Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14DE6128C0DB11EF92CF7E77762E951A.roa
File: 14DE6128C0DB11EF92CF7E77762E951A.roa (raw, json)
Hash identifier: uphpVw9o/vGOwqF7PbLQATwt6PErQLS8ALVOhcR+tBg=
Subject key identifier: 5A:2F:99:EC:D6:16:6E:D1:0D:18:74:8C:84:8A:2D:5F:0D:63:3D:A9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011E9E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14DE6128C0DB11EF92CF7E77762E951A.roa
Signing time: Mon 23 Dec 2024 03:07:45 +0000
ROA not before: Mon 23 Dec 2024 03:07:42 +0000
ROA not after: Wed 10 Dec 2025 03:07:42 +0000
asID: 984
IP address blocks: 154.89.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73374 (0x11e9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 03:07:42 2024 GMT
Not After : Dec 10 03:07:42 2025 GMT
Subject: CN=6768d401-bd04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:cf:20:6a:8d:a9:cc:40:c3:8b:c8:d7:68:af:
ab:23:ea:1d:99:25:19:18:d6:7a:aa:5f:f9:0d:f3:
f2:d5:63:5e:34:86:6f:55:1f:0f:be:41:77:32:35:
38:e1:54:da:bf:27:15:5d:05:a6:9c:28:f2:3e:a6:
35:55:98:af:d9:8a:e4:c4:58:46:6b:fc:26:55:0a:
39:78:40:64:51:9a:94:de:82:87:50:85:6f:e3:1c:
68:f3:17:ce:c6:4e:2d:c2:1a:7b:b8:9a:ab:77:80:
65:41:11:86:13:73:0c:a7:1b:16:b6:48:3a:50:f1:
f3:0e:5c:7e:ca:99:c8:f2:46:5e:ff:93:ea:40:e8:
ee:fc:35:d1:4c:01:bd:8d:7f:96:74:3e:cf:9c:ff:
59:aa:4b:7d:f1:cf:20:0f:8e:2d:60:c8:cb:8c:fe:
63:ed:7d:01:35:14:2b:14:d9:b7:68:9d:99:ae:73:
43:21:2b:ad:f7:8b:e0:92:26:05:4f:b7:af:77:e3:
3d:02:d1:43:76:cd:62:6e:a0:48:ae:94:0f:ad:52:
dd:c5:86:36:5e:61:a0:4d:72:61:bf:88:3e:95:38:
88:45:74:86:61:6e:05:90:6f:6a:4f:81:0f:8f:3b:
d4:73:07:69:7a:32:91:d6:e6:ca:cd:cc:e3:28:a7:
aa:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:2F:99:EC:D6:16:6E:D1:0D:18:74:8C:84:8A:2D:5F:0D:63:3D:A9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/14DE6128C0DB11EF92CF7E77762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.173.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ef:c7:c5:8e:ff:54:f2:7c:db:a5:39:b7:da:6b:51:86:4c:
6a:9a:c2:39:71:b4:38:ed:e4:15:81:c4:73:b8:26:df:21:0a:
56:31:83:4e:58:62:a7:d5:d6:67:ee:fe:b9:2b:7d:e1:4a:cb:
cc:98:d1:09:bf:4e:80:02:5e:b0:89:e5:b7:5e:c7:6a:35:52:
50:87:f5:4a:a5:89:c5:07:01:d6:13:9b:f8:ca:1b:78:18:e9:
30:0d:1b:80:c2:6a:9c:a0:b1:91:8e:01:f6:ae:97:32:68:a9:
c3:32:79:75:2d:a4:21:9b:20:70:27:ab:19:23:f9:66:82:b1:
16:6e:62:34:94:e8:21:47:3b:ea:b3:20:dc:5c:9e:91:d2:2a:
3e:22:fb:bc:d0:ec:95:28:d7:5b:a7:a3:ac:5c:f3:0c:b4:83:
39:9e:dc:1f:90:8c:3c:50:85:36:32:0a:12:72:06:30:a4:ed:
f4:5c:1f:c9:75:ac:12:8a:1f:09:89:c7:0a:d6:83:f6:f0:0c:
b4:ad:5c:a1:e7:19:41:17:86:cd:69:0a:e4:26:99:47:bd:0b:
dc:0e:14:9d:0d:82:96:b7:6e:67:2c:bd:c2:e5:77:ea:61:29:
af:13:5e:d4:5b:2a:e6:ae:55:9d:75:59:d7:9d:ba:0b:b6:2a:
d3:57:4d:82
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAR6eMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIzMDMwNzQyWhcNMjUxMjEwMDMwNzQyWjAYMRYw
FAYDVQQDEw02NzY4ZDQwMS1iZDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtM8gao2pzEDDi8jXaK+rI+odmSUZGNZ6ql/5DfPy1WNeNIZvVR8PvkF3
MjU44VTavycVXQWmnCjyPqY1VZiv2YrkxFhGa/wmVQo5eEBkUZqU3oKHUIVv4xxo
8xfOxk4twhp7uJqrd4BlQRGGE3MMpxsWtkg6UPHzDlx+ypnI8kZe/5PqQOju/DXR
TAG9jX+WdD7PnP9Zqkt98c8gD44tYMjLjP5j7X0BNRQrFNm3aJ2ZrnNDISut94vg
kiYFT7evd+M9AtFDds1ibqBIrpQPrVLdxYY2XmGgTXJhv4g+lTiIRXSGYW4FkG9q
T4EPjzvUcwdpejKR1ubKzczjKKeqgQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFov
mezWFm7RDRh0jISKLV8NYz2pMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xNERFNjEyOEMwREIxMUVGOTJDRjdFNzc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlmtMA0GCSqGSIb3DQEB
CwUAA4IBAQAx78fFjv9U8nzbpTm32mtRhkxqmsI5cbQ47eQVgcRzuCbfIQpWMYNO
WGKn1dZn7v65K33hSsvMmNEJv06AAl6wieW3XsdqNVJQh/VKpYnFBwHWE5v4yht4
GOkwDRuAwmqcoLGRjgH2rpcyaKnDMnl1LaQhmyBwJ6sZI/lmgrEWbmI0lOghRzvq
syDcXJ6R0io+Ivu80OyVKNdbp6OsXPMMtIM5ntwfkIw8UIU2MgoScgYwpO30XB/J
dawSih8JiccK1oP28Ay0rVyh5xlBF4bNaQrkJplHvQvcDhSdDYKWt25nLL3C5Xfq
YSmvE17UWyrmrlWddVnXnboLtirTV02C
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:35:40 2025 by rpki-client