Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26C75C56C52611EF8A02E543762E951A.roa
File: 26C75C56C52611EF8A02E543762E951A.roa (raw, json)
Hash identifier: 4SZ6hW8Ve4nSGGODpR1ya/aPfaT1T+X4R7FhLJLODsc=
Subject key identifier: 4A:16:38:26:EB:AD:37:80:C7:8C:26:94:CD:21:2C:BF:0B:52:F6:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012B87
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26C75C56C52611EF8A02E543762E951A.roa
Signing time: Sat 28 Dec 2024 14:15:12 +0000
ROA not before: Sat 28 Dec 2024 14:15:08 +0000
ROA not after: Fri 12 Dec 2025 14:15:08 +0000
asID: 984
IP address blocks: 154.203.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76679 (0x12b87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 14:15:08 2024 GMT
Not After : Dec 12 14:15:08 2025 GMT
Subject: CN=677007f0-b5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b3:58:ec:60:75:2c:ef:56:fc:1a:45:78:94:
2c:8c:e7:3b:2a:aa:e9:1a:62:e5:06:a9:da:86:08:
fb:71:18:0f:8a:8e:6f:b0:48:13:7d:55:d8:cf:25:
7b:b2:f7:c0:3e:35:9b:27:7f:ce:93:20:a6:ee:ee:
f3:4f:07:f1:e5:49:d9:82:db:b8:a0:fc:07:96:69:
ac:ee:9d:c5:cc:06:6b:6e:fe:6d:17:db:82:71:4c:
44:4d:3f:31:05:6f:97:f4:d8:77:d1:a5:dd:f6:4c:
c0:7d:e3:34:81:fc:ef:99:56:2b:d3:84:0a:5c:ee:
dd:0b:9f:38:71:9b:af:25:f2:fa:80:73:59:9b:df:
ba:40:6e:b5:03:e5:a4:4b:55:10:31:e3:f5:8f:41:
8e:18:7d:24:d9:8b:16:4c:8d:29:71:07:f6:3f:47:
c7:51:af:7b:70:38:43:7b:56:4f:f8:5f:73:cc:d8:
5f:fd:c5:74:db:f6:b6:a9:55:0d:77:1d:64:ea:1c:
95:f1:be:c4:c9:68:99:43:a4:eb:95:1f:c2:92:ed:
12:d5:06:9d:0d:52:81:42:fa:06:01:67:2b:70:96:
9a:74:7a:34:b5:e8:96:52:7e:cb:67:68:ad:69:64:
34:6f:8c:fa:64:cf:26:db:2a:a1:f6:a9:a0:47:ef:
5b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:16:38:26:EB:AD:37:80:C7:8C:26:94:CD:21:2C:BF:0B:52:F6:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/26C75C56C52611EF8A02E543762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.249.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:b4:9e:87:ce:16:49:4b:12:d3:4a:87:89:26:4a:c3:1e:45:
9e:f6:47:1f:48:44:5a:06:6a:e6:df:1d:33:6a:fa:58:12:2e:
0f:44:3e:89:e9:ba:a0:31:9b:eb:c1:2e:4f:37:3b:de:8f:59:
e9:91:d8:28:78:a2:40:fa:97:82:f9:fe:9c:22:87:01:1e:34:
6d:94:e7:9c:41:c0:e4:f1:87:85:20:1e:da:87:29:4a:7c:c8:
10:b2:03:ca:25:58:23:a3:de:da:56:ea:32:60:f9:5e:c8:1e:
d3:40:89:4a:03:f1:8b:87:7d:b1:f5:7a:16:c2:83:41:e4:cc:
3e:2e:64:ee:f5:c5:83:9d:65:0a:26:69:42:9a:29:8c:af:61:
55:3e:3c:44:1a:48:fd:af:01:44:19:0c:80:18:52:6b:c0:f3:
b5:aa:97:1e:dd:38:46:77:db:e1:a8:15:a5:d6:7e:7f:b7:52:
28:65:ac:11:61:64:b0:58:3f:dc:5f:b5:c7:37:22:af:69:64:
ad:70:b0:cf:b4:07:3b:4d:65:62:fb:88:48:e4:64:c0:da:bb:
94:69:16:78:5f:70:7c:7d:23:7d:27:ea:09:c9:26:e8:da:d4:
3a:3e:ba:93:b6:c7:52:80:75:d3:54:7d:e5:7d:17:06:13:5c:
d0:f9:9c:6e
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASuHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI4MTQxNTA4WhcNMjUxMjEyMTQxNTA4WjAYMRYw
FAYDVQQDEw02NzcwMDdmMC1iNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAyLNY7GB1LO9W/BpFeJQsjOc7KqrpGmLlBqnahgj7cRgPio5vsEgTfVXY
zyV7svfAPjWbJ3/OkyCm7u7zTwfx5UnZgtu4oPwHlmms7p3FzAZrbv5tF9uCcUxE
TT8xBW+X9Nh30aXd9kzAfeM0gfzvmVYr04QKXO7dC584cZuvJfL6gHNZm9+6QG61
A+WkS1UQMeP1j0GOGH0k2YsWTI0pcQf2P0fHUa97cDhDe1ZP+F9zzNhf/cV02/a2
qVUNdx1k6hyV8b7EyWiZQ6TrlR/Cku0S1QadDVKBQvoGAWcrcJaadHo0teiWUn7L
Z2itaWQ0b4z6ZM8m2yqh9qmgR+9bAwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEoW
OCbrrTeAx4wmlM0hLL8LUvYOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yNkM3NUM1NkM1MjYxMUVGOEEwMkU1NDM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsv5MA0GCSqGSIb3DQEB
CwUAA4IBAQCftJ6HzhZJSxLTSoeJJkrDHkWe9kcfSERaBmrm3x0zavpYEi4PRD6J
6bqgMZvrwS5PNzvej1npkdgoeKJA+peC+f6cIocBHjRtlOecQcDk8YeFIB7ahylK
fMgQsgPKJVgjo97aVuoyYPleyB7TQIlKA/GLh32x9XoWwoNB5Mw+LmTu9cWDnWUK
JmlCmimMr2FVPjxEGkj9rwFEGQyAGFJrwPO1qpce3ThGd9vhqBWl1n5/t1IoZawR
YWSwWD/cX7XHNyKvaWStcLDPtAc7TWVi+4hI5GTA2ruUaRZ4X3B8fSN9J+oJySbo
2tQ6PrqTtsdSgHXTVH3lfRcGE1zQ+Zxu
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:51:52 2025 by rpki-client