Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B18E1CB8D96B11EF98F71950762E951A.roa
File: B18E1CB8D96B11EF98F71950762E951A.roa (raw, json)
Hash identifier: CLaThpgCzQoNteq9/a8Ei6LB+CWNpJbC4JwKN2lJHVw=
Subject key identifier: 38:E6:9E:05:CE:A4:10:44:CC:39:2B:E2:D0:D1:EE:1D:53:51:38:9E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0140E4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B18E1CB8D96B11EF98F71950762E951A.roa
Signing time: Thu 23 Jan 2025 09:23:23 +0000
ROA not before: Thu 23 Jan 2025 09:23:20 +0000
ROA not after: Fri 28 Feb 2025 09:23:20 +0000
asID: 62240
IP address blocks: 154.194.108.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82148 (0x140e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 09:23:20 2025 GMT
Not After : Feb 28 09:23:20 2025 GMT
Subject: CN=67920a8b-bda5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b0:bf:f3:f0:fc:e3:ab:07:4e:13:db:09:43:
e8:7c:23:b0:49:9b:d8:39:e6:a8:62:bd:b7:1a:64:
26:95:0b:1f:f9:2e:ad:ab:cc:bb:8c:fe:cf:e4:b1:
d2:ac:32:0f:b1:82:7c:bb:6f:1c:55:da:1f:b2:58:
dd:09:e7:05:99:9d:90:56:cc:e7:d6:d8:fe:44:4b:
c3:24:9b:04:db:75:14:34:83:87:87:d6:7a:11:91:
55:70:3b:23:b3:f8:13:eb:2e:eb:95:08:fe:63:83:
d6:a7:dc:a9:36:69:98:76:4d:a7:d9:2c:02:a2:fe:
ff:07:b9:ba:26:9c:e7:30:39:61:42:0f:40:85:04:
4d:fc:3f:1e:fe:50:01:94:b9:ef:be:17:e2:d8:bf:
f0:94:b5:8d:fd:51:99:91:e5:66:6d:38:3b:bc:44:
c4:04:91:ab:f4:d5:35:37:d6:c0:05:2e:d7:cf:01:
ae:06:6f:63:32:6a:87:2c:c4:b5:78:ed:26:bc:31:
d2:0b:bc:04:6a:48:e4:ba:0c:2b:39:1c:2e:dd:df:
b7:9f:c3:e6:e5:5f:e9:04:40:cf:81:ea:cb:c2:c3:
9f:01:06:c7:4e:48:a0:78:e1:74:3e:26:63:78:8f:
41:63:2c:1a:b9:e1:8e:5d:47:e7:a3:b5:73:39:2a:
48:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:E6:9E:05:CE:A4:10:44:CC:39:2B:E2:D0:D1:EE:1D:53:51:38:9E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B18E1CB8D96B11EF98F71950762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.108.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:2f:d1:43:bf:75:f1:28:e0:9d:b6:aa:d6:df:93:d5:3d:a4:
16:97:c9:c8:cc:e7:dc:b5:61:8e:5f:14:7d:ea:f9:ef:29:c3:
51:2a:25:72:1d:ad:dd:9c:ba:f9:18:57:4c:0f:a9:00:38:e4:
74:13:ff:b5:b0:f0:f1:e7:66:75:5d:73:4e:ca:88:9e:22:55:
4c:2b:43:92:7c:f9:6c:d9:9f:2c:f8:f7:ce:10:3b:9a:e3:ae:
57:d6:45:9e:ec:fb:1d:ba:0f:cb:fc:eb:7d:fe:4e:24:78:92:
38:1a:39:09:29:c5:8a:89:1a:11:4c:da:7d:1b:25:17:27:1e:
ef:3d:b6:0c:f6:fe:48:bc:bc:0d:db:f3:c6:03:e4:dd:08:b2:
ae:db:0d:58:87:b3:23:61:ce:f1:ea:7a:24:7b:a2:39:dd:29:
57:0a:62:30:f7:0c:02:ec:41:9e:19:75:8b:4d:9b:aa:9e:94:
3a:0a:d2:f0:4e:78:4b:c7:f7:b8:74:cf:ca:ed:04:b1:a4:5f:
4d:5a:8d:f7:64:c9:d4:73:d8:6d:3e:83:04:f1:6b:f1:59:c5:
b1:51:0d:ff:14:00:47:bd:3f:83:c8:1e:a1:f8:af:65:26:84:
e1:c3:5a:cd:98:82:d3:d0:96:01:f5:b9:15:2e:a5:6a:51:d4:
21:e4:4a:c9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUDkMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIzMDkyMzIwWhcNMjUwMjI4MDkyMzIwWjAYMRYw
FAYDVQQDEw02NzkyMGE4Yi1iZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnLC/8/D846sHThPbCUPofCOwSZvYOeaoYr23GmQmlQsf+S6tq8y7jP7P
5LHSrDIPsYJ8u28cVdofsljdCecFmZ2QVszn1tj+REvDJJsE23UUNIOHh9Z6EZFV
cDsjs/gT6y7rlQj+Y4PWp9ypNmmYdk2n2SwCov7/B7m6JpznMDlhQg9AhQRN/D8e
/lABlLnvvhfi2L/wlLWN/VGZkeVmbTg7vETEBJGr9NU1N9bABS7XzwGuBm9jMmqH
LMS1eO0mvDHSC7wEakjkugwrORwu3d+3n8Pm5V/pBEDPgerLwsOfAQbHTkigeOF0
PiZjeI9BYywaueGOXUfno7VzOSpI/QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDjm
ngXOpBBEzDkr4tDR7h1TUTieMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMThFMUNCOEQ5NkIxMUVGOThGNzE5NTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsJsMA0GCSqGSIb3DQEB
CwUAA4IBAQC7L9FDv3XxKOCdtqrW35PVPaQWl8nIzOfctWGOXxR96vnvKcNRKiVy
Ha3dnLr5GFdMD6kAOOR0E/+1sPDx52Z1XXNOyoieIlVMK0OSfPls2Z8s+PfOEDua
465X1kWe7Psdug/L/Ot9/k4keJI4GjkJKcWKiRoRTNp9GyUXJx7vPbYM9v5IvLwN
2/PGA+TdCLKu2w1Yh7MjYc7x6noke6I53SlXCmIw9wwC7EGeGXWLTZuqnpQ6CtLw
TnhLx/e4dM/K7QSxpF9NWo33ZMnUc9htPoME8WvxWcWxUQ3/FABHvT+DyB6h+K9l
JoThw1rNmILT0JYB9bkVLqVqUdQh5ErJ
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:03:36 2025 by rpki-client