Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/295E0308C1BA11EFAC911A79762E951A.roa
File: 295E0308C1BA11EFAC911A79762E951A.roa (raw, json)
Hash identifier: Cb6Aui76m5fx1vP4sfHqyxKB+pbrzhxOg2d0gRc3du4=
Subject key identifier: 09:E6:45:55:F7:57:FA:3C:2E:25:A6:02:D3:DC:BE:2F:D1:6E:A5:E0
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0121E1
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/295E0308C1BA11EFAC911A79762E951A.roa
Signing time: Tue 24 Dec 2024 05:44:37 +0000
ROA not before: Tue 24 Dec 2024 05:44:34 +0000
ROA not after: Wed 10 Dec 2025 05:44:34 +0000
asID: 984
IP address blocks: 154.193.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74209 (0x121e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 24 05:44:34 2024 GMT
Not After : Dec 10 05:44:34 2025 GMT
Subject: CN=676a4a45-234d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ec:a0:0c:b8:43:1b:d3:4f:3b:db:e5:b9:7d:
99:9e:70:c4:6d:34:1f:64:7f:1b:5b:84:bc:9a:71:
f7:cd:42:f4:50:14:43:b9:e6:75:1f:df:f7:5e:a1:
53:72:9a:ff:9b:4f:ec:f8:f0:18:d3:35:6b:64:ac:
ef:f9:7e:28:06:d8:33:e7:9e:ee:ff:4d:a2:96:57:
3f:66:04:40:f2:26:ef:c9:04:19:0b:75:83:ba:cc:
49:4e:06:65:21:4b:15:cd:20:19:af:1e:9d:19:f1:
d8:c0:52:02:13:b3:aa:01:f6:a1:33:f9:71:5e:4a:
85:41:39:bd:c5:51:7f:81:66:52:81:4f:56:89:7b:
10:80:b5:29:93:8d:94:21:8d:a7:ba:b6:25:31:e7:
59:14:6d:a6:6d:b4:47:ee:d9:71:35:0f:7b:7c:08:
b8:6a:5a:5c:52:91:e0:b4:dd:8b:d3:51:1a:2e:bc:
20:bb:d3:e8:d3:37:bb:66:fc:09:ff:3a:f4:d2:5c:
05:9d:74:62:66:54:7e:1e:b4:ff:b2:b0:22:35:7d:
d8:76:f1:71:a1:08:3d:30:b4:b4:b2:42:48:5a:62:
d0:86:16:3c:88:90:03:c8:b6:6f:ae:91:2f:b4:1b:
04:40:08:c0:86:57:ea:d7:36:59:a0:90:49:9a:45:
92:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E6:45:55:F7:57:FA:3C:2E:25:A6:02:D3:DC:BE:2F:D1:6E:A5:E0
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/295E0308C1BA11EFAC911A79762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.193.170.0/24
Signature Algorithm: sha256WithRSAEncryption
99:62:29:28:cb:45:c4:3e:6c:03:f1:b7:73:b2:6f:0f:14:d1:
fd:22:19:e1:1e:5f:42:0b:98:a9:11:e8:1d:c9:e6:63:2c:84:
0b:40:eb:f1:07:b9:2a:7e:8d:96:3d:23:a2:f3:05:3d:74:4b:
49:67:f8:7f:98:01:ad:28:84:0b:8d:15:c3:c4:ed:1c:2c:aa:
be:3e:5b:0f:6b:a4:60:fc:51:72:c0:aa:a2:2a:45:b4:25:63:
b3:da:b2:05:97:80:3d:96:4b:38:34:11:a9:0d:4f:4d:13:22:
5a:d9:e8:c9:34:b6:3f:ec:19:aa:f6:24:14:f1:91:76:43:1b:
cd:ef:30:73:88:4c:57:50:c9:37:c9:d6:d5:f4:22:30:b6:cc:
94:b7:bd:b6:fb:2b:4e:d7:d8:f7:2c:90:09:5b:1e:7f:9a:77:
51:8b:1f:08:9a:ff:2f:35:33:3b:5d:41:8f:9e:27:42:cf:d2:
02:7d:12:96:a2:65:bd:48:88:f3:54:24:84:06:65:67:3b:5b:
d5:40:3e:52:92:c4:c0:d0:1b:a0:26:bb:6e:02:88:69:03:02:
1c:11:7d:6b:8d:97:1c:8e:44:80:37:ff:15:7f:97:e2:f6:53:
b0:46:08:fc:97:11:b9:b4:9b:6e:d5:ad:47:e4:bb:ba:c7:66:
0a:c4:a1:ac
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASHhMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI0MDU0NDM0WhcNMjUxMjEwMDU0NDM0WjAYMRYw
FAYDVQQDEw02NzZhNGE0NS0yMzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnuygDLhDG9NPO9vluX2ZnnDEbTQfZH8bW4S8mnH3zUL0UBRDueZ1H9/3
XqFTcpr/m0/s+PAY0zVrZKzv+X4oBtgz557u/02illc/ZgRA8ibvyQQZC3WDusxJ
TgZlIUsVzSAZrx6dGfHYwFICE7OqAfahM/lxXkqFQTm9xVF/gWZSgU9WiXsQgLUp
k42UIY2nurYlMedZFG2mbbRH7tlxNQ97fAi4alpcUpHgtN2L01EaLrwgu9Po0ze7
ZvwJ/zr00lwFnXRiZlR+HrT/srAiNX3YdvFxoQg9MLS0skJIWmLQhhY8iJADyLZv
rpEvtBsEQAjAhlfq1zZZoJBJmkWSYwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAnm
RVX3V/o8LiWmAtPcvi/RbqXgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yOTVFMDMwOEMxQkExMUVGQUM5MTFBNzk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsGqMA0GCSqGSIb3DQEB
CwUAA4IBAQCZYikoy0XEPmwD8bdzsm8PFNH9IhnhHl9CC5ipEegdyeZjLIQLQOvx
B7kqfo2WPSOi8wU9dEtJZ/h/mAGtKIQLjRXDxO0cLKq+PlsPa6Rg/FFywKqiKkW0
JWOz2rIFl4A9lks4NBGpDU9NEyJa2ejJNLY/7Bmq9iQU8ZF2QxvN7zBziExXUMk3
ydbV9CIwtsyUt722+ytO19j3LJAJWx5/mndRix8Imv8vNTM7XUGPnidCz9ICfRKW
omW9SIjzVCSEBmVnO1vVQD5SksTA0BugJrtuAohpAwIcEX1rjZccjkSAN/8Vf5fi
9lOwRgj8lxG5tJtu1a1H5Lu6x2YKxKGs
-----END CERTIFICATE-----
Generated at Fri Apr 4 11:26:24 2025 by rpki-client