Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3189BA2D9CB11EF8E46944A762E951A.roa
File: B3189BA2D9CB11EF8E46944A762E951A.roa (raw, json)
Hash identifier: 5oWwfhUsZUBCMO3QFEK8t8HM/vJd44kn6Tnu0yaBPJU=
Subject key identifier: 96:91:35:7A:C4:EB:2D:8F:B5:33:F7:3B:6F:F8:B2:02:F4:49:7D:BA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0142E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3189BA2D9CB11EF8E46944A762E951A.roa
Signing time: Thu 23 Jan 2025 20:50:38 +0000
ROA not before: Fri 24 Jan 2025 20:50:34 +0000
ROA not after: Fri 28 Feb 2025 20:50:34 +0000
asID: 62240
IP address blocks: 154.196.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82664 (0x142e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 24 20:50:34 2025 GMT
Not After : Feb 28 20:50:34 2025 GMT
Subject: CN=6792ab9e-5aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:cf:8e:70:5c:35:73:10:4e:b4:e7:ba:7d:d4:
85:2d:85:cb:d1:d0:68:67:2f:9e:e7:1a:c9:ed:f8:
3a:52:39:b0:bb:ca:34:03:ad:f6:39:b1:e8:39:02:
f9:19:89:36:8a:27:8b:8d:c2:81:4c:de:1f:01:f1:
34:d8:d2:12:f0:ea:87:16:46:1e:fc:09:14:f0:c5:
42:4f:34:59:d6:94:8a:82:aa:1f:9b:bd:c0:d2:11:
ab:e0:af:26:0b:1f:e8:d8:ec:31:01:7a:d4:27:b2:
fd:90:f8:1b:ba:69:63:d0:22:63:0f:13:8f:d6:fb:
24:e0:cf:76:f6:5c:a9:db:ea:eb:4f:be:95:46:d7:
c9:e2:a9:55:a9:d7:33:4e:54:d4:bc:59:bf:1d:ac:
0a:39:02:c3:e7:28:69:15:a9:9a:29:61:52:43:ae:
8a:01:e9:8b:25:43:b6:4f:7f:fc:e7:a6:f0:4d:49:
e7:08:60:b3:5f:8e:a7:ab:08:9c:57:d7:f4:a9:5e:
7b:1e:2a:c0:9a:e8:8c:e2:62:31:36:01:29:34:22:
13:a8:1d:0f:0c:a0:bb:a5:fd:8e:b6:03:15:af:07:
24:ad:71:27:6c:9a:a4:70:82:95:e6:fc:fd:71:e2:
9f:93:18:33:8b:62:7b:4d:a7:02:42:7e:75:9b:07:
ef:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:91:35:7A:C4:EB:2D:8F:B5:33:F7:3B:6F:F8:B2:02:F4:49:7D:BA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B3189BA2D9CB11EF8E46944A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.64.0/24
Signature Algorithm: sha256WithRSAEncryption
14:13:72:d4:f7:cc:ca:7f:e0:53:da:d8:98:b0:0c:0d:fb:cc:
58:37:50:8f:68:4d:f7:7d:d3:1d:53:e5:6c:d7:ef:b7:a8:64:
1f:bf:ff:cb:ad:78:dd:2e:fe:f6:3b:84:c1:65:5d:de:34:f8:
94:79:46:a6:0f:66:6e:a5:18:4b:0f:db:b4:6b:77:4f:67:d8:
76:5c:23:9c:6b:f1:8b:bc:29:fc:5e:f9:77:7a:38:7b:3e:78:
fb:0f:7f:74:66:d0:7b:34:5e:bc:b8:e2:a7:64:7a:9e:7c:77:
e2:c6:c3:06:96:c6:ea:8f:30:e4:64:fe:15:eb:0e:87:bb:87:
e2:09:76:00:ef:3b:6b:1a:e6:ac:01:b4:46:ca:d6:b8:9c:b9:
2e:0f:b6:61:2d:0f:ae:3c:52:2a:2e:7a:7a:45:b0:92:17:f5:
60:62:bd:5a:3b:28:b8:2f:72:c9:c4:24:ae:c2:df:00:38:7a:
b3:61:e1:76:a6:75:6a:7e:e5:51:95:5b:ad:c0:b8:13:26:34:
40:77:79:21:c1:38:78:d2:a1:23:e9:66:35:2e:dd:fb:0c:66:
7e:d0:8f:90:4f:b3:51:71:b1:3d:74:53:47:5b:6b:42:47:56:
b1:e5:66:10:f0:f4:3a:5c:dc:6c:32:6b:a0:59:97:4c:7b:0e:
b6:76:48:3c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAULoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI0MjA1MDM0WhcNMjUwMjI4MjA1MDM0WjAYMRYw
FAYDVQQDEw02NzkyYWI5ZS01YWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7s+OcFw1cxBOtOe6fdSFLYXL0dBoZy+e5xrJ7fg6Ujmwu8o0A632ObHo
OQL5GYk2iieLjcKBTN4fAfE02NIS8OqHFkYe/AkU8MVCTzRZ1pSKgqofm73A0hGr
4K8mCx/o2OwxAXrUJ7L9kPgbumlj0CJjDxOP1vsk4M929lyp2+rrT76VRtfJ4qlV
qdczTlTUvFm/HawKOQLD5yhpFamaKWFSQ66KAemLJUO2T3/856bwTUnnCGCzX46n
qwicV9f0qV57HirAmuiM4mIxNgEpNCITqB0PDKC7pf2OtgMVrwckrXEnbJqkcIKV
5vz9ceKfkxgzi2J7TacCQn51mwfvoQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJaR
NXrE6y2PtTP3O2/4sgL0SX26MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CMzE4OUJBMkQ5Q0IxMUVGOEU0Njk0NEE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsRAMA0GCSqGSIb3DQEB
CwUAA4IBAQAUE3LU98zKf+BT2tiYsAwN+8xYN1CPaE33fdMdU+Vs1++3qGQfv//L
rXjdLv72O4TBZV3eNPiUeUamD2ZupRhLD9u0a3dPZ9h2XCOca/GLvCn8Xvl3ejh7
Pnj7D390ZtB7NF68uOKnZHqefHfixsMGlsbqjzDkZP4V6w6Hu4fiCXYA7ztrGuas
AbRGyta4nLkuD7ZhLQ+uPFIqLnp6RbCSF/VgYr1aOyi4L3LJxCSuwt8AOHqzYeF2
pnVqfuVRlVutwLgTJjRAd3khwTh40qEj6WY1Lt37DGZ+0I+QT7NRcbE9dFNHW2tC
R1ax5WYQ8PQ6XNxsMmugWZdMew62dkg8
-----END CERTIFICATE-----
Generated at Fri Apr 25 12:04:01 2025 by rpki-client