Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7ABAFF2D3FB11EFB9E1B789762E951A.roa
File: D7ABAFF2D3FB11EFB9E1B789762E951A.roa (raw, json)
Hash identifier: ksqxZBev+8z76UlSq+8/NsUKHxzK/E+3qywawkNPFbU=
Subject key identifier: 48:83:F2:47:E6:34:91:9B:41:F9:41:54:E1:DE:5E:4E:1C:59:B4:58
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013BEC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7ABAFF2D3FB11EFB9E1B789762E951A.roa
Signing time: Thu 16 Jan 2025 11:20:08 +0000
ROA not before: Thu 16 Jan 2025 11:20:04 +0000
ROA not after: Sun 16 Mar 2025 11:20:04 +0000
asID: 17561
IP address blocks: 154.206.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80876 (0x13bec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 16 11:20:04 2025 GMT
Not After : Mar 16 11:20:04 2025 GMT
Subject: CN=6788eb68-3c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7f:f0:26:2c:cc:02:55:ff:8c:88:db:e1:42:
f8:79:df:cc:68:aa:41:e1:2e:10:dc:b4:8c:13:8b:
cf:ee:cb:d5:1c:d7:83:55:7d:41:cd:60:fa:6a:88:
0e:96:be:e9:86:4a:22:f7:24:af:83:7c:0d:0f:7c:
66:90:4e:46:df:45:cb:c2:66:6e:6b:a3:08:73:be:
dc:16:54:4b:db:ff:a8:18:66:ba:17:93:9b:15:61:
17:15:3f:b9:a9:db:41:7d:45:c1:79:3b:6a:9f:1f:
64:7b:75:e0:ab:79:72:b2:d9:e4:92:07:c4:a3:31:
18:c5:f8:c7:bc:07:b0:a3:13:ab:f3:69:25:44:43:
1b:b6:09:be:dd:69:e5:84:6c:70:25:35:68:9c:d3:
76:cc:4e:e5:e9:64:b4:fd:70:65:fd:00:d6:7e:ca:
fd:88:5e:6a:f7:8a:e4:75:6f:e9:7b:9f:58:a7:e8:
3d:4a:48:2e:f5:bc:e0:9b:e4:bd:3c:89:a0:bf:a4:
3b:bf:c1:6f:4e:fd:73:15:f8:c1:aa:be:5e:82:e2:
c2:88:e3:0f:b1:a4:6e:4e:a9:e4:fa:c3:d8:46:99:
dd:0a:6b:17:2b:24:eb:46:6a:74:03:09:c1:91:d2:
82:d4:aa:20:27:d6:ef:fc:05:68:7f:31:c2:27:95:
b2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:83:F2:47:E6:34:91:9B:41:F9:41:54:E1:DE:5E:4E:1C:59:B4:58
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D7ABAFF2D3FB11EFB9E1B789762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.224.0/24
Signature Algorithm: sha256WithRSAEncryption
41:e7:6a:e3:14:69:c3:3c:43:38:73:75:48:21:66:d7:4d:52:
ca:41:37:2e:63:a6:bd:23:b9:3f:1d:dc:29:62:f5:e6:da:fc:
76:cf:dd:69:aa:79:95:5f:c0:a9:fb:33:49:1a:f5:7d:61:8b:
99:65:52:64:c5:14:da:95:e9:18:fe:42:1e:64:9a:4a:ee:ce:
f9:48:26:4a:5b:eb:85:17:43:92:85:02:f3:8d:a2:b3:f3:82:
be:f6:a6:06:31:30:df:aa:a0:72:ec:fe:55:a1:b4:60:66:53:
7c:16:6c:7d:cf:18:44:1c:70:fa:fd:3f:18:a0:16:d2:3f:4e:
aa:f0:b3:11:0d:f7:25:ce:55:af:1b:f6:da:ae:b2:d7:9d:22:
50:0f:cf:0a:89:4a:80:c2:fd:c6:52:11:e7:fc:44:2c:9b:46:
d7:bb:43:8c:d5:77:2c:89:04:f3:b2:f7:c3:d8:25:da:ac:ac:
5e:87:e5:af:d0:c6:1f:5a:ee:57:36:4b:29:96:ba:80:dd:3c:
13:43:02:a5:ed:e2:21:0e:48:f2:ee:af:35:63:1b:8c:b0:a2:
89:9c:22:e2:8b:62:d1:35:71:a8:30:6e:de:a6:98:9f:92:4e:
05:d1:d1:4f:92:57:ed:de:28:f5:f8:3e:33:80:0f:4b:89:c5:
48:21:68:ab
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATvsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE2MTEyMDA0WhcNMjUwMzE2MTEyMDA0WjAYMRYw
FAYDVQQDEw02Nzg4ZWI2OC0zYzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuX/wJizMAlX/jIjb4UL4ed/MaKpB4S4Q3LSME4vP7svVHNeDVX1BzWD6
aogOlr7phkoi9ySvg3wND3xmkE5G30XLwmZua6MIc77cFlRL2/+oGGa6F5ObFWEX
FT+5qdtBfUXBeTtqnx9ke3Xgq3lystnkkgfEozEYxfjHvAewoxOr82klREMbtgm+
3WnlhGxwJTVonNN2zE7l6WS0/XBl/QDWfsr9iF5q94rkdW/pe59Yp+g9Skgu9bzg
m+S9PImgv6Q7v8FvTv1zFfjBqr5eguLCiOMPsaRuTqnk+sPYRpndCmsXKyTrRmp0
AwnBkdKC1KogJ9bv/AVofzHCJ5WyIwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEiD
8kfmNJGbQflBVOHeXk4cWbRYMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EN0FCQUZGMkQzRkIxMUVGQjlFMUI3ODk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7gMA0GCSqGSIb3DQEB
CwUAA4IBAQBB52rjFGnDPEM4c3VIIWbXTVLKQTcuY6a9I7k/HdwpYvXm2vx2z91p
qnmVX8Cp+zNJGvV9YYuZZVJkxRTalekY/kIeZJpK7s75SCZKW+uFF0OShQLzjaKz
84K+9qYGMTDfqqBy7P5VobRgZlN8Fmx9zxhEHHD6/T8YoBbSP06q8LMRDfclzlWv
G/barrLXnSJQD88KiUqAwv3GUhHn/EQsm0bXu0OM1XcsiQTzsvfD2CXarKxeh+Wv
0MYfWu5XNksplrqA3TwTQwKl7eIhDkjy7q81YxuMsKKJnCLii2LRNXGoMG7eppif
kk4F0dFPklft3ij1+D4zgA9LicVIIWir
-----END CERTIFICATE-----
Generated at Tue Apr 29 01:01:17 2025 by rpki-client