Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0296C5CD96A11EF83425A47762E951A.roa
File: B0296C5CD96A11EF83425A47762E951A.roa (raw, json)
Hash identifier: MFyb/JCU2tQITFot3tYoSchwj5KT1LHBaIXayCZPam0=
Subject key identifier: F7:71:43:A7:40:5A:D2:61:5D:4B:C0:D8:A2:5B:D2:22:68:2F:70:56
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0140DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0296C5CD96A11EF83425A47762E951A.roa
Signing time: Thu 23 Jan 2025 09:16:12 +0000
ROA not before: Thu 23 Jan 2025 09:16:08 +0000
ROA not after: Fri 28 Feb 2025 09:16:08 +0000
asID: 62240
IP address blocks: 154.194.104.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82140 (0x140dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 09:16:08 2025 GMT
Not After : Feb 28 09:16:08 2025 GMT
Subject: CN=679208dc-aa58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:72:6e:93:9b:5d:d6:af:dd:90:09:ca:2f:3a:
c9:c2:2e:97:c0:95:16:52:66:ba:d3:d4:aa:dc:00:
16:78:67:b8:ac:77:52:44:62:51:c6:c2:ec:1b:62:
5b:4a:4b:25:aa:27:9c:95:ae:b7:74:67:b2:61:89:
6b:e7:10:0d:82:8c:de:03:ee:5d:40:da:50:57:d3:
8e:ba:d7:54:eb:44:ea:a4:e7:95:a1:e0:53:00:e4:
d2:29:ac:ef:8b:a6:f7:ff:a6:f9:25:23:75:61:78:
a8:73:20:2f:68:fe:3a:98:e7:77:47:80:b1:06:f5:
22:04:22:60:78:05:2b:4e:1e:8b:d4:5a:2a:5f:e0:
0b:21:d4:cf:8f:c0:ba:4c:77:15:78:80:d5:a4:d2:
b1:bd:97:96:18:27:79:13:f3:d1:41:ed:0d:2e:33:
2d:2b:65:aa:e3:25:af:3b:18:c5:a9:a6:d3:b5:34:
97:43:bb:9d:6f:5a:37:03:3b:98:04:b5:c1:2e:57:
5c:ac:5b:0f:c2:18:fb:21:cf:dc:f1:1b:39:f1:22:
f4:88:98:95:ea:f7:f9:03:30:d1:58:4c:a3:24:ef:
a9:85:c4:1e:10:40:e8:aa:77:c5:03:a9:ef:25:01:
5e:9c:d0:f1:04:cb:5d:3e:11:cd:a2:ef:1d:f4:18:
98:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:71:43:A7:40:5A:D2:61:5D:4B:C0:D8:A2:5B:D2:22:68:2F:70:56
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B0296C5CD96A11EF83425A47762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.104.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:d4:39:a8:2e:ad:f9:00:58:47:e9:96:26:a1:39:10:6b:72:
66:85:ad:92:bf:0d:7b:cc:64:95:b4:f0:5c:c7:e0:0c:7e:84:
a3:d1:83:cd:cb:1b:23:5a:bb:22:7a:48:90:3d:d4:79:65:a5:
64:38:8d:18:7e:46:0d:10:89:0c:1e:53:3e:e4:88:07:f6:7e:
c0:4e:07:08:a2:97:ca:67:83:a6:af:c2:59:98:d7:de:99:9f:
36:e7:f9:2a:0f:a1:f2:ed:a7:9b:e9:cd:ed:fe:46:35:50:8c:
e5:82:bd:91:45:ba:fe:cb:e4:01:00:5e:79:7c:b1:30:b1:37:
5e:6a:12:d3:af:ab:98:57:e6:6b:4b:08:86:b6:17:50:eb:86:
cb:f3:30:a4:14:8c:3a:47:eb:3c:4d:16:24:2d:d4:47:5a:49:
a2:ef:1f:c2:fd:81:34:41:2d:4b:68:f5:16:8a:18:ef:a8:ff:
68:fd:e1:48:db:9b:77:7d:9a:ed:cc:e0:4a:27:1d:0c:3b:fd:
5d:a4:4e:96:98:4d:bb:29:69:3e:a2:db:dc:2b:86:1a:16:fb:
04:fe:07:45:05:4a:c4:66:a4:4f:d8:b7:cd:66:bf:fb:93:9f:
1a:e1:be:08:2c:68:7f:65:e8:37:87:2f:3a:6e:e7:98:2c:c8:
a3:b6:b2:f5
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUDcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIzMDkxNjA4WhcNMjUwMjI4MDkxNjA4WjAYMRYw
FAYDVQQDEw02NzkyMDhkYy1hYTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtHJuk5td1q/dkAnKLzrJwi6XwJUWUma609Sq3AAWeGe4rHdSRGJRxsLs
G2JbSkslqiecla63dGeyYYlr5xANgozeA+5dQNpQV9OOutdU60TqpOeVoeBTAOTS
Kazvi6b3/6b5JSN1YXiocyAvaP46mOd3R4CxBvUiBCJgeAUrTh6L1FoqX+ALIdTP
j8C6THcVeIDVpNKxvZeWGCd5E/PRQe0NLjMtK2Wq4yWvOxjFqabTtTSXQ7udb1o3
AzuYBLXBLldcrFsPwhj7Ic/c8Rs58SL0iJiV6vf5AzDRWEyjJO+phcQeEEDoqnfF
A6nvJQFenNDxBMtdPhHNou8d9BiYlQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPdx
Q6dAWtJhXUvA2KJb0iJoL3BWMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMDI5NkM1Q0Q5NkExMUVGODM0MjVBNDc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJoMA0GCSqGSIb3DQEB
CwUAA4IBAQB+1DmoLq35AFhH6ZYmoTkQa3Jmha2Svw17zGSVtPBcx+AMfoSj0YPN
yxsjWrsiekiQPdR5ZaVkOI0YfkYNEIkMHlM+5IgH9n7ATgcIopfKZ4Omr8JZmNfe
mZ825/kqD6Hy7aeb6c3t/kY1UIzlgr2RRbr+y+QBAF55fLEwsTdeahLTr6uYV+Zr
SwiGthdQ64bL8zCkFIw6R+s8TRYkLdRHWkmi7x/C/YE0QS1LaPUWihjvqP9o/eFI
25t3fZrtzOBKJx0MO/1dpE6WmE27KWk+otvcK4YaFvsE/gdFBUrEZqRP2LfNZr/7
k58a4b4ILGh/Zeg3hy86bueYLMijtrL1
-----END CERTIFICATE-----
Generated at Fri Apr 25 13:18:43 2025 by rpki-client