Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2039894D68111EF9DEC1A8C762E951A.roa
File: C2039894D68111EF9DEC1A8C762E951A.roa (raw, json)
Hash identifier: MA2cWj10YVQJkFF/NT4XMQPb4MJbYlavyc6Sla2Xxi4=
Subject key identifier: 38:A5:2B:89:39:6B:E3:E0:BE:1F:3A:2B:D4:E2:C0:23:E1:85:9A:6B
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013E03
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2039894D68111EF9DEC1A8C762E951A.roa
Signing time: Sun 19 Jan 2025 16:23:47 +0000
ROA not before: Sun 19 Jan 2025 16:23:43 +0000
ROA not after: Mon 24 Feb 2025 16:23:43 +0000
asID: 18779
IP address blocks: 154.203.56.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81411 (0x13e03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 19 16:23:43 2025 GMT
Not After : Feb 24 16:23:43 2025 GMT
Subject: CN=678d2712-cc50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:22:55:3f:1a:71:c9:5f:3a:ae:63:a3:97:89:
2c:15:51:c1:4f:ff:dc:7b:36:34:1f:db:85:fb:47:
54:17:62:89:43:94:ef:5a:bc:8b:a3:56:db:18:a2:
9e:5a:77:bf:b7:cc:2e:72:3c:8f:8a:7c:ba:7a:c5:
84:47:c3:19:99:93:ef:b3:14:ba:75:cf:59:ad:11:
96:b8:35:09:6b:90:28:aa:47:5c:5a:bb:83:3c:1a:
c3:d6:31:21:07:9a:81:f8:00:98:ee:45:a3:c0:4e:
0c:10:14:39:1d:b4:da:fa:76:ef:13:0c:0d:24:10:
b2:79:ee:24:5d:85:bc:fd:cf:7a:32:52:da:86:a7:
02:a2:b5:87:6f:f5:62:52:9d:1a:1f:d6:54:dc:7d:
91:26:2c:f1:2e:04:c8:ff:75:e5:b4:59:26:ea:2f:
60:55:85:a2:77:02:1d:22:79:96:c3:aa:18:86:ad:
3f:80:f1:f5:79:f1:ec:27:d7:e1:af:c6:9c:6c:49:
b6:6c:7b:74:19:36:35:77:aa:ba:63:e1:51:cb:e2:
b5:6f:ae:c4:48:51:8b:8e:af:d3:04:ae:2e:5b:90:
4d:ef:c6:f9:75:da:ef:0a:7f:8c:d1:9e:a0:54:2e:
28:4c:8c:d4:4b:ab:fc:51:48:b2:c4:a9:7c:f2:9d:
ed:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:A5:2B:89:39:6B:E3:E0:BE:1F:3A:2B:D4:E2:C0:23:E1:85:9A:6B
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C2039894D68111EF9DEC1A8C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.56.0/22
Signature Algorithm: sha256WithRSAEncryption
11:ef:a6:94:4a:31:8f:c5:f8:9b:38:68:a1:c5:a3:7f:d1:db:
88:ce:44:8e:96:29:b7:9a:86:31:3e:e2:1a:3b:96:9c:a3:9a:
b3:3e:d2:75:91:07:04:73:0d:29:52:90:bb:90:7e:18:a2:94:
96:8b:7d:b9:23:7f:33:6a:ea:98:4e:c7:cb:6c:ce:36:e9:ab:
d7:14:06:64:e6:81:87:b0:77:ce:20:76:68:b3:72:34:31:8c:
27:4f:8a:23:bb:5d:29:b9:a9:c0:73:e5:91:c3:c8:5c:81:4e:
05:b5:fa:76:c0:12:f1:1c:00:ea:01:30:73:b4:6b:4f:18:f6:
6c:4a:d5:f8:33:f1:42:7e:98:e7:59:77:9b:a5:ff:c0:74:49:
8d:62:94:04:8d:2f:9c:e2:4c:a6:fe:7a:ed:95:27:08:3e:00:
40:01:21:4e:f2:ca:2d:5a:4b:e9:1a:fe:26:ef:19:e7:2c:9c:
ff:5c:ac:05:c8:6a:89:d7:7c:54:f2:1f:ae:c0:a9:87:b0:69:
ec:c2:35:44:6f:30:98:4e:c4:55:99:49:e1:60:41:e5:90:31:
f5:59:27:40:2e:6a:f8:b7:ef:db:0f:02:ae:ba:f2:26:72:01:
a6:91:e3:f5:fe:28:7b:37:b3:64:02:d2:ab:e8:3f:92:68:06:
ed:f1:57:5a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT4DMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE5MTYyMzQzWhcNMjUwMjI0MTYyMzQzWjAYMRYw
FAYDVQQDEw02NzhkMjcxMi1jYzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2SJVPxpxyV86rmOjl4ksFVHBT//cezY0H9uF+0dUF2KJQ5TvWryLo1bb
GKKeWne/t8wucjyPiny6esWER8MZmZPvsxS6dc9ZrRGWuDUJa5AoqkdcWruDPBrD
1jEhB5qB+ACY7kWjwE4MEBQ5HbTa+nbvEwwNJBCyee4kXYW8/c96MlLahqcCorWH
b/ViUp0aH9ZU3H2RJizxLgTI/3XltFkm6i9gVYWidwIdInmWw6oYhq0/gPH1efHs
J9fhr8acbEm2bHt0GTY1d6q6Y+FRy+K1b67ESFGLjq/TBK4uW5BN78b5ddrvCn+M
0Z6gVC4oTIzUS6v8UUiyxKl88p3t9wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFDil
K4k5a+Pgvh86K9TiwCPhhZprMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DMjAzOTg5NEQ2ODExMUVGOURFQzFBOEM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCmss4MA0GCSqGSIb3DQEB
CwUAA4IBAQAR76aUSjGPxfibOGihxaN/0duIzkSOlim3moYxPuIaO5aco5qzPtJ1
kQcEcw0pUpC7kH4YopSWi325I38zauqYTsfLbM426avXFAZk5oGHsHfOIHZos3I0
MYwnT4oju10puanAc+WRw8hcgU4Ftfp2wBLxHADqATBztGtPGPZsStX4M/FCfpjn
WXebpf/AdEmNYpQEjS+c4kym/nrtlScIPgBAASFO8sotWkvpGv4m7xnnLJz/XKwF
yGqJ13xU8h+uwKmHsGnswjVEbzCYTsRVmUnhYEHlkDH1WSdALmr4t+/bDwKuuvIm
cgGmkeP1/ih7N7NkAtKr6D+SaAbt8Vda
-----END CERTIFICATE-----
Generated at Fri Apr 25 23:30:15 2025 by rpki-client