Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C97BE7EC60711EFB4C73853762E951A.roa
File: 1C97BE7EC60711EFB4C73853762E951A.roa (raw, json)
Hash identifier: lQqijqbct/SQBK+feIUvwvvJEo2El15D55vBCnuCOok=
Subject key identifier: FB:4B:4E:11:64:B1:ED:49:08:11:7E:EB:CF:7A:29:81:A2:C3:78:14
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E92
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C97BE7EC60711EFB4C73853762E951A.roa
Signing time: Sun 29 Dec 2024 17:05:32 +0000
ROA not before: Sun 29 Dec 2024 17:05:28 +0000
ROA not after: Sun 12 Dec 2027 17:05:28 +0000
asID: 17561
IP address blocks: 154.217.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77458 (0x12e92)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 17:05:28 2024 GMT
Not After : Dec 12 17:05:28 2027 GMT
Subject: CN=6771815c-09ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:41:54:7e:34:9f:93:74:c2:ac:b0:ab:57:a6:
63:23:be:2f:b5:c6:36:04:b2:43:f7:00:a9:f4:2a:
28:5e:6e:69:cb:0b:3a:7a:28:46:a6:6e:1c:f4:d7:
ab:8e:ea:36:bb:bc:df:76:97:85:11:d4:b9:38:f9:
ab:16:6f:aa:5b:72:2c:bb:ce:84:e4:18:7f:0a:6c:
08:c9:eb:b7:b6:9e:53:e3:17:40:cf:c1:c1:9e:62:
ed:8e:c3:ad:84:06:d4:60:b1:28:84:cc:78:85:77:
49:e5:cc:cb:42:fd:fe:e6:bb:9a:bf:ed:82:9b:19:
a0:a4:29:26:7b:b8:42:8e:7a:2d:8b:8a:ce:08:82:
5a:e4:48:ca:2f:4e:62:7f:35:27:0c:d7:a5:97:f4:
41:44:ad:1e:07:59:a8:2e:f1:a5:4f:58:7a:98:13:
91:00:ea:84:c7:a0:be:62:cd:d4:15:3b:6f:43:21:
42:d0:b5:6e:2f:dd:80:6d:a4:b5:31:e3:20:f4:f2:
41:93:35:f9:6f:bf:50:1b:60:34:88:19:27:2a:8a:
10:54:5e:57:7c:42:d3:3e:94:d0:81:a9:c1:b2:32:
f4:8f:6e:77:29:2f:ae:1f:eb:8b:34:a7:96:b5:b8:
9b:da:58:db:05:4e:a4:4a:6b:cf:f3:a0:4f:c7:4e:
55:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4B:4E:11:64:B1:ED:49:08:11:7E:EB:CF:7A:29:81:A2:C3:78:14
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1C97BE7EC60711EFB4C73853762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.217.44.0/24
Signature Algorithm: sha256WithRSAEncryption
99:fa:b7:0b:a0:e9:e2:6f:28:92:9c:85:ff:a6:fd:b2:f3:78:
b7:4c:33:d1:58:0d:a5:f2:33:d1:e4:65:ef:b0:0a:75:1e:0a:
6b:5c:dc:8f:14:ad:da:92:14:e3:e5:f6:46:56:60:18:27:f2:
b1:8f:cc:28:88:88:11:b6:a0:0e:8c:db:36:11:ce:f1:60:ed:
5c:61:ea:15:91:5b:72:a5:7a:4c:a3:84:cb:d9:e0:30:aa:ee:
fe:62:10:45:d1:5a:a7:bb:ad:a9:83:b1:50:b5:71:e1:26:6b:
ec:d8:5f:34:d7:71:66:c8:02:74:c7:27:8b:49:90:35:36:79:
08:33:90:96:cf:d4:c7:d2:58:e6:87:0d:c3:d6:a7:9a:5d:88:
77:2b:c0:6b:2f:18:63:80:6a:cc:a3:68:2c:1b:e1:7f:88:1b:
de:c2:24:34:e5:00:45:70:f2:6b:6d:11:ec:8f:6b:3c:b1:20:
95:ee:a0:64:07:87:b9:52:a1:95:c2:aa:13:4d:8e:7a:db:f1:
d9:97:00:f2:89:a9:74:dd:9a:c2:ca:a9:f5:77:b9:28:c7:85:
90:3f:a7:97:a9:d7:d9:d5:db:75:e7:60:97:20:03:78:a5:df:
6f:bd:ae:11:c4:36:3f:f9:a8:0b:76:1a:56:cc:af:9c:49:78:
0d:71:c6:e1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS6SMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTcwNTI4WhcNMjcxMjEyMTcwNTI4WjAYMRYw
FAYDVQQDEw02NzcxODE1Yy0wOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4kFUfjSfk3TCrLCrV6ZjI74vtcY2BLJD9wCp9CooXm5pyws6eihGpm4c
9Nerjuo2u7zfdpeFEdS5OPmrFm+qW3Isu86E5Bh/CmwIyeu3tp5T4xdAz8HBnmLt
jsOthAbUYLEohMx4hXdJ5czLQv3+5ruav+2CmxmgpCkme7hCjnoti4rOCIJa5EjK
L05ifzUnDNell/RBRK0eB1moLvGlT1h6mBORAOqEx6C+Ys3UFTtvQyFC0LVuL92A
baS1MeMg9PJBkzX5b79QG2A0iBknKooQVF5XfELTPpTQganBsjL0j253KS+uH+uL
NKeWtbib2ljbBU6kSmvP86BPx05VSQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPtL
ThFkse1JCBF+6896KYGiw3gUMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xQzk3QkU3RUM2MDcxMUVGQjRDNzM4NTM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtksMA0GCSqGSIb3DQEB
CwUAA4IBAQCZ+rcLoOnibyiSnIX/pv2y83i3TDPRWA2l8jPR5GXvsAp1HgprXNyP
FK3akhTj5fZGVmAYJ/Kxj8woiIgRtqAOjNs2Ec7xYO1cYeoVkVtypXpMo4TL2eAw
qu7+YhBF0Vqnu62pg7FQtXHhJmvs2F8013FmyAJ0xyeLSZA1NnkIM5CWz9TH0ljm
hw3D1qeaXYh3K8BrLxhjgGrMo2gsG+F/iBvewiQ05QBFcPJrbRHsj2s8sSCV7qBk
B4e5UqGVwqoTTY562/HZlwDyial03ZrCyqn1d7kox4WQP6eXqdfZ1dt152CXIAN4
pd9vva4RxDY/+agLdhpWzK+cSXgNccbh
-----END CERTIFICATE-----
Generated at Mon Apr 7 06:58:08 2025 by rpki-client