Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6D38F84D50711EFBD16CE5D762E951A.roa
File: D6D38F84D50711EFBD16CE5D762E951A.roa (raw, json)
Hash identifier: D/fe/F8WLBBKsIhXpvuT8k759HI90xKupow0mfmyCEY=
Subject key identifier: 49:F1:23:37:13:2B:8F:4B:E4:69:F7:C6:6C:12:12:A6:4D:F4:C6:53
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013D27
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6D38F84D50711EFBD16CE5D762E951A.roa
Signing time: Fri 17 Jan 2025 19:18:32 +0000
ROA not before: Fri 17 Jan 2025 19:18:28 +0000
ROA not after: Sat 22 Feb 2025 19:18:28 +0000
asID: 54801
IP address blocks: 154.221.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81191 (0x13d27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 17 19:18:28 2025 GMT
Not After : Feb 22 19:18:28 2025 GMT
Subject: CN=678aad08-f6d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:b2:40:f3:38:c1:a6:3a:76:7b:98:1d:36:e9:
12:5f:d5:e2:14:d1:44:b7:54:a6:74:84:3b:a0:71:
46:33:4d:06:6f:4f:80:42:5b:10:97:fe:66:6f:67:
22:02:36:ce:20:2e:52:92:0e:60:98:29:9e:d2:6d:
22:43:51:a8:df:2b:03:65:34:32:27:64:be:e5:a7:
78:2f:47:15:58:b8:78:5f:5a:ba:ec:08:d7:03:48:
6d:de:dd:c9:9c:a6:17:7d:a1:02:c8:1a:7c:45:87:
7f:4a:08:f0:72:2b:90:66:9c:ee:8d:6c:76:2b:9e:
7e:3c:57:9c:41:28:ed:e6:d7:df:3a:0e:50:59:46:
5c:96:cd:38:3b:b2:75:31:3d:02:b4:e6:7e:67:55:
35:a9:6f:1a:db:83:39:dc:c3:b0:20:fd:12:1d:73:
dc:ec:0c:01:38:48:46:fe:0c:0d:ab:e5:d0:ad:57:
f3:06:31:1a:10:ad:b6:8b:91:4d:e7:2a:0a:f6:dc:
d0:04:16:4c:65:fb:be:f0:b1:df:86:7f:98:79:4a:
b6:05:41:b1:b1:c9:8f:5b:9d:f4:d6:3c:bd:41:0a:
b3:05:f5:3c:6e:52:47:96:be:61:03:aa:f7:db:68:
b4:5a:14:7e:34:ed:f8:8d:ce:51:f0:a3:ac:99:10:
c9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:F1:23:37:13:2B:8F:4B:E4:69:F7:C6:6C:12:12:A6:4D:F4:C6:53
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D6D38F84D50711EFBD16CE5D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.0.0/24
Signature Algorithm: sha256WithRSAEncryption
30:63:9e:0a:3b:07:cf:2f:92:2d:89:5b:cb:90:86:05:6e:9b:
55:2a:4c:70:dc:00:89:5f:c6:6b:51:7a:16:eb:a1:bf:2e:ab:
4c:20:2a:95:7a:98:91:f8:d2:df:ef:a8:d5:2f:8f:c9:40:06:
bb:35:ee:a4:0e:36:56:69:4d:b7:94:a9:d7:67:e4:e9:40:e7:
e8:49:cb:31:b9:c2:4d:f2:69:1f:9a:90:8c:cf:7b:03:7c:d3:
17:68:7f:46:a4:9b:20:37:1a:c7:c0:ea:b1:5f:0f:2e:9d:21:
70:47:86:6b:f5:81:44:6c:2a:4c:db:ff:0e:a9:7d:ea:2e:73:
bb:9a:69:a5:5a:2a:6c:be:c0:ca:d4:da:06:f3:15:84:04:09:
30:f8:c7:32:d9:25:a4:96:7c:94:d6:c5:1c:6b:26:74:96:61:
82:19:f1:44:17:11:89:42:ce:ee:60:43:3b:58:b2:c6:f6:88:
49:6d:ae:79:e0:23:53:8b:95:52:2a:16:f3:b7:ee:4e:e9:d4:
a9:83:6a:42:9f:66:d3:d2:c5:13:43:c8:4b:4f:20:64:ea:9d:
a7:8a:b3:f1:7f:73:20:46:57:9f:5d:c7:3d:3f:84:40:d8:f5:
21:38:ff:05:c9:98:ac:0c:9a:7a:2d:ca:ed:2e:0d:11:c2:01:
28:47:67:eb
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAT0nMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE3MTkxODI4WhcNMjUwMjIyMTkxODI4WjAYMRYw
FAYDVQQDEw02NzhhYWQwOC1mNmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsrJA8zjBpjp2e5gdNukSX9XiFNFEt1SmdIQ7oHFGM00Gb0+AQlsQl/5m
b2ciAjbOIC5Skg5gmCme0m0iQ1Go3ysDZTQyJ2S+5ad4L0cVWLh4X1q67AjXA0ht
3t3JnKYXfaECyBp8RYd/SgjwciuQZpzujWx2K55+PFecQSjt5tffOg5QWUZcls04
O7J1MT0CtOZ+Z1U1qW8a24M53MOwIP0SHXPc7AwBOEhG/gwNq+XQrVfzBjEaEK22
i5FN5yoK9tzQBBZMZfu+8LHfhn+YeUq2BUGxscmPW5301jy9QQqzBfU8blJHlr5h
A6r322i0WhR+NO34jc5R8KOsmRDJIwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEnx
IzcTK49L5Gn3xmwSEqZN9MZTMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENkQzOEY4NEQ1MDcxMUVGQkQxNkNFNUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0AMA0GCSqGSIb3DQEB
CwUAA4IBAQAwY54KOwfPL5ItiVvLkIYFbptVKkxw3ACJX8ZrUXoW66G/LqtMICqV
epiR+NLf76jVL4/JQAa7Ne6kDjZWaU23lKnXZ+TpQOfoScsxucJN8mkfmpCMz3sD
fNMXaH9GpJsgNxrHwOqxXw8unSFwR4Zr9YFEbCpM2/8OqX3qLnO7mmmlWipsvsDK
1NoG8xWEBAkw+Mcy2SWklnyU1sUcayZ0lmGCGfFEFxGJQs7uYEM7WLLG9ohJba55
4CNTi5VSKhbzt+5O6dSpg2pCn2bT0sUTQ8hLTyBk6p2nirPxf3MgRlefXcc9P4RA
2PUhOP8FyZisDJp6LcrtLg0RwgEoR2fr
-----END CERTIFICATE-----
Generated at Sat Apr 26 01:13:01 2025 by rpki-client