Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/284252EAC8A811EF95DA2986762E951A.roa
File: 284252EAC8A811EF95DA2986762E951A.roa (raw, json)
Hash identifier: 0tGIwUVssyjy9uoVlDsGFbnvMCaVD/bC4PMxpbvGvfk=
Subject key identifier: 45:51:B3:38:97:CF:A3:5B:DC:EB:42:2F:5C:33:E7:3F:46:37:82:0E
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01315C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/284252EAC8A811EF95DA2986762E951A.roa
Signing time: Thu 02 Jan 2025 01:23:23 +0000
ROA not before: Thu 02 Jan 2025 01:23:19 +0000
ROA not after: Sun 12 Dec 2027 01:23:19 +0000
asID: 17561
IP address blocks: 154.220.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78172 (0x1315c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 01:23:19 2025 GMT
Not After : Dec 12 01:23:19 2027 GMT
Subject: CN=6775ea8b-3783
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:71:3d:d8:16:8d:1f:5f:cb:85:1f:49:b6:
9f:30:af:b4:ee:fe:8b:f8:2e:8a:c0:30:2a:72:75:
9d:df:6b:15:54:c4:10:67:bc:01:fa:c7:09:c2:b8:
98:33:b0:80:99:be:44:ca:43:d3:a6:c9:a2:9a:77:
79:8d:3c:1c:d7:49:59:43:50:17:f2:91:a1:9a:23:
98:20:09:39:4c:d9:bc:51:d6:4e:41:2e:1b:b0:8f:
d4:24:43:72:48:5c:9c:a6:32:8d:ca:b0:b2:ea:5a:
23:75:14:3c:a0:49:f0:7d:4a:fc:9a:65:94:6f:a3:
f3:0a:16:09:55:e6:64:d0:14:bc:89:38:9a:42:f5:
8d:f1:bd:20:0e:86:10:25:be:e9:8e:29:1c:22:91:
0e:4c:9a:c0:0d:8a:63:49:d4:2e:22:ac:17:63:b8:
63:43:c9:78:97:5b:75:c3:d9:09:0d:2c:02:3d:cc:
20:74:63:a0:99:6e:47:2b:27:b1:41:12:3d:01:87:
e0:1c:29:ec:30:69:24:e2:60:3a:18:2c:37:2a:e2:
2d:08:19:07:3b:49:f5:f1:46:08:98:db:a6:81:28:
c7:19:ba:2a:11:b7:82:6d:19:bb:1e:98:93:bf:44:
e9:7c:a3:60:7d:d8:69:97:5e:30:1a:32:a1:fe:35:
5e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:51:B3:38:97:CF:A3:5B:DC:EB:42:2F:5C:33:E7:3F:46:37:82:0E
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/284252EAC8A811EF95DA2986762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.137.0/24
Signature Algorithm: sha256WithRSAEncryption
91:ed:94:60:9f:76:33:ff:11:87:1c:c9:f4:ab:b2:be:36:79:
37:3a:bf:fd:ea:42:e0:6d:0b:84:b7:a3:fe:2a:c7:6b:50:d8:
4f:eb:d9:1c:5b:99:6d:71:65:ec:4d:77:2a:a8:21:79:cb:4f:
92:ee:65:db:ba:6f:c7:33:36:a6:ce:4c:08:0e:82:fe:24:15:
5e:3c:93:c3:73:09:60:d9:af:3b:77:63:9d:1b:ae:07:e0:d0:
37:b8:1d:93:bd:59:1c:d1:6e:f3:4b:0a:41:5f:29:46:f2:6a:
25:f1:e7:c6:60:84:81:0a:14:6d:5f:e9:b2:a2:6f:8f:07:69:
27:81:b7:e9:0f:7e:bb:9a:ab:0d:11:11:fc:26:58:0d:69:0b:
79:3d:04:6f:e1:1a:03:63:e5:a7:97:dc:c0:50:8a:2a:9f:97:
64:b2:af:d5:d4:3d:c9:9e:83:db:39:60:6a:bd:f7:ed:e5:45:
2d:eb:21:1c:63:bc:5a:17:e3:98:32:b1:60:4a:fa:33:fe:ca:
80:fb:fd:7a:e3:69:a1:94:b8:67:11:04:f8:37:f0:06:d6:db:
98:f3:46:2a:2a:44:60:d2:78:33:4b:6c:91:7f:00:67:a0:9f:
3a:e6:da:10:bc:64:ef:c6:7c:bd:13:92:08:68:e3:a2:8d:e1:
da:53:92:66
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATFcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMDEyMzE5WhcNMjcxMjEyMDEyMzE5WjAYMRYw
FAYDVQQDEw02Nzc1ZWE4Yi0zNzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArc1xPdgWjR9fy4UfSbafMK+07v6L+C6KwDAqcnWd32sVVMQQZ7wB+scJ
wriYM7CAmb5EykPTpsmimnd5jTwc10lZQ1AX8pGhmiOYIAk5TNm8UdZOQS4bsI/U
JENySFycpjKNyrCy6lojdRQ8oEnwfUr8mmWUb6PzChYJVeZk0BS8iTiaQvWN8b0g
DoYQJb7pjikcIpEOTJrADYpjSdQuIqwXY7hjQ8l4l1t1w9kJDSwCPcwgdGOgmW5H
KyexQRI9AYfgHCnsMGkk4mA6GCw3KuItCBkHO0n18UYImNumgSjHGboqEbeCbRm7
HpiTv0TpfKNgfdhpl14wGjKh/jVetwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEVR
sziXz6Nb3OtCL1wz5z9GN4IOMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yODQyNTJFQUM4QTgxMUVGOTVEQTI5ODY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtyJMA0GCSqGSIb3DQEB
CwUAA4IBAQCR7ZRgn3Yz/xGHHMn0q7K+Nnk3Or/96kLgbQuEt6P+KsdrUNhP69kc
W5ltcWXsTXcqqCF5y0+S7mXbum/HMzamzkwIDoL+JBVePJPDcwlg2a87d2OdG64H
4NA3uB2TvVkc0W7zSwpBXylG8mol8efGYISBChRtX+myom+PB2kngbfpD367mqsN
ERH8JlgNaQt5PQRv4RoDY+Wnl9zAUIoqn5dksq/V1D3JnoPbOWBqvfft5UUt6yEc
Y7xaF+OYMrFgSvoz/sqA+/1642mhlLhnEQT4N/AG1tuY80YqKkRg0ngzS2yRfwBn
oJ865toQvGTvxny9E5IIaOOijeHaU5Jm
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:20:41 2025 by rpki-client