Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09BF3896C36D11EF880BF451762E951A.roa
File: 09BF3896C36D11EF880BF451762E951A.roa (raw, json)
Hash identifier: wCDuPrVueni0BOnsFLlLT4QIfyrk79W9WBHaHrGmSRQ=
Subject key identifier: D2:D1:FB:A1:58:ED:80:A3:4F:25:9E:39:FF:20:91:0C:44:F2:3B:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012700
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09BF3896C36D11EF880BF451762E951A.roa
Signing time: Thu 26 Dec 2024 09:37:35 +0000
ROA not before: Thu 26 Dec 2024 09:37:32 +0000
ROA not after: Fri 12 Dec 2025 09:37:32 +0000
asID: 984
IP address blocks: 154.94.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75520 (0x12700)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 09:37:32 2024 GMT
Not After : Dec 12 09:37:32 2025 GMT
Subject: CN=676d23df-07d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:73:b0:98:45:ad:fc:17:44:f4:6a:15:0c:40:
f7:28:6c:59:d2:8b:33:8c:a9:d4:d1:3f:bd:c4:61:
b3:b1:08:38:ff:21:6a:a7:f6:68:c8:e3:7b:84:af:
87:fa:f3:bf:86:d6:8d:dd:75:2d:bb:0b:65:ec:cf:
0f:79:da:3b:22:b6:12:ce:4b:d3:0d:2c:26:0e:eb:
be:df:41:ff:06:4a:8d:84:e0:59:bf:a7:77:1b:27:
b2:a9:c9:c1:03:5c:92:a5:63:59:9c:44:1e:a2:7e:
d0:f9:4c:08:99:6e:6c:66:29:37:89:b0:b1:15:ef:
20:55:11:5c:86:ca:b7:f1:de:01:42:86:d4:0d:55:
fe:8e:c9:1c:cf:60:7c:a4:7f:c9:dd:0a:28:6d:a9:
9a:f3:1d:6c:b3:53:0a:12:51:c1:36:5a:5c:59:2c:
a8:db:6d:ab:b0:d6:17:34:96:df:1c:6c:0b:c3:25:
e6:e9:88:03:30:4e:45:ad:c5:d0:c3:d0:e3:f9:fd:
68:63:75:db:44:1d:94:a0:2d:c0:96:12:0a:54:16:
d0:fe:2b:71:78:fb:c0:95:84:65:b8:3e:a0:92:1e:
6d:e6:5a:af:a1:be:a5:d4:6d:95:89:e1:6a:f1:71:
cd:f8:58:c9:5e:42:e3:85:5a:34:dd:d9:72:df:97:
ac:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D1:FB:A1:58:ED:80:A3:4F:25:9E:39:FF:20:91:0C:44:F2:3B:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/09BF3896C36D11EF880BF451762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.151.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:36:51:22:a3:f8:73:a2:ab:de:f9:97:44:17:a2:2f:49:a3:
31:c0:cf:2c:2e:77:fd:59:b6:7b:6e:33:9b:eb:58:ec:e4:e9:
55:ba:98:5c:e6:91:4c:86:9d:c6:d6:ce:92:51:89:2e:75:6c:
08:20:96:5a:4b:c6:71:c1:d0:f9:4d:0d:f5:c5:b2:3f:76:ca:
f7:ce:90:a4:a9:64:56:4a:f0:63:93:64:b2:1f:db:5d:79:4f:
02:45:4e:3f:90:09:34:b8:22:fd:c9:48:c9:fc:f0:4d:df:53:
eb:e7:be:36:d6:8c:82:37:fa:04:5a:61:3c:73:bc:66:bb:f0:
75:9e:44:03:a0:35:51:1d:e4:00:64:2c:5f:67:60:77:33:ef:
7a:99:05:e5:18:f7:4b:ac:c9:63:3f:82:99:33:35:87:a9:39:
f2:34:f3:a2:80:bd:d1:67:5a:d6:07:bb:7b:33:b9:19:f8:53:
49:a6:43:bf:55:32:1a:1e:39:f2:51:ce:0a:b2:23:19:21:13:
d2:c8:ea:33:da:aa:a0:65:e8:9f:07:1f:58:22:2a:6c:57:4c:
b8:7b:0e:4f:a0:22:9f:85:e7:b2:64:12:74:69:8b:8e:03:a8:
e0:47:7e:98:28:0e:82:d1:81:71:80:a0:d7:0c:a3:65:86:4e:
20:00:f8:57
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAScAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDkzNzMyWhcNMjUxMjEyMDkzNzMyWjAYMRYw
FAYDVQQDEw02NzZkMjNkZi0wN2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvHOwmEWt/BdE9GoVDED3KGxZ0oszjKnU0T+9xGGzsQg4/yFqp/ZoyON7
hK+H+vO/htaN3XUtuwtl7M8Pedo7IrYSzkvTDSwmDuu+30H/BkqNhOBZv6d3Gyey
qcnBA1ySpWNZnEQeon7Q+UwImW5sZik3ibCxFe8gVRFchsq38d4BQobUDVX+jskc
z2B8pH/J3Qoobama8x1ss1MKElHBNlpcWSyo222rsNYXNJbfHGwLwyXm6YgDME5F
rcXQw9Dj+f1oY3XbRB2UoC3AlhIKVBbQ/itxePvAlYRluD6gkh5t5lqvob6l1G2V
ieFq8XHN+FjJXkLjhVo03dly35esmQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFNLR
+6FY7YCjTyWeOf8gkQxE8jtaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wOUJGMzg5NkMzNkQxMUVGODgwQkY0NTE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml6XMA0GCSqGSIb3DQEB
CwUAA4IBAQC2NlEio/hzoqve+ZdEF6IvSaMxwM8sLnf9WbZ7bjOb61js5OlVuphc
5pFMhp3G1s6SUYkudWwIIJZaS8ZxwdD5TQ31xbI/dsr3zpCkqWRWSvBjk2SyH9td
eU8CRU4/kAk0uCL9yUjJ/PBN31Pr57421oyCN/oEWmE8c7xmu/B1nkQDoDVRHeQA
ZCxfZ2B3M+96mQXlGPdLrMljP4KZMzWHqTnyNPOigL3RZ1rWB7t7M7kZ+FNJpkO/
VTIaHjnyUc4KsiMZIRPSyOoz2qqgZeifBx9YIipsV0y4ew5PoCKfheeyZBJ0aYuO
A6jgR36YKA6C0YFxgKDXDKNlhk4gAPhX
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:31 2025 by rpki-client