Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/254061C4C0E011EFBABD6997762E951A.roa
File: 254061C4C0E011EFBABD6997762E951A.roa (raw, json)
Hash identifier: mb1E5IAzDZC6ilnoJc9LbqLD17rpanHfnm/0Esf/tQw=
Subject key identifier: 8A:E4:D6:D1:6E:E7:A7:5C:E6:9A:37:AA:0F:EF:2B:28:1D:63:E1:2F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011EE0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/254061C4C0E011EFBABD6997762E951A.roa
Signing time: Mon 23 Dec 2024 03:44:00 +0000
ROA not before: Mon 23 Dec 2024 03:43:56 +0000
ROA not after: Wed 10 Dec 2025 03:43:56 +0000
asID: 984
IP address blocks: 154.89.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73440 (0x11ee0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 03:43:56 2024 GMT
Not After : Dec 10 03:43:56 2025 GMT
Subject: CN=6768dc80-e92f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:64:45:bb:32:df:ed:84:05:16:92:b3:e5:88:
4d:48:8d:26:d0:8b:79:a1:84:a4:3e:9f:03:fd:ec:
00:d5:63:78:20:a4:7f:ac:88:34:c4:17:35:e4:f8:
ed:b7:0f:5b:16:ce:0a:aa:c9:5b:3d:88:e0:a9:2d:
9a:23:ac:a4:cc:2d:00:91:4a:cc:6d:67:5b:85:b3:
f5:99:c4:8d:09:96:4b:da:0c:21:86:9c:89:9b:63:
26:02:2e:91:d3:05:71:d4:eb:b2:92:1b:eb:e7:56:
8b:50:42:47:59:1e:40:b8:bd:b9:55:15:25:5c:97:
2e:e5:01:61:0e:eb:0b:e5:2c:af:e6:bb:63:bf:82:
36:12:8e:05:f6:dc:e0:ea:9b:fb:dd:86:27:d3:5b:
1c:d8:cf:57:63:bb:fe:31:1a:e1:0a:3d:b1:3e:f6:
0c:80:15:a8:53:35:9c:93:0e:84:b0:cc:95:97:9c:
0f:e1:da:c6:83:61:6a:46:9c:9a:d1:ce:46:85:e7:
f3:cc:79:53:97:e6:22:68:6b:66:b8:d4:74:21:82:
78:1a:3b:a7:50:5f:50:ec:c9:bd:a1:e2:fd:42:c4:
db:f5:d3:d0:d1:6f:8e:c0:55:f3:61:7f:e5:e7:6b:
04:91:33:0a:03:b7:bb:8f:b0:14:26:8d:1b:2b:12:
f9:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E4:D6:D1:6E:E7:A7:5C:E6:9A:37:AA:0F:EF:2B:28:1D:63:E1:2F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/254061C4C0E011EFBABD6997762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.206.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:3d:b7:07:44:e3:96:d9:a1:69:69:72:7b:1e:43:42:e2:67:
d8:7e:5c:19:49:68:27:93:6f:71:ad:ce:42:28:ac:28:4f:70:
f9:53:ce:26:36:9e:3d:b8:c7:9a:eb:a5:8c:dc:b2:70:35:41:
78:88:c8:d6:35:f5:47:51:f9:61:d5:10:86:aa:40:26:b8:88:
60:ed:fe:a5:5d:94:df:b0:55:21:73:18:f0:58:cb:5c:20:77:
38:7f:14:a6:8e:49:d6:52:65:ba:df:b1:ed:94:44:7f:50:23:
62:b9:e2:e9:a0:a8:ee:a1:82:76:f3:86:2d:7e:d8:34:53:da:
d8:fd:d1:7b:2b:f3:76:42:42:ea:17:30:7a:64:17:ce:93:f2:
28:67:cf:ed:62:26:a1:4c:e0:3e:19:2b:a4:32:7c:15:01:6a:
57:2d:c7:ac:d3:09:4e:59:41:2e:b0:5d:6d:49:e3:c7:85:e2:
19:7c:61:47:3f:bb:02:e5:ff:95:7d:28:6f:b3:d7:4f:13:43:
fd:44:6c:e4:a2:3f:63:6a:4f:47:39:36:53:d8:0e:42:da:e3:
94:84:76:68:6f:69:1d:09:fa:1a:6f:ac:d0:0f:6d:b9:79:98:
08:9e:8b:20:45:6d:55:32:2d:4a:c1:40:f0:8c:45:7b:44:25:
a6:f9:1f:e9
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAR7gMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIzMDM0MzU2WhcNMjUxMjEwMDM0MzU2WjAYMRYw
FAYDVQQDEw02NzY4ZGM4MC1lOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9GRFuzLf7YQFFpKz5YhNSI0m0It5oYSkPp8D/ewA1WN4IKR/rIg0xBc1
5Pjttw9bFs4KqslbPYjgqS2aI6ykzC0AkUrMbWdbhbP1mcSNCZZL2gwhhpyJm2Mm
Ai6R0wVx1Ouykhvr51aLUEJHWR5AuL25VRUlXJcu5QFhDusL5Syv5rtjv4I2Eo4F
9tzg6pv73YYn01sc2M9XY7v+MRrhCj2xPvYMgBWoUzWckw6EsMyVl5wP4drGg2Fq
Rpya0c5GhefzzHlTl+YiaGtmuNR0IYJ4GjunUF9Q7Mm9oeL9QsTb9dPQ0W+OwFXz
YX/l52sEkTMKA7e7j7AUJo0bKxL5AwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIrk
1tFu56dc5po3qg/vKygdY+EvMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNTQwNjFDNEMwRTAxMUVGQkFCRDY5OTc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlnOMA0GCSqGSIb3DQEB
CwUAA4IBAQCwPbcHROOW2aFpaXJ7HkNC4mfYflwZSWgnk29xrc5CKKwoT3D5U84m
Np49uMea66WM3LJwNUF4iMjWNfVHUflh1RCGqkAmuIhg7f6lXZTfsFUhcxjwWMtc
IHc4fxSmjknWUmW637HtlER/UCNiueLpoKjuoYJ284Ytftg0U9rY/dF7K/N2QkLq
FzB6ZBfOk/IoZ8/tYiahTOA+GSukMnwVAWpXLces0wlOWUEusF1tSePHheIZfGFH
P7sC5f+VfShvs9dPE0P9RGzkoj9jak9HOTZT2A5C2uOUhHZob2kdCfoab6zQD225
eZgInosgRW1VMi1KwUDwjEV7RCWm+R/p
-----END CERTIFICATE-----
Generated at Fri Apr 4 01:51:01 2025 by rpki-client