Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/78DB4C7868ED11EE87B4BD3D4AD9E6FC.roa
File: 78DB4C7868ED11EE87B4BD3D4AD9E6FC.roa (raw, json)
Hash identifier: i4yl4nr0komMVYP6Q/Njgfuvh+9ALP9k0KythXSuNSs=
Subject key identifier: B4:6C:21:54:92:F0:F2:DF:C0:CD:98:01:E5:E2:06:9D:A4:A4:37:AB
Certificate issuer: /CN=F363EA80AF/serialNumber=C67C6231120941235581D5942565ABF7419DCECC
Certificate serial: C1
Authority key identifier: C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/78DB4C7868ED11EE87B4BD3D4AD9E6FC.roa
Signing time: Thu 12 Oct 2023 10:52:44 +0000
ROA not before: Thu 12 Oct 2023 10:52:41 +0000
ROA not after: Sat 12 Oct 2030 10:52:41 +0000
asID: 327762
IP address blocks: 154.119.96.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 193 (0xc1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363EA80AF
Validity
Not Before: Oct 12 10:52:41 2023 GMT
Not After : Oct 12 10:52:41 2030 GMT
Subject: CN=6527cffc-3881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ce:b1:eb:7c:70:8d:5e:1b:c8:8d:d2:36:f7:
89:10:09:98:31:3d:5f:85:29:e6:f5:a7:24:d4:01:
40:4f:92:c2:41:5c:ca:99:38:87:8f:a2:29:45:d7:
9c:9d:35:fc:78:27:22:b3:91:b8:99:88:95:eb:61:
02:e0:52:2f:f0:0b:ef:1d:a7:a8:67:ac:8c:b7:a5:
1b:58:3d:36:de:06:06:36:ea:fc:0b:78:fa:4e:db:
a0:0b:73:e4:7a:1c:20:9c:8a:20:23:2f:83:62:ca:
a1:a2:e5:69:dc:12:cb:ff:6c:34:a5:7c:f5:54:a3:
22:a1:e7:fc:6b:7a:7f:47:a8:ea:fe:c4:27:ca:39:
b3:40:95:f1:14:78:90:f7:75:f7:8f:de:15:5f:8e:
ee:6a:33:27:85:e0:6b:41:ae:b2:57:75:c1:50:f4:
59:3d:2c:52:7d:d6:98:38:27:45:fc:bc:e4:c9:6d:
62:4c:32:d6:79:f6:2c:8f:2a:f4:26:7f:30:8b:38:
e5:1d:80:5a:cc:2a:d4:d5:bd:24:1b:e7:8d:e0:04:
2b:e4:a0:b5:2d:47:fc:6a:09:05:65:1d:fb:1b:92:
03:d5:1a:dd:54:ae:17:8e:bb:e3:d9:31:15:0c:29:
cd:75:c5:94:b1:a2:7e:21:0e:1d:c8:23:cc:c4:b7:
92:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6C:21:54:92:F0:F2:DF:C0:CD:98:01:E5:E2:06:9D:A4:A4:37:AB
X509v3 Authority Key Identifier:
keyid:C6:7C:62:31:12:09:41:23:55:81:D5:94:25:65:AB:F7:41:9D:CE:CC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/xnxiMRIJQSNVgdWUJWWr90Gdzsw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/xnxiMRIJQSNVgdWUJWWr90Gdzsw.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363EA80/23D54B28DDDA11ED86532E0D306D8C1D/78DB4C7868ED11EE87B4BD3D4AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.119.96.0/19
Signature Algorithm: sha256WithRSAEncryption
7c:dc:eb:3c:dc:6c:53:7e:24:ef:75:b7:1f:65:cb:39:0c:82:
c5:1b:69:43:fa:e2:98:68:44:18:fc:03:44:9d:f8:6b:6e:4a:
16:9a:f4:09:b1:9e:f2:02:c7:95:97:02:a7:b3:d3:8f:7c:b4:
b2:bc:f7:ce:0e:94:8f:30:0c:dc:93:8c:4b:9a:be:0d:df:76:
c9:f3:61:d4:1f:66:1d:02:ee:fa:32:f1:9e:75:31:42:68:bb:
05:e1:90:61:c2:2c:7a:75:40:6b:38:3e:ff:ca:66:1e:07:96:
41:f5:4b:6a:49:0e:17:06:49:39:72:f3:b8:a2:cc:2e:08:62:
5e:9f:41:39:c7:58:b3:a5:69:28:9a:e4:07:b2:81:6d:8f:0a:
02:fa:7b:ea:53:f1:fb:fd:7a:14:d5:9b:ec:10:7d:7c:47:86:
a0:94:b4:a4:52:5d:10:95:19:57:03:ff:44:94:66:ac:ce:e4:
41:e2:84:18:d0:c6:af:36:7b:53:e3:d5:17:ca:30:04:e3:90:
54:51:18:93:64:5b:27:0a:81:05:a6:92:b1:ee:38:77:89:f7:
7e:ee:41:14:03:9b:d7:01:54:04:be:e9:8a:2a:ee:0e:28:96:
e6:67:67:68:6b:41:d2:e0:92:e3:a4:bd:80:b6:1d:a1:4c:54:
bf:f3:d9:9e
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
M0VBODBBRjExMC8GA1UEBRMoQzY3QzYyMzExMjA5NDEyMzU1ODFENTk0MjU2NUFC
Rjc0MTlEQ0VDQzAeFw0yMzEwMTIxMDUyNDFaFw0zMDEwMTIxMDUyNDFaMBgxFjAU
BgNVBAMTDTY1MjdjZmZjLTM4ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCUzrHrfHCNXhvIjdI294kQCZgxPV+FKeb1pyTUAUBPksJBXMqZOIePoilF
15ydNfx4JyKzkbiZiJXrYQLgUi/wC+8dp6hnrIy3pRtYPTbeBgY26vwLePpO26AL
c+R6HCCciiAjL4NiyqGi5WncEsv/bDSlfPVUoyKh5/xren9HqOr+xCfKObNAlfEU
eJD3dfeP3hVfju5qMyeF4GtBrrJXdcFQ9Fk9LFJ91pg4J0X8vOTJbWJMMtZ59iyP
KvQmfzCLOOUdgFrMKtTVvSQb543gBCvkoLUtR/xqCQVlHfsbkgPVGt1UrheOu+PZ
MRUMKc11xZSxon4hDh3II8zEt5KNAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUtGwh
VJLw8t/AzZgB5eIGnaSkN6swHwYDVR0jBBgwFoAUxnxiMRIJQSNVgdWUJWWr90Gd
zswwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjNFQTgwLzIzRDU0QjI4REREQTExRUQ4NjUzMkUwRDMwNkQ4QzFEL3hueGlN
UklKUVNOVmdkV1VKV1dyOTBHZHpzdy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3hueGlNUklKUVNOVmdkV1VKV1dyOTBHZHpzdy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjNFQTgwLzIzRDU0QjI4REREQTExRUQ4NjUzMkUwRDMw
NkQ4QzFELzc4REI0Qzc4NjhFRDExRUU4N0I0QkQzRDRBRDlFNkZDLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAWad2AwDQYJKoZIhvcNAQEL
BQADggEBAHzc6zzcbFN+JO91tx9lyzkMgsUbaUP64phoRBj8A0Sd+GtuShaa9Amx
nvICx5WXAqez0498tLK8984OlI8wDNyTjEuavg3fdsnzYdQfZh0C7voy8Z51MUJo
uwXhkGHCLHp1QGs4Pv/KZh4HlkH1S2pJDhcGSTly87iizC4IYl6fQTnHWLOlaSia
5AeygW2PCgL6e+pT8fv9ehTVm+wQfXxHhqCUtKRSXRCVGVcD/0SUZqzO5EHihBjQ
xq82e1Pj1RfKMATjkFRRGJNkWycKgQWmkrHuOHeJ937uQRQDm9cBVAS+6Yoq7g4o
luZnZ2hrQdLgkuOkvYC2HaFMVL/z2Z4=
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:56:34 2025 by rpki-client