Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F5CB490C40D11EF9F649E56762E951A.roa
File: 0F5CB490C40D11EF9F649E56762E951A.roa (raw, json)
Hash identifier: IpKKLFMi7yiaiy/c4OwBjGJRi7FuxANNpgxkPP4wcXU=
Subject key identifier: 29:AF:C9:FD:A1:D8:E1:A1:00:8B:E0:E2:63:83:F7:B2:8D:37:B9:8F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012929
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F5CB490C40D11EF9F649E56762E951A.roa
Signing time: Fri 27 Dec 2024 04:43:04 +0000
ROA not before: Fri 27 Dec 2024 04:43:01 +0000
ROA not after: Fri 12 Dec 2025 04:43:01 +0000
asID: 984
IP address blocks: 154.196.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76073 (0x12929)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 04:43:01 2024 GMT
Not After : Dec 12 04:43:01 2025 GMT
Subject: CN=676e3058-144f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:dc:52:3b:e5:2c:7a:bc:78:ca:62:72:92:2b:
fc:05:ff:05:11:07:e8:d3:fb:e7:b2:6a:45:86:1f:
41:8b:7a:cd:fe:92:f9:68:69:ba:da:db:cf:a6:e2:
96:8c:bd:e8:11:f3:f4:82:1c:9e:2f:1a:be:bb:92:
fb:ea:8c:94:0c:a3:5a:85:4b:8c:9c:a6:64:20:1f:
63:0c:ec:7a:67:55:7f:62:b7:12:ca:be:70:e7:c3:
c7:ae:23:63:0d:00:ad:80:21:5b:cd:95:c4:3c:9e:
22:09:7e:fd:ae:94:0d:fc:45:ca:81:a2:82:ab:75:
b7:f9:44:67:f0:79:6e:eb:07:91:7d:7a:66:47:13:
76:e5:95:18:07:cb:ea:a8:60:74:69:1d:8d:b9:84:
fb:ab:b3:78:d1:e3:3a:e4:c8:30:0d:6d:9c:28:2b:
eb:7d:81:57:ae:4b:4b:13:c9:e4:a6:bf:8f:12:d3:
b2:79:47:75:93:d7:f5:1c:85:8e:9c:94:08:40:27:
eb:9a:23:5e:3a:13:09:5d:55:64:97:dc:e6:0b:29:
f7:f6:1a:a3:0b:10:03:e6:9e:7a:fa:9f:ab:53:30:
b1:3f:0c:66:72:be:cb:d4:55:a3:9b:2b:f2:4a:d3:
57:4f:f6:4d:83:26:2c:bf:b6:0c:8a:62:9e:4f:f4:
97:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AF:C9:FD:A1:D8:E1:A1:00:8B:E0:E2:63:83:F7:B2:8D:37:B9:8F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/0F5CB490C40D11EF9F649E56762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.196.222.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:3a:d0:3b:20:f4:95:fb:e5:e0:5f:51:95:81:1a:5a:d8:89:
e8:61:66:8c:5e:89:62:22:eb:f1:2f:35:eb:fd:24:8f:28:68:
0d:97:95:db:79:e3:90:f2:4d:6c:9c:4c:a7:e8:5d:62:8d:ee:
33:f8:b7:a9:8c:5e:ed:3b:15:e8:5f:4c:68:ea:82:f2:d6:5f:
6b:95:07:46:3a:86:75:49:b7:25:b2:51:fb:4e:fe:70:b3:e7:
7b:f6:3f:d0:25:36:f1:c9:96:5f:e5:59:22:90:0c:06:84:4e:
e5:b2:5d:22:c8:75:ae:30:48:01:b2:bd:f2:4b:da:a0:c0:61:
46:bd:4f:f3:f9:ac:1a:9f:1a:3e:e4:a6:8e:fb:02:89:8d:29:
72:c6:f7:78:61:18:0c:9c:d7:cf:a3:c1:63:90:36:bd:c0:02:
47:6f:b6:06:ed:56:b0:61:38:f9:19:1e:81:b4:c9:a9:d9:eb:
ce:98:6c:e0:11:c9:77:a6:aa:28:0e:c0:a4:cc:f0:b7:a6:d8:
14:2e:e4:9e:b0:c1:1d:b0:1b:7c:47:1c:e3:a9:8d:bd:50:15:
70:66:f8:0c:82:40:8a:d4:ca:a7:63:e6:b7:ac:d4:32:a8:ee:
f7:10:30:a8:91:c7:02:99:14:da:6a:c6:6c:3c:95:0c:39:b4:
9a:27:79:39
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASkpMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI3MDQ0MzAxWhcNMjUxMjEyMDQ0MzAxWjAYMRYw
FAYDVQQDEw02NzZlMzA1OC0xNDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt9xSO+Userx4ymJykiv8Bf8FEQfo0/vnsmpFhh9Bi3rN/pL5aGm62tvP
puKWjL3oEfP0ghyeLxq+u5L76oyUDKNahUuMnKZkIB9jDOx6Z1V/YrcSyr5w58PH
riNjDQCtgCFbzZXEPJ4iCX79rpQN/EXKgaKCq3W3+URn8Hlu6weRfXpmRxN25ZUY
B8vqqGB0aR2NuYT7q7N40eM65MgwDW2cKCvrfYFXrktLE8nkpr+PEtOyeUd1k9f1
HIWOnJQIQCfrmiNeOhMJXVVkl9zmCyn39hqjCxAD5p56+p+rUzCxPwxmcr7L1FWj
myvyStNXT/ZNgyYsv7YMimKeT/SXmwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCmv
yf2h2OGhAIvg4mOD97KNN7mPMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8wRjVDQjQ5MEM0MEQxMUVGOUY2NDlFNTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsTeMA0GCSqGSIb3DQEB
CwUAA4IBAQCsOtA7IPSV++XgX1GVgRpa2InoYWaMXoliIuvxLzXr/SSPKGgNl5Xb
eeOQ8k1snEyn6F1ije4z+LepjF7tOxXoX0xo6oLy1l9rlQdGOoZ1SbclslH7Tv5w
s+d79j/QJTbxyZZf5VkikAwGhE7lsl0iyHWuMEgBsr3yS9qgwGFGvU/z+awanxo+
5KaO+wKJjSlyxvd4YRgMnNfPo8FjkDa9wAJHb7YG7VawYTj5GR6BtMmp2evOmGzg
Ecl3pqooDsCkzPC3ptgULuSesMEdsBt8RxzjqY29UBVwZvgMgkCK1MqnY+a3rNQy
qO73EDCokccCmRTaasZsPJUMObSaJ3k5
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:40 2025 by rpki-client