Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B2314CEC35D11EFBCC1C46C762E951A.roa
File: 0B2314CEC35D11EFBCC1C46C762E951A.roa (raw, json)
Hash identifier: NHQnKHOUwpkcnaZLENVdrFfHSXy1oK1WyEHUXDCjPa8=
Subject key identifier: F8:2B:99:B6:B8:4C:D9:53:61:F0:E8:95:F7:DD:51:3D:37:49:B4:EC
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012601
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B2314CEC35D11EFBCC1C46C762E951A.roa
Signing time: Thu 26 Dec 2024 07:43:06 +0000
ROA not before: Thu 26 Dec 2024 07:43:02 +0000
ROA not after: Sun 12 Dec 2027 07:43:02 +0000
asID: 17561
IP address blocks: 154.88.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75265 (0x12601)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 07:43:02 2024 GMT
Not After : Dec 12 07:43:02 2027 GMT
Subject: CN=676d090a-724d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:27:f2:ad:e9:67:f9:86:21:d0:96:99:6c:90:
9e:1a:b2:3b:83:4a:54:d1:bf:9d:53:3d:ad:c9:c6:
c0:6b:ef:af:15:64:90:3c:b1:3f:5f:f2:e0:7b:b9:
a4:c7:77:b9:aa:97:54:27:21:33:08:32:4c:d0:9c:
8a:3a:57:1e:3f:b5:50:47:20:1f:0c:ff:04:0d:3f:
d4:6a:c0:4e:99:2d:1e:e4:23:48:c8:9e:0d:2a:18:
3a:06:f1:1d:54:99:58:f5:ff:12:91:e5:ae:68:2d:
36:f7:64:e8:72:fc:5c:5d:a9:1d:25:ff:ca:79:7e:
b9:f5:8b:8b:7d:23:18:09:42:96:20:42:3f:5e:3f:
04:0f:50:c7:4f:a4:4b:5c:72:0c:ae:e5:64:36:00:
37:11:09:30:3b:e1:b4:66:f0:9c:88:da:78:5c:ca:
bc:41:29:df:87:e4:a1:77:f8:82:56:9d:0f:8a:88:
ff:4f:ed:fc:67:c1:eb:a6:de:9e:25:72:49:2e:ec:
51:1d:fb:5a:85:e1:3f:98:90:e2:23:c6:ad:f9:7b:
58:03:8b:ea:18:ec:07:47:70:9e:5c:93:20:eb:eb:
37:ac:5f:67:25:73:6d:b2:b0:ac:b9:d2:6a:85:83:
61:c9:a0:4f:0a:a4:61:21:0f:4e:2a:de:0b:85:2c:
b9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2B:99:B6:B8:4C:D9:53:61:F0:E8:95:F7:DD:51:3D:37:49:B4:EC
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0B2314CEC35D11EFBCC1C46C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.88.55.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:e8:fd:5f:4e:e9:98:7b:ab:7a:64:6b:09:3b:e7:5e:95:dd:
94:cf:f0:68:e6:13:b7:38:4f:1a:46:0f:46:81:f5:94:c1:f2:
a7:ba:4f:d2:b5:e2:33:6c:84:07:fa:10:0e:7c:8e:3b:8c:e1:
8f:c2:84:d1:77:be:5c:cb:b4:c9:62:25:18:6e:a0:62:67:5a:
be:a4:51:d0:d2:7a:9b:89:7a:29:6c:e6:1a:c2:bb:9a:08:57:
78:1a:da:31:90:a9:02:90:9b:8c:b3:86:e3:8c:fd:43:af:a1:
1e:62:d4:30:b3:a1:50:15:e2:f1:a2:48:d6:d2:35:d6:9a:0e:
25:5d:04:02:ef:6c:1c:84:cb:a6:0b:3d:2d:cb:0e:3f:5a:06:
ed:bf:55:5c:26:ba:fa:c9:c0:84:bd:e0:1a:19:c6:69:ca:6b:
c2:2a:89:ff:e7:53:91:33:32:40:dc:66:e8:83:c4:19:59:42:
a9:30:be:ab:92:e9:0d:68:f9:72:68:17:97:8d:fb:c3:29:44:
f7:39:07:13:21:63:0d:b9:b4:61:e5:e6:71:57:3c:06:1c:21:
8b:b2:98:7b:a0:39:51:9a:b6:58:5f:f8:50:8f:2b:32:26:73:
56:e8:81:51:e1:bd:66:6a:78:b5:e1:a4:56:f0:46:d7:e1:e8:
53:4a:af:2c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASYBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDc0MzAyWhcNMjcxMjEyMDc0MzAyWjAYMRYw
FAYDVQQDEw02NzZkMDkwYS03MjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2yfyreln+YYh0JaZbJCeGrI7g0pU0b+dUz2tycbAa++vFWSQPLE/X/Lg
e7mkx3e5qpdUJyEzCDJM0JyKOlceP7VQRyAfDP8EDT/UasBOmS0e5CNIyJ4NKhg6
BvEdVJlY9f8SkeWuaC0292TocvxcXakdJf/KeX659YuLfSMYCUKWIEI/Xj8ED1DH
T6RLXHIMruVkNgA3EQkwO+G0ZvCciNp4XMq8QSnfh+Shd/iCVp0Pioj/T+38Z8Hr
pt6eJXJJLuxRHftaheE/mJDiI8at+XtYA4vqGOwHR3CeXJMg6+s3rF9nJXNtsrCs
udJqhYNhyaBPCqRhIQ9OKt4LhSy58wIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPgr
mba4TNlTYfDolffdUT03SbTsMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wQjIzMTRDRUMzNUQxMUVGQkNDMUM0NkM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlg3MA0GCSqGSIb3DQEB
CwUAA4IBAQC56P1fTumYe6t6ZGsJO+deld2Uz/Bo5hO3OE8aRg9GgfWUwfKnuk/S
teIzbIQH+hAOfI47jOGPwoTRd75cy7TJYiUYbqBiZ1q+pFHQ0nqbiXopbOYawrua
CFd4GtoxkKkCkJuMs4bjjP1Dr6EeYtQws6FQFeLxokjW0jXWmg4lXQQC72wchMum
Cz0tyw4/Wgbtv1VcJrr6ycCEveAaGcZpymvCKon/51ORMzJA3Gbog8QZWUKpML6r
kukNaPlyaBeXjfvDKUT3OQcTIWMNubRh5eZxVzwGHCGLsph7oDlRmrZYX/hQjysy
JnNW6IFR4b1mani14aRW8EbX4ehTSq8s
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:37:39 2025 by rpki-client