Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/260E681EF47811EFBACD8A4D762E951A.roa
File: 260E681EF47811EFBACD8A4D762E951A.roa (raw, json)
Hash identifier: BUHNJDF+KXu82lUl3Ag+lGgrS+4BW1evGJzraIw5zXY=
Subject key identifier: 24:13:4B:63:FE:7F:C4:CD:9F:9A:E3:67:D3:E7:85:40:1F:D4:FF:C8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0165A5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/260E681EF47811EFBACD8A4D762E951A.roa
Signing time: Wed 26 Feb 2025 19:30:34 +0000
ROA not before: Wed 26 Feb 2025 19:30:31 +0000
ROA not after: Sat 19 Feb 2028 19:30:31 +0000
asID: 17561
IP address blocks: 154.218.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91557 (0x165a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 19:30:31 2025 GMT
Not After : Feb 19 19:30:31 2028 GMT
Subject: CN=67bf6bda-fb40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:37:75:41:bd:8e:9e:79:fe:85:fe:f0:64:a4:
df:9b:bf:bf:2b:e5:e8:85:75:bb:9b:0f:6a:be:df:
83:ed:a1:42:f4:80:3e:5e:b2:34:d2:e7:c9:e6:94:
23:23:d0:68:14:bf:c2:89:81:a7:0e:63:fa:8f:42:
d9:a4:a3:a4:24:47:84:ca:8b:a7:4e:e5:91:4e:7a:
47:cd:d1:54:7d:bb:f2:5d:80:c0:96:47:ed:15:c3:
21:49:6b:8f:49:da:6b:31:85:b6:e4:b4:4f:48:8e:
b2:41:ea:4b:af:35:6c:ef:aa:92:88:36:d9:25:c4:
09:65:71:09:40:8f:b9:22:fa:c0:d0:6a:47:a2:0f:
a3:bf:50:45:7b:e7:74:52:88:1b:7d:97:84:10:a5:
02:da:65:f5:34:cb:45:cb:29:7e:c7:5b:57:a7:c3:
8d:14:38:c5:a5:b5:57:82:59:f6:91:64:f1:7f:73:
3e:0c:0a:62:a1:ee:02:0b:d5:49:73:ca:c9:ca:5c:
ee:8d:99:0f:93:44:f8:f5:31:59:b3:f0:32:22:04:
7b:3c:f0:cb:b3:a7:9a:91:d4:4c:73:17:7f:36:27:
af:27:d4:32:e6:b6:a0:bd:3f:f1:86:56:f1:b0:41:
65:37:8f:53:93:56:8c:1d:b7:d7:ff:ab:4d:c0:0e:
16:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:13:4B:63:FE:7F:C4:CD:9F:9A:E3:67:D3:E7:85:40:1F:D4:FF:C8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/260E681EF47811EFBACD8A4D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.45.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:00:3a:2a:a1:74:9a:01:c7:59:1b:bf:d6:f7:87:24:74:9d:
33:24:f2:ba:74:fe:48:aa:cf:77:2a:20:fb:91:33:00:21:32:
d7:9e:eb:2a:2e:8e:aa:8e:bf:3c:1c:12:cb:07:25:e8:29:11:
8d:b5:31:9d:1a:0d:a4:d6:15:eb:da:c6:14:fd:cc:58:18:b2:
4e:f0:df:13:57:7f:ab:9b:77:0f:22:ab:fc:92:b3:a3:d5:cd:
64:25:0e:3a:9d:d2:82:de:24:3c:58:ba:66:0c:35:ce:c5:58:
14:28:e6:82:e0:74:b2:c6:f7:57:f5:13:e6:ca:56:a6:e2:ff:
80:d7:09:1e:03:53:85:53:a6:62:a6:e2:2d:e8:cc:33:60:bf:
11:6f:9d:43:5d:6c:c8:25:40:46:c5:59:d1:4b:e8:3c:19:08:
48:f1:cb:c1:b3:f2:83:b9:b9:a5:4a:9d:4b:9a:d5:d0:8f:5f:
6d:4b:93:e2:f4:58:35:08:3a:4c:63:b6:53:3b:a5:fe:d5:67:
b5:fe:55:dd:a2:84:a0:b4:3b:82:a4:a2:e6:69:a6:4d:d9:90:
5a:db:f1:87:af:21:77:e8:df:54:05:d5:ad:db:6a:78:d1:bf:
b8:7f:95:2f:0a:6b:0f:e5:6c:e6:43:c7:0e:c3:8d:e6:68:92:
d9:96:ea:e6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWWlMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI2MTkzMDMxWhcNMjgwMjE5MTkzMDMxWjAYMRYw
FAYDVQQDEw02N2JmNmJkYS1mYjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArDd1Qb2Onnn+hf7wZKTfm7+/K+XohXW7mw9qvt+D7aFC9IA+XrI00ufJ
5pQjI9BoFL/CiYGnDmP6j0LZpKOkJEeEyounTuWRTnpHzdFUfbvyXYDAlkftFcMh
SWuPSdprMYW25LRPSI6yQepLrzVs76qSiDbZJcQJZXEJQI+5IvrA0GpHog+jv1BF
e+d0UogbfZeEEKUC2mX1NMtFyyl+x1tXp8ONFDjFpbVXgln2kWTxf3M+DApioe4C
C9VJc8rJylzujZkPk0T49TFZs/AyIgR7PPDLs6eakdRMcxd/NievJ9Qy5ragvT/x
hlbxsEFlN49Tk1aMHbfX/6tNwA4WmQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCQT
S2P+f8TNn5rjZ9PnhUAf1P/IMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNjBFNjgxRUY0NzgxMUVGQkFDRDhBNEQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtotMA0GCSqGSIb3DQEB
CwUAA4IBAQB7ADoqoXSaAcdZG7/W94ckdJ0zJPK6dP5Iqs93KiD7kTMAITLXnusq
Lo6qjr88HBLLByXoKRGNtTGdGg2k1hXr2sYU/cxYGLJO8N8TV3+rm3cPIqv8krOj
1c1kJQ46ndKC3iQ8WLpmDDXOxVgUKOaC4HSyxvdX9RPmylam4v+A1wkeA1OFU6Zi
puIt6MwzYL8Rb51DXWzIJUBGxVnRS+g8GQhI8cvBs/KDubmlSp1LmtXQj19tS5Pi
9Fg1CDpMY7ZTO6X+1We1/lXdooSgtDuCpKLmaaZN2ZBa2/GHryF36N9UBdWt22p4
0b+4f5UvCmsP5WzmQ8cOw43maJLZlurm
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:26:25 2025 by rpki-client