTBBQjFDQUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7MMA0GCSqGSIb3DQEB
CwUAA4IBAQBCeXUJ3wZAVXxDy8CChX9Yc5G1o0kjlHfE3937Elk/jQPI4bEqfLvj
mC8PCMrN/w0Zwr1OlbcinQ/pxkwTqk9tbcf7MbnHj4LB9ZJ2aT3XTNgamyELS1gU
zOOddlCWtbyVKfaGqgesSDXy5oSZnKOgZzVtSo0wwgfkE2EPvSbfu5yT9eZXPLDU
sqsKwyey8Reen5Rph3yR1rYYcf6Ew4h7jCaDhnCuy/dZobZhyd59VFUSS8YP80CH
/5meA3OEHaIUi2DabWRNKMfisbmYaBUDlx7u01i6iR9KcycATfGcr1Qss+XuHqi5
mwqrx8s341ofVn4nP4Xb6hCObHNUa2NG
-----END CERTIFICATE-----
Generated at Tue Apr 29 01:01:24 2025 by rpki-client