Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/89C07A98ED2311EF83DD517E762E951A.roa
File: 89C07A98ED2311EF83DD517E762E951A.roa (raw, json)
Hash identifier: 6DQxXjoXDf3hHnuNdgsTNKnN5Z5AUGN/NoqOCPWQzdw=
Subject key identifier: D0:9A:38:EA:91:3F:EC:4B:2C:43:A8:F1:80:2A:0C:FF:87:1A:16:B4
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0676
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/89C07A98ED2311EF83DD517E762E951A.roa
Signing time: Mon 17 Feb 2025 11:37:17 +0000
ROA not before: Mon 17 Feb 2025 11:37:10 +0000
ROA not after: Tue 17 Feb 2026 11:37:10 +0000
asID: 208485
IP address blocks: 196.251.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1654 (0x676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Feb 17 11:37:10 2025 GMT
Not After : Feb 17 11:37:10 2026 GMT
Subject: CN=67b31f6d-2277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:08:07:d3:c3:8c:db:17:e9:06:66:4d:08:11:
14:76:7e:24:1d:97:44:e1:fb:fa:ab:77:84:27:40:
64:01:7e:8b:71:58:ba:fa:9a:48:c9:80:5e:8a:09:
bb:ea:9f:f9:cf:a4:c6:59:bb:94:42:8b:7d:d8:95:
e9:aa:ad:2e:29:b8:f7:4b:08:bb:c7:50:2b:ab:4f:
dd:78:57:7a:dc:f7:cd:ee:31:37:5b:69:5d:a5:29:
db:13:4d:ee:61:9f:dd:6c:8a:3e:05:4d:e9:cf:d6:
f8:c2:d0:ec:ce:eb:c1:40:d5:0c:30:71:39:f2:a1:
da:1b:19:a3:77:b2:33:1e:88:56:6f:b3:7d:f3:45:
09:7f:60:3d:88:53:1b:a8:2c:3a:6d:75:d8:a4:15:
ea:4f:55:cb:f4:88:68:50:7d:74:ca:e5:3a:ee:70:
df:82:a2:b7:23:2f:0f:c1:53:a8:3b:27:7f:f1:bb:
70:25:cb:2a:c4:24:a5:91:06:3d:cc:70:c1:85:fe:
2d:c2:2a:2c:c8:6a:e1:92:a2:b0:f7:de:ee:98:f6:
eb:68:20:a4:29:a7:c1:f0:b3:02:98:3d:61:89:44:
6a:19:17:a8:b2:10:97:ec:bb:29:d7:38:a4:6a:53:
5f:9c:e2:a3:d3:be:71:c7:c7:ed:16:ab:6e:26:07:
51:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:9A:38:EA:91:3F:EC:4B:2C:43:A8:F1:80:2A:0C:FF:87:1A:16:B4
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/89C07A98ED2311EF83DD517E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.109.0/24
Signature Algorithm: sha256WithRSAEncryption
07:f5:1c:f8:a3:22:43:60:eb:38:09:00:8a:36:62:59:f3:78:
0a:5a:cf:20:75:7d:5b:d7:d5:da:1f:6f:85:d4:57:01:c4:ab:
58:8a:7e:f4:62:e8:a6:be:e6:52:76:59:4a:de:a0:3f:af:3f:
7c:af:28:00:46:49:1b:6e:87:03:90:c2:54:8e:5f:80:5f:8b:
90:ea:24:d6:1d:9e:f8:b4:db:b4:30:46:35:16:8e:ca:fd:92:
93:f5:79:7d:a7:a9:06:f7:9a:a4:85:e8:dd:97:ce:ed:b3:cf:
7f:c4:f4:ae:22:69:67:79:d9:65:b9:23:90:6d:16:2e:51:eb:
38:4c:e0:36:30:8a:39:ed:6d:dc:0b:ff:90:0c:d5:fd:00:0f:
34:c5:b2:a1:a0:79:42:2b:dd:4b:d7:48:62:99:86:49:5a:85:
ef:9a:49:fc:50:d0:96:bb:08:85:f6:54:26:ee:26:a5:e8:ce:
b8:bf:cb:54:88:fb:e0:ec:14:5b:22:ee:05:bd:f0:7a:59:05:
31:cd:59:17:2c:e5:f3:c3:87:69:3c:41:7d:b6:08:aa:cd:41:
91:57:a8:67:91:b7:c9:0f:47:92:eb:f3:c4:eb:68:b6:87:44:
eb:7b:f2:81:f1:01:a9:59:7f:0e:8e:78:c6:e8:ed:1e:0b:4a:
b9:96:a8:50
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICBnYwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
M0JBMTlBRjExMC8GA1UEBRMoNkFFQTI0QjA5OUMzMkIyMkU0RTQ4QkI5RjI2Q0Y1
NzhCRUY2QkZGMzAeFw0yNTAyMTcxMTM3MTBaFw0yNjAyMTcxMTM3MTBaMBgxFjAU
BgNVBAMTDTY3YjMxZjZkLTIyNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCaCAfTw4zbF+kGZk0IERR2fiQdl0Th+/qrd4QnQGQBfotxWLr6mkjJgF6K
Cbvqn/nPpMZZu5RCi33YlemqrS4puPdLCLvHUCurT914V3rc983uMTdbaV2lKdsT
Te5hn91sij4FTenP1vjC0OzO68FA1QwwcTnyodobGaN3sjMeiFZvs33zRQl/YD2I
UxuoLDptddikFepPVcv0iGhQfXTK5TrucN+CorcjLw/BU6g7J3/xu3AlyyrEJKWR
Bj3McMGF/i3CKizIauGSorD33u6Y9utoIKQpp8HwswKYPWGJRGoZF6iyEJfsuynX
OKRqU1+c4qPTvnHHx+0Wq24mB1H1AgMBAAGjggKlMIICoTAdBgNVHQ4EFgQU0Jo4
6pE/7EssQ6jxgCoM/4caFrQwHwYDVR0jBBgwFoAUauoksJnDKyLk5Iu58mz1eL72
v/MwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVBNDBENTc3L2F1b2tz
Sm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL2F1b2tzSm5ES3lMazVJdTU4bXoxZUw3MnZfTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNCQTE5LzBFN0YxREY2OTYyQTExRUM4NjcxRTZFMDVB
NDBENTc3Lzg5QzA3QTk4RUQyMzExRUY4M0RENTE3RTc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADE+20wDQYJKoZIhvcNAQEL
BQADggEBAAf1HPijIkNg6zgJAIo2YlnzeApazyB1fVvX1dofb4XUVwHEq1iKfvRi
6Ka+5lJ2WUreoD+vP3yvKABGSRtuhwOQwlSOX4Bfi5DqJNYdnvi027QwRjUWjsr9
kpP1eX2nqQb3mqSF6N2Xzu2zz3/E9K4iaWd52WW5I5BtFi5R6zhM4DYwijntbdwL
/5AM1f0ADzTFsqGgeUIr3UvXSGKZhklahe+aSfxQ0Ja7CIX2VCbuJqXozri/y1SI
++DsFFsi7gW98HpZBTHNWRcs5fPDh2k8QX22CKrNQZFXqGeRt8kPR5Lr88TraLaH
ROt78oHxAalZfw6OeMbo7R4LSrmWqFA=
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:30:27 2025 by rpki-client