Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8C91C54D9C511EF9F589DA3762E951A.roa
File: A8C91C54D9C511EF9F589DA3762E951A.roa (raw, json)
Hash identifier: 0tZc9SUybme6RyYcFj62MzecJj0k2LHwW9xKkMi0bcU=
Subject key identifier: 7D:1B:D5:D5:20:00:2F:75:75:7E:EC:83:B1:FE:43:94:56:8F:C2:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142BC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8C91C54D9C511EF9F589DA3762E951A.roa
Signing time: Thu 23 Jan 2025 20:07:24 +0000
ROA not before: Fri 24 Jan 2025 20:07:20 +0000
ROA not after: Fri 28 Feb 2025 20:07:20 +0000
asID: 62240
IP address blocks: 154.196.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82620 (0x142bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 20:07:20 2025 GMT
Not After : Feb 28 20:07:20 2025 GMT
Subject: CN=6792a17b-5dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:df:2e:e2:67:c0:c2:76:a3:11:e1:29:a5:bd:
1c:ef:2a:ea:5a:59:88:05:c6:d4:97:4c:49:26:58:
83:ce:15:56:2a:b9:8a:7c:7b:42:0a:b6:0f:f2:f2:
cc:10:d2:28:9c:0f:77:62:57:f9:fb:9e:17:1c:cb:
90:5a:dd:b1:13:c2:28:7f:cd:67:36:d9:9a:47:f0:
49:d1:e8:26:2d:cd:55:ed:b9:0b:75:57:70:97:6b:
ee:76:51:db:08:4b:07:6d:25:7b:2d:fa:60:32:75:
20:fb:4e:b0:c9:e4:57:52:f7:8d:cd:a5:f2:b0:cd:
3d:83:db:35:ef:fd:4e:cf:4d:98:ea:94:8a:0f:89:
ff:c4:f8:4f:a3:22:c7:a8:ee:95:c9:6e:83:b2:6f:
ca:d8:ab:34:80:37:18:a0:8e:9c:09:3e:a6:1d:bf:
b1:1f:9b:11:52:14:80:ab:d5:c6:c3:08:28:46:1e:
ed:88:09:49:a3:87:b8:c4:5b:a7:82:72:3a:70:05:
41:93:09:73:86:18:d0:2e:3e:a5:8f:45:b6:e3:35:
de:ea:4e:a1:d7:2d:09:e3:a6:a9:65:8d:fe:34:04:
43:ad:63:eb:23:e0:ad:97:d1:a9:b4:5a:e4:f1:5c:
71:2f:61:5f:c3:c1:44:9f:7b:3d:76:10:7a:f9:64:
b2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1B:D5:D5:20:00:2F:75:75:7E:EC:83:B1:FE:43:94:56:8F:C2:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A8C91C54D9C511EF9F589DA3762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.42.0/24
Signature Algorithm: sha256WithRSAEncryption
78:37:9e:81:ee:7f:e4:06:36:79:e6:d0:98:f3:6d:9a:21:23:
f7:0c:7f:0f:30:32:93:94:ac:b7:20:a8:e9:bd:cc:29:8d:ca:
de:4a:35:0f:d6:a1:d0:fd:96:33:1c:9c:58:75:38:65:4e:33:
f0:f9:57:10:28:98:ca:a5:62:08:6c:7d:07:67:fc:3c:b5:3c:
1f:b0:8d:c9:3e:0e:54:56:9e:16:d1:9c:0e:76:7a:cd:e0:64:
c8:99:8c:2a:da:5e:d1:65:6e:23:45:0c:18:0e:28:ac:d3:0a:
70:5b:9e:a0:c7:c2:e8:8c:21:b7:8c:88:57:6d:07:22:04:b4:
f2:e0:a3:fb:18:5b:fb:96:50:3e:62:b9:2c:23:4c:0a:5f:c3:
06:26:38:3a:69:6a:a7:e7:a6:85:31:fe:fc:80:a0:88:4e:f3:
0d:c8:58:eb:77:82:6f:cf:db:6b:0a:a8:38:ab:3e:e6:c0:6f:
65:10:1e:b0:28:ab:93:94:25:45:6a:55:72:2a:4c:5a:56:db:
c6:93:6f:bc:a8:f3:6a:d8:ca:05:51:0a:05:29:66:80:60:9e:
8d:f2:3f:c0:86:9c:0f:28:81:a1:64:6e:e7:26:b0:bb:41:a3:
3f:fb:33:bd:88:d8:d8:74:26:74:09:b7:6d:6b:12:83:a4:72:
c7:cd:d6:48
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUK8MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MjAwNzIwWhcNMjUwMjI4MjAwNzIwWjAYMRYw
FAYDVQQDEw02NzkyYTE3Yi01ZGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAn98u4mfAwnajEeEppb0c7yrqWlmIBcbUl0xJJliDzhVWKrmKfHtCCrYP
8vLMENIonA93Ylf5+54XHMuQWt2xE8Iof81nNtmaR/BJ0egmLc1V7bkLdVdwl2vu
dlHbCEsHbSV7LfpgMnUg+06wyeRXUveNzaXysM09g9s17/1Oz02Y6pSKD4n/xPhP
oyLHqO6VyW6Dsm/K2Ks0gDcYoI6cCT6mHb+xH5sRUhSAq9XGwwgoRh7tiAlJo4e4
xFungnI6cAVBkwlzhhjQLj6lj0W24zXe6k6h1y0J46apZY3+NARDrWPrI+Ctl9Gp
tFrk8VxxL2Ffw8FEn3s9dhB6+WSyEQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFH0b
1dUgAC91dX7sg7H+Q5RWj8KPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BOEM5MUM1NEQ5QzUxMUVGOUY1ODlEQTM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQqMA0GCSqGSIb3DQEB
CwUAA4IBAQB4N56B7n/kBjZ55tCY822aISP3DH8PMDKTlKy3IKjpvcwpjcreSjUP
1qHQ/ZYzHJxYdThlTjPw+VcQKJjKpWIIbH0HZ/w8tTwfsI3JPg5UVp4W0ZwOdnrN
4GTImYwq2l7RZW4jRQwYDiis0wpwW56gx8LojCG3jIhXbQciBLTy4KP7GFv7llA+
YrksI0wKX8MGJjg6aWqn56aFMf78gKCITvMNyFjrd4Jvz9trCqg4qz7mwG9lEB6w
KKuTlCVFalVyKkxaVtvGk2+8qPNq2MoFUQoFKWaAYJ6N8j/AhpwPKIGhZG7nJrC7
QaM/+zO9iNjYdCZ0CbdtaxKDpHLHzdZI
-----END CERTIFICATE-----
Generated at Fri Apr 25 09:33:29 2025 by rpki-client