Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF728056D3FC11EF9F934790762E951A.roa
File: EF728056D3FC11EF9F934790762E951A.roa (raw, json)
Hash identifier: psb5B7w97U5/yDTGvkgT+oi2T3Sv2T4kgkp1G5pIOvk=
Subject key identifier: 78:7D:5B:6E:29:DF:9D:E0:2C:D2:3D:E7:56:E2:67:DC:CB:19:A1:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013BF4
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF728056D3FC11EF9F934790762E951A.roa
Signing time: Thu 16 Jan 2025 11:27:58 +0000
ROA not before: Thu 16 Jan 2025 11:27:52 +0000
ROA not after: Sun 16 Mar 2025 11:27:52 +0000
asID: 17561
IP address blocks: 154.206.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80884 (0x13bf4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 16 11:27:52 2025 GMT
Not After : Mar 16 11:27:52 2025 GMT
Subject: CN=6788ed3e-875a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:4a:7c:80:e0:c1:18:db:82:fe:99:cd:0f:84:
41:c8:3b:c8:67:de:dc:ff:19:ba:84:da:79:43:1b:
83:c2:1d:ea:b6:78:5c:91:ec:50:c5:eb:bd:97:e4:
c4:32:ce:26:cb:47:43:89:58:45:9f:de:26:e7:86:
e0:c3:68:b0:80:47:0a:21:28:a9:c7:03:ff:0e:8c:
25:41:5d:f5:2e:25:49:9a:1c:26:ed:ee:46:bc:0a:
0e:db:d2:e5:54:fe:0b:28:29:86:a1:24:d0:28:5b:
8f:06:d7:d3:a5:91:28:6f:04:a6:a2:25:95:e2:58:
de:a5:28:44:6d:d9:85:84:52:2d:89:7e:9f:d5:b9:
40:09:6e:0d:d7:74:ca:d6:b8:8b:6f:7b:54:dc:cd:
d9:48:4f:4d:66:68:30:1e:58:b1:9e:f7:8c:8e:2b:
dd:d8:0b:d0:19:d8:7a:f8:55:8e:c3:11:07:a5:35:
64:b1:5c:6f:7f:5f:70:b8:39:d4:7d:ea:cd:e9:d9:
1a:e7:61:43:6c:3c:9c:c5:52:ad:24:a6:cf:1f:bf:
ec:b2:5f:4f:88:60:a4:ec:ac:85:a4:41:6d:90:23:
bf:1a:63:97:84:63:22:aa:9d:c1:e4:0d:83:e4:49:
08:b6:82:82:dd:84:59:41:78:04:5e:93:32:49:fd:
20:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:7D:5B:6E:29:DF:9D:E0:2C:D2:3D:E7:56:E2:67:DC:CB:19:A1:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EF728056D3FC11EF9F934790762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.228.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:bb:c3:22:2f:28:0c:92:6e:54:f8:d9:fd:a5:be:c9:e0:52:
5e:b4:45:6b:f1:a0:74:c9:56:1f:bc:4e:c4:2b:c6:b9:70:c6:
a0:7d:24:ac:83:81:85:e4:8e:d3:62:6a:7e:d5:35:b6:bf:b8:
7c:9b:b7:76:a9:1d:00:76:9a:0b:d6:db:e1:6f:b9:dd:2f:68:
0e:fe:a0:b3:b7:4c:ff:c5:3c:33:64:4c:eb:22:df:2e:9e:99:
9a:96:b8:3f:a6:db:8c:eb:0a:2b:99:a9:b3:aa:6a:13:d8:af:
40:31:1c:86:21:92:69:67:e2:ad:dc:0a:d9:06:94:97:08:50:
b3:6e:db:ac:92:99:c8:72:b9:58:6a:79:ee:c7:38:e4:5f:47:
5a:41:80:4f:24:f4:77:49:01:56:46:4e:b5:ad:e1:f2:87:99:
e8:2c:a3:cd:02:5f:08:3e:0f:ba:bf:7f:c2:f5:5a:c3:87:01:
a7:45:7d:d0:53:5e:15:12:63:dd:26:a6:f4:b3:d8:1f:0d:88:
e3:ff:39:f7:cd:67:d5:9d:35:92:10:62:40:56:a1:80:bf:f9:
a4:bc:9a:bc:28:a5:70:34:f7:6d:29:ef:21:d5:5e:33:1b:0a:
54:1a:32:2c:df:7c:1d:ae:e8:1d:ef:62:bb:d3:6a:f8:94:95:
cf:50:8a:ed
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATv0MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTE2MTEyNzUyWhcNMjUwMzE2MTEyNzUyWjAYMRYw
FAYDVQQDEw02Nzg4ZWQzZS04NzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu0p8gODBGNuC/pnND4RByDvIZ97c/xm6hNp5QxuDwh3qtnhckexQxeu9
l+TEMs4my0dDiVhFn94m54bgw2iwgEcKISipxwP/DowlQV31LiVJmhwm7e5GvAoO
29LlVP4LKCmGoSTQKFuPBtfTpZEobwSmoiWV4ljepShEbdmFhFItiX6f1blACW4N
13TK1riLb3tU3M3ZSE9NZmgwHlixnveMjivd2AvQGdh6+FWOwxEHpTVksVxvf19w
uDnUferN6dka52FDbDycxVKtJKbPH7/ssl9PiGCk7KyFpEFtkCO/GmOXhGMiqp3B
5A2D5EkItoKC3YRZQXgEXpMySf0gFQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHh9
W24p353gLNI951biZ9zLGaEmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRjcyODA1NkQzRkMxMUVGOUY5MzQ3OTA3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAms7kMA0GCSqGSIb3DQEB
CwUAA4IBAQAvu8MiLygMkm5U+Nn9pb7J4FJetEVr8aB0yVYfvE7EK8a5cMagfSSs
g4GF5I7TYmp+1TW2v7h8m7d2qR0AdpoL1tvhb7ndL2gO/qCzt0z/xTwzZEzrIt8u
npmalrg/ptuM6wormamzqmoT2K9AMRyGIZJpZ+Kt3ArZBpSXCFCzbtuskpnIcrlY
annuxzjkX0daQYBPJPR3SQFWRk61reHyh5noLKPNAl8IPg+6v3/C9VrDhwGnRX3Q
U14VEmPdJqb0s9gfDYjj/zn3zWfVnTWSEGJAVqGAv/mkvJq8KKVwNPdtKe8h1V4z
GwpUGjIs33wdrugd72K702r4lJXPUIrt
-----END CERTIFICATE-----
Generated at Mon Apr 28 22:39:47 2025 by rpki-client