Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5CA2060D98F11EFA2C97843762E951A.roa
File: F5CA2060D98F11EFA2C97843762E951A.roa (raw, json)
Hash identifier: 18t9rI7co5o9mTyTS+mzbeWCptyYmQlas0wge+jvnUo=
Subject key identifier: D8:82:B8:52:7B:9F:ED:79:5B:C5:58:B2:F6:9B:C5:DC:57:B8:7B:0F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014284
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5CA2060D98F11EFA2C97843762E951A.roa
Signing time: Thu 23 Jan 2025 13:43:00 +0000
ROA not before: Thu 23 Jan 2025 13:42:56 +0000
ROA not after: Fri 28 Feb 2025 13:42:56 +0000
asID: 62240
IP address blocks: 154.196.24.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82564 (0x14284)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 23 13:42:56 2025 GMT
Not After : Feb 28 13:42:56 2025 GMT
Subject: CN=67924764-b10d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:4a:41:f1:70:8c:5a:44:58:fa:f4:bc:59:6b:
47:7c:6b:4a:38:76:fc:2e:c9:76:d4:3a:59:27:48:
d2:cb:e2:fb:1c:7a:7c:b5:0f:8d:5c:19:0a:1a:4f:
6c:ec:ad:82:98:3e:d6:e4:43:ff:a8:14:32:2b:bc:
41:31:83:8b:02:53:35:12:94:fa:7a:3e:a9:16:d9:
ad:ec:a4:af:a4:b0:c5:ad:8b:2b:11:15:8e:47:cf:
94:f8:49:81:83:f3:3c:df:1a:bf:ca:d1:53:e2:bd:
31:4d:c1:66:9a:b7:51:b9:2f:03:8b:cd:40:af:ac:
0f:ff:2d:fd:5f:a2:22:26:d6:69:0c:db:e0:c4:91:
d0:70:12:92:5e:86:6d:cd:f9:00:d2:73:50:75:ff:
28:6f:91:e8:fd:2f:84:28:67:95:91:2e:20:15:6b:
94:4d:2c:ac:df:82:62:e5:9e:cc:17:19:34:95:77:
6b:26:ec:09:88:21:b2:3c:ee:47:01:98:bd:a2:36:
98:20:47:10:97:09:23:fb:66:47:f6:a3:d7:e5:68:
e3:d6:04:ee:2d:7c:5f:a8:c2:79:94:24:8d:23:2f:
6a:62:f4:50:c0:31:54:51:c8:93:69:ce:ef:a2:11:
0a:99:b8:f6:eb:f5:f7:60:64:84:5d:92:15:9d:ed:
87:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:82:B8:52:7B:9F:ED:79:5B:C5:58:B2:F6:9B:C5:DC:57:B8:7B:0F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F5CA2060D98F11EFA2C97843762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.24.0/24
Signature Algorithm: sha256WithRSAEncryption
d7:91:c8:e2:9a:22:72:50:93:5c:c6:c5:53:19:41:bc:33:b7:
e4:26:75:35:ad:f9:cb:46:3f:4e:eb:0c:d3:c6:20:49:47:a6:
4d:84:4e:cb:df:f6:ab:6a:1a:b2:e6:0b:94:ee:72:a4:33:7f:
52:9d:67:26:ba:6e:f6:c7:c0:39:30:a4:3b:53:eb:60:46:7e:
f7:94:d8:92:ad:14:21:2f:98:13:e2:07:2e:bd:5f:eb:f9:c8:
38:cf:c0:6f:e7:90:89:7c:c9:81:71:97:f6:dd:30:2c:50:d1:
a1:dd:31:05:66:98:ae:46:c6:6f:26:a9:cb:73:c3:3f:5b:0f:
be:fb:d8:e7:d8:2e:78:ab:86:22:44:6d:51:bd:f3:57:7c:3f:
73:a7:00:80:01:cc:01:39:57:c3:b9:c3:99:b2:07:cf:cf:ea:
41:ef:90:a3:45:2c:82:da:59:77:18:82:56:62:0f:57:fc:ff:
c7:56:46:9e:66:82:ff:44:bd:77:2f:a7:9c:45:71:63:60:8c:
c3:e6:54:03:6e:1c:4a:4c:92:47:66:b0:c4:db:c6:55:d2:1a:
e4:e0:18:a7:ca:41:1c:bc:b8:be:d9:fc:f7:17:8a:a1:cc:a7:
94:3d:03:28:56:12:2a:7d:eb:aa:b2:79:c6:a3:44:30:c7:66:
cc:59:dd:11
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUKEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTIzMTM0MjU2WhcNMjUwMjI4MTM0MjU2WjAYMRYw
FAYDVQQDEw02NzkyNDc2NC1iMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnEpB8XCMWkRY+vS8WWtHfGtKOHb8Lsl21DpZJ0jSy+L7HHp8tQ+NXBkK
Gk9s7K2CmD7W5EP/qBQyK7xBMYOLAlM1EpT6ej6pFtmt7KSvpLDFrYsrERWOR8+U
+EmBg/M83xq/ytFT4r0xTcFmmrdRuS8Di81Ar6wP/y39X6IiJtZpDNvgxJHQcBKS
XoZtzfkA0nNQdf8ob5Ho/S+EKGeVkS4gFWuUTSys34Ji5Z7MFxk0lXdrJuwJiCGy
PO5HAZi9ojaYIEcQlwkj+2ZH9qPX5Wjj1gTuLXxfqMJ5lCSNIy9qYvRQwDFUUciT
ac7vohEKmbj26/X3YGSEXZIVne2HUQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNiC
uFJ7n+15W8VYsvabxdxXuHsPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GNUNBMjA2MEQ5OEYxMUVGQTJDOTc4NDM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsQYMA0GCSqGSIb3DQEB
CwUAA4IBAQDXkcjimiJyUJNcxsVTGUG8M7fkJnU1rfnLRj9O6wzTxiBJR6ZNhE7L
3/arahqy5guU7nKkM39SnWcmum72x8A5MKQ7U+tgRn73lNiSrRQhL5gT4gcuvV/r
+cg4z8Bv55CJfMmBcZf23TAsUNGh3TEFZpiuRsZvJqnLc8M/Ww+++9jn2C54q4Yi
RG1RvfNXfD9zpwCAAcwBOVfDucOZsgfPz+pB75CjRSyC2ll3GIJWYg9X/P/HVkae
ZoL/RL13L6ecRXFjYIzD5lQDbhxKTJJHZrDE28ZV0hrk4BinykEcvLi+2fz3F4qh
zKeUPQMoVhIqfeuqsnnGo0Qwx2bMWd0R
-----END CERTIFICATE-----
Generated at Fri Apr 25 14:23:27 2025 by rpki-client