Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DF4AB14CDEC11EF8531998E762E951A.roa
File: 1DF4AB14CDEC11EF8531998E762E951A.roa (raw, json)
Hash identifier: hlvsl+IXbjIMVAXR54HXNbpcjjY3HKrrap9CqHnDwl0=
Subject key identifier: 6F:09:71:95:F9:BF:B3:35:75:D3:23:EF:7D:61:20:D5:AB:FE:80:26
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013811
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DF4AB14CDEC11EF8531998E762E951A.roa
Signing time: Wed 08 Jan 2025 18:12:27 +0000
ROA not before: Wed 08 Jan 2025 18:12:23 +0000
ROA not after: Sat 03 Jan 2026 18:12:23 +0000
asID: 984
IP address blocks: 154.89.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79889 (0x13811)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 8 18:12:23 2025 GMT
Not After : Jan 3 18:12:23 2026 GMT
Subject: CN=677ec00b-a554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ec:a9:c2:67:15:a6:c0:5f:24:82:8d:ff:46:
f3:fb:8e:97:1b:00:d6:ee:4b:ee:c2:cd:a1:23:70:
d8:af:02:f3:98:fb:03:33:3a:07:d5:75:29:59:2a:
1a:77:c7:93:a9:60:6f:64:d2:fc:5b:a2:1d:7c:7a:
a1:4e:fc:b2:ce:58:9b:84:41:bc:c8:d5:7f:5d:b0:
98:f0:2b:b3:5d:f3:52:c3:dd:21:9c:60:2e:11:43:
e2:9e:ca:37:7e:d0:88:2c:1c:06:4a:ff:73:a5:9b:
dc:29:f6:d2:2b:94:14:35:f8:f8:67:3f:8a:33:71:
d3:85:64:e8:11:0a:a1:77:cb:26:97:ec:5b:8f:27:
00:e7:8b:07:21:df:d9:78:78:a1:25:c9:01:57:dd:
1f:9d:ee:f8:f7:e8:5b:69:1e:a2:04:2f:25:05:ae:
50:73:fe:76:7b:67:10:74:21:45:b8:71:e3:c0:33:
62:d6:02:a0:97:bd:7f:a3:61:ea:6e:23:be:c7:41:
e1:c2:63:68:95:44:7b:7b:a3:40:cc:7d:62:09:68:
01:54:8e:49:5a:a7:0b:fb:4b:37:a8:e0:92:e6:a7:
6c:8b:0c:e8:ac:83:7a:c3:28:60:5e:ef:60:af:b6:
9e:96:91:72:57:b3:55:0b:73:4c:25:6d:c9:0e:d0:
e5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:09:71:95:F9:BF:B3:35:75:D3:23:EF:7D:61:20:D5:AB:FE:80:26
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/1DF4AB14CDEC11EF8531998E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.215.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:04:2f:e9:d3:41:43:fb:d5:8f:e8:b2:63:d9:82:84:6f:8c:
ae:fd:44:28:3c:9b:b3:79:fa:5e:9f:71:98:fb:3b:9b:ec:9f:
94:8b:0f:e3:2a:37:92:f0:ec:61:03:b7:67:57:b8:f3:fd:e4:
02:5c:ce:a5:8d:17:ff:37:f3:7f:ed:c6:6c:4b:f3:14:97:56:
4c:3d:e4:e2:b6:d8:39:e5:46:40:b9:02:ef:d2:59:5d:2e:cd:
3f:83:3c:10:94:0f:80:7f:43:3f:10:32:7a:be:64:20:7a:92:
c8:0c:bb:b8:2e:d3:10:e4:cc:b1:83:0a:c0:2c:87:45:39:c8:
2a:ff:42:cd:a0:10:b1:56:23:9c:ce:01:43:d1:ec:f4:d7:37:
68:06:13:e0:a7:02:7d:4a:41:49:a8:89:97:67:e1:25:b0:cf:
a1:2b:6a:29:e8:bc:d9:1f:47:81:7d:a9:b4:aa:8d:92:3b:0b:
a3:f8:73:f9:b3:9e:cb:b4:d0:73:9b:06:b9:8b:0d:7a:75:ea:
8c:ce:30:31:8e:63:60:a0:fb:38:e5:2c:47:66:94:d6:2c:49:
d7:37:54:4b:22:91:04:4b:b8:39:23:a5:9b:f0:65:81:5e:e0:
93:9d:56:b8:d4:05:ba:24:3b:d2:eb:6a:9f:ff:01:b4:41:86:
98:4e:c6:96
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATgRMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTA4MTgxMjIzWhcNMjYwMTAzMTgxMjIzWjAYMRYw
FAYDVQQDEw02NzdlYzAwYi1hNTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAt+ypwmcVpsBfJIKN/0bz+46XGwDW7kvuws2hI3DYrwLzmPsDMzoH1XUp
WSoad8eTqWBvZNL8W6IdfHqhTvyyzlibhEG8yNV/XbCY8CuzXfNSw90hnGAuEUPi
nso3ftCILBwGSv9zpZvcKfbSK5QUNfj4Zz+KM3HThWToEQqhd8sml+xbjycA54sH
Id/ZeHihJckBV90fne749+hbaR6iBC8lBa5Qc/52e2cQdCFFuHHjwDNi1gKgl71/
o2HqbiO+x0HhwmNolUR7e6NAzH1iCWgBVI5JWqcL+0s3qOCS5qdsiwzorIN6wyhg
Xu9gr7aelpFyV7NVC3NMJW3JDtDlHQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFG8J
cZX5v7M1ddMj731hINWr/oAmMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8xREY0QUIxNENERUMxMUVGODUzMTk5OEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlnXMA0GCSqGSIb3DQEB
CwUAA4IBAQAuBC/p00FD+9WP6LJj2YKEb4yu/UQoPJuzefpen3GY+zub7J+Uiw/j
KjeS8OxhA7dnV7jz/eQCXM6ljRf/N/N/7cZsS/MUl1ZMPeTittg55UZAuQLv0lld
Ls0/gzwQlA+Af0M/EDJ6vmQgepLIDLu4LtMQ5MyxgwrALIdFOcgq/0LNoBCxViOc
zgFD0ez01zdoBhPgpwJ9SkFJqImXZ+ElsM+hK2op6LzZH0eBfam0qo2SOwuj+HP5
s57LtNBzmwa5iw16deqMzjAxjmNgoPs45SxHZpTWLEnXN1RLIpEES7g5I6Wb8GWB
XuCTnVa41AW6JDvS62qf/wG0QYaYTsaW
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:32 2025 by rpki-client