Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2B2C138CBE811EFAB7519BE762E951A.roa
File: B2B2C138CBE811EFAB7519BE762E951A.roa (raw, json)
Hash identifier: 1v0bofsMl4n848zNd7DpViiMhXyzTLgobCPkRKfaFfA=
Subject key identifier: ED:00:6A:B8:01:93:8E:50:F3:69:3F:F9:93:16:AB:D5:B5:A7:B6:79
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013599
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2B2C138CBE811EFAB7519BE762E951A.roa
Signing time: Mon 06 Jan 2025 04:42:56 +0000
ROA not before: Mon 06 Jan 2025 04:42:52 +0000
ROA not after: Sat 08 Feb 2025 04:42:52 +0000
asID: 134351
IP address blocks: 154.200.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79257 (0x13599)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 6 04:42:52 2025 GMT
Not After : Feb 8 04:42:52 2025 GMT
Subject: CN=677b5f50-bbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:44:a6:5a:ab:9b:8c:f3:72:79:e3:b9:cf:e5:
db:c4:14:d0:a3:c4:a7:80:35:f2:38:8a:64:51:db:
10:13:24:ac:f0:27:5a:4a:fe:79:7b:79:fc:6b:ed:
06:ac:0f:fe:3a:ee:63:3b:c1:81:6a:58:b1:48:53:
2d:bd:9f:6f:5a:da:80:31:34:de:6d:d0:46:d9:eb:
ef:ff:a5:10:bd:ad:01:fb:fd:a1:8d:e9:3e:de:5d:
86:17:11:bd:24:0d:bb:57:2f:e3:b5:29:de:56:ac:
3c:c4:89:06:06:1c:cd:a0:cc:40:54:4b:3b:61:82:
b3:8a:b6:25:2f:e5:a2:e0:11:41:8f:5b:2e:b2:47:
4b:2b:b2:bc:89:70:c8:b2:d7:65:63:12:75:2f:66:
27:3a:cf:a7:bf:92:c0:94:ef:37:1b:5f:09:e4:61:
76:23:4e:f5:7c:f9:e3:43:64:b2:f3:05:85:83:78:
98:ba:7b:19:91:7c:87:90:34:e6:3f:fe:e1:01:38:
2d:fb:f5:38:cd:65:1a:60:b8:4b:14:de:97:17:54:
5a:cf:ae:60:10:63:18:ac:9e:7e:96:e7:01:48:74:
ba:8c:a9:75:2e:04:1f:86:06:35:a7:1a:91:a6:db:
26:31:24:01:4b:32:62:a1:49:ca:ab:a9:cf:67:cf:
32:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:00:6A:B8:01:93:8E:50:F3:69:3F:F9:93:16:AB:D5:B5:A7:B6:79
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B2B2C138CBE811EFAB7519BE762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.93.0/24
Signature Algorithm: sha256WithRSAEncryption
27:15:95:d8:7c:c4:81:a1:3a:bb:6c:3b:c2:3f:ea:49:6a:7d:
70:78:d9:66:a4:b5:2b:ce:b5:a8:85:3a:87:78:5d:3a:cf:e1:
b2:b3:26:36:f2:24:87:18:26:e3:96:4c:bf:60:d2:20:c4:47:
c0:36:91:21:e9:bd:3d:1e:bd:c4:69:16:42:b3:8e:01:c8:9f:
9a:4c:de:54:2e:9a:f6:83:aa:63:a5:4a:6e:fd:6d:c1:be:6d:
52:bc:b4:e8:ac:29:02:7d:e4:53:ca:ca:f4:91:c6:ef:f7:a3:
67:71:96:1c:0c:dd:ba:b0:5c:a7:16:9d:e8:db:eb:4b:a6:d4:
10:98:f4:70:92:c7:68:35:ef:10:12:db:65:10:2c:38:61:d9:
43:68:f7:1b:70:7f:e3:3c:e4:0b:9d:47:d4:a5:71:0d:43:80:
49:b2:bf:ce:6a:38:c4:6e:20:c2:7d:2f:7c:84:4b:f3:8a:58:
f9:0d:c9:d6:6c:83:dc:69:2b:9b:fa:dd:d8:06:71:73:5b:9b:
79:25:90:47:35:b9:65:f8:f3:56:e3:9e:e5:4f:bf:c5:54:d0:
d4:99:19:41:15:ba:94:31:19:d2:f5:01:8c:fa:05:d0:5a:a1:
26:42:1b:ba:33:e7:be:55:41:92:2d:3c:55:f5:59:7f:08:77:
1b:01:24:0c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATWZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTA2MDQ0MjUyWhcNMjUwMjA4MDQ0MjUyWjAYMRYw
FAYDVQQDEw02NzdiNWY1MC1iYmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAoUSmWqubjPNyeeO5z+XbxBTQo8SngDXyOIpkUdsQEySs8CdaSv55e3n8
a+0GrA/+Ou5jO8GBalixSFMtvZ9vWtqAMTTebdBG2evv/6UQva0B+/2hjek+3l2G
FxG9JA27Vy/jtSneVqw8xIkGBhzNoMxAVEs7YYKzirYlL+Wi4BFBj1suskdLK7K8
iXDIstdlYxJ1L2YnOs+nv5LAlO83G18J5GF2I071fPnjQ2Sy8wWFg3iYunsZkXyH
kDTmP/7hATgt+/U4zWUaYLhLFN6XF1Raz65gEGMYrJ5+lucBSHS6jKl1LgQfhgY1
pxqRptsmMSQBSzJioUnKq6nPZ88y2QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO0A
argBk45Q82k/+ZMWq9W1p7Z5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMkIyQzEzOENCRTgxMUVGQUI3NTE5QkU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmshdMA0GCSqGSIb3DQEB
CwUAA4IBAQAnFZXYfMSBoTq7bDvCP+pJan1weNlmpLUrzrWohTqHeF06z+GysyY2
8iSHGCbjlky/YNIgxEfANpEh6b09Hr3EaRZCs44ByJ+aTN5ULpr2g6pjpUpu/W3B
vm1SvLTorCkCfeRTysr0kcbv96NncZYcDN26sFynFp3o2+tLptQQmPRwksdoNe8Q
EttlECw4YdlDaPcbcH/jPOQLnUfUpXENQ4BJsr/OajjEbiDCfS98hEvzilj5DcnW
bIPcaSub+t3YBnFzW5t5JZBHNbll+PNW457lT7/FVNDUmRlBFbqUMRnS9QGM+gXQ
WqEmQhu6M+e+VUGSLTxV9Vl/CHcbASQM
-----END CERTIFICATE-----
Generated at Sat Apr 26 15:46:39 2025 by rpki-client