Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D103654C36111EF9E945C85762E951A.roa
File: 1D103654C36111EF9E945C85762E951A.roa (raw, json)
Hash identifier: uy9RWrwvMN/HIoZ1KGNcOVuwKmNhTuxvi99jTxz44qM=
Subject key identifier: C1:5B:A4:72:B0:44:C6:F1:8D:35:EC:16:3C:DB:A6:CC:AB:05:12:70
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012654
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D103654C36111EF9E945C85762E951A.roa
Signing time: Thu 26 Dec 2024 08:12:14 +0000
ROA not before: Thu 26 Dec 2024 08:12:10 +0000
ROA not after: Sun 12 Dec 2027 08:12:10 +0000
asID: 17561
IP address blocks: 154.91.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75348 (0x12654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:12:10 2024 GMT
Not After : Dec 12 08:12:10 2027 GMT
Subject: CN=676d0fde-3cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:69:0e:91:0c:7b:d0:88:8b:24:d6:b7:8f:3f:
c9:83:00:70:df:7b:8c:14:ec:d6:39:70:de:86:81:
c6:c6:81:1b:d3:61:b0:14:e9:49:29:f7:59:62:62:
4b:8d:55:e4:ae:82:e2:2d:ad:79:80:61:0c:4a:0e:
47:3f:0c:3a:8c:35:ec:1f:50:f8:b1:e8:f5:85:07:
27:98:41:77:38:1e:20:58:3b:65:09:60:cc:0b:57:
56:f0:da:93:b4:a3:7e:6f:9c:03:da:82:20:e2:cf:
8a:6f:55:b5:73:fc:52:22:97:90:c0:48:08:f2:9a:
15:05:e6:55:bc:d2:a9:59:12:44:6c:08:09:bc:ec:
af:e9:cf:bc:b2:0f:66:ef:52:80:fc:3b:6e:0e:ed:
96:72:1d:9e:55:19:5c:37:4b:91:a2:2c:ec:81:c3:
7d:b6:ac:e5:b5:14:e2:56:57:37:99:4a:10:84:35:
d6:24:48:86:7c:ac:4c:a3:77:c6:67:1a:0f:25:42:
f4:a2:70:27:02:12:01:c6:e5:35:f7:12:dd:7c:ca:
a4:bf:83:a7:7b:c7:9a:94:b7:bf:cd:cd:ee:6f:51:
15:f9:4e:5e:ca:f7:bb:ab:df:97:ec:59:02:25:c1:
de:06:20:9a:38:e2:f4:99:2c:08:6e:21:d4:60:cd:
0c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:5B:A4:72:B0:44:C6:F1:8D:35:EC:16:3C:DB:A6:CC:AB:05:12:70
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1D103654C36111EF9E945C85762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.91.143.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:80:c3:5a:c6:ef:7f:5d:60:d6:66:f2:81:04:a8:f3:42:29:
b4:d6:c1:e8:d8:99:ee:b3:a0:13:81:85:ed:43:e8:fd:19:b7:
0e:a0:e4:6b:57:5d:f3:b2:ff:c5:d2:ef:b6:b3:53:78:57:20:
4f:97:90:37:4c:dd:ba:24:05:d2:2b:d0:51:a7:c2:32:d7:8a:
1e:4f:93:2b:fe:6c:01:42:53:41:c1:af:4a:0b:31:dd:c3:fd:
c4:d2:c4:da:67:a8:e4:28:90:ee:32:9c:a2:39:f2:da:ec:90:
56:3e:23:2a:cf:31:ce:a3:26:6c:f0:6b:58:59:68:d2:12:0d:
93:d4:56:1d:bc:2f:8b:1b:50:0b:a0:a6:8b:d8:e3:a4:d3:45:
3d:17:6b:d3:57:91:6b:b8:cf:41:c7:bd:20:c6:f1:b3:e5:ad:
9e:9e:bc:c8:34:72:ac:c6:62:42:11:50:77:56:1d:74:07:ca:
6e:c9:2b:76:f2:86:08:83:a6:66:20:a6:09:fe:1b:01:f1:19:
0d:22:84:8a:02:2e:d1:c5:47:f9:2b:12:53:29:cc:ef:84:c6:
b8:c9:2d:3a:b6:68:af:44:4f:66:e3:b2:02:8b:fd:68:b5:da:
c3:8b:a0:23:e6:c6:b1:d9:ed:bd:1f:98:eb:1a:a4:cd:cb:1a:
93:57:5f:67
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASZUMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDgxMjEwWhcNMjcxMjEyMDgxMjEwWjAYMRYw
FAYDVQQDEw02NzZkMGZkZS0zY2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA7GkOkQx70IiLJNa3jz/JgwBw33uMFOzWOXDehoHGxoEb02GwFOlJKfdZ
YmJLjVXkroLiLa15gGEMSg5HPww6jDXsH1D4sej1hQcnmEF3OB4gWDtlCWDMC1dW
8NqTtKN+b5wD2oIg4s+Kb1W1c/xSIpeQwEgI8poVBeZVvNKpWRJEbAgJvOyv6c+8
sg9m71KA/DtuDu2Wch2eVRlcN0uRoizsgcN9tqzltRTiVlc3mUoQhDXWJEiGfKxM
o3fGZxoPJUL0onAnAhIBxuU19xLdfMqkv4One8ealLe/zc3ub1EV+U5eyve7q9+X
7FkCJcHeBiCaOOL0mSwIbiHUYM0MgQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMFb
pHKwRMbxjTXsFjzbpsyrBRJwMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xRDEwMzY1NEMzNjExMUVGOUU5NDVDODU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmluPMA0GCSqGSIb3DQEB
CwUAA4IBAQCagMNaxu9/XWDWZvKBBKjzQim01sHo2Jnus6ATgYXtQ+j9GbcOoORr
V13zsv/F0u+2s1N4VyBPl5A3TN26JAXSK9BRp8Iy14oeT5Mr/mwBQlNBwa9KCzHd
w/3E0sTaZ6jkKJDuMpyiOfLa7JBWPiMqzzHOoyZs8GtYWWjSEg2T1FYdvC+LG1AL
oKaL2OOk00U9F2vTV5FruM9Bx70gxvGz5a2enrzINHKsxmJCEVB3Vh10B8puySt2
8oYIg6ZmIKYJ/hsB8RkNIoSKAi7RxUf5KxJTKczvhMa4yS06tmivRE9m47ICi/1o
tdrDi6Aj5sax2e29H5jrGqTNyxqTV19n
-----END CERTIFICATE-----
Generated at Sun Apr 6 12:32:54 2025 by rpki-client