Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DB2BFD0C42011EF929D7E4E762E951A.roa
File: 2DB2BFD0C42011EF929D7E4E762E951A.roa (raw, json)
Hash identifier: uZJpMklDqLBoz9euV2tPXEOseN9xkb/R3+GP5AOrM/E=
Subject key identifier: FF:DD:E2:1F:15:5A:B3:3C:71:08:F4:EC:94:E0:C9:A2:02:53:0B:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0129B7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DB2BFD0C42011EF929D7E4E762E951A.roa
Signing time: Fri 27 Dec 2024 06:59:56 +0000
ROA not before: Fri 27 Dec 2024 06:59:52 +0000
ROA not after: Sun 12 Dec 2027 06:59:52 +0000
asID: 17561
IP address blocks: 154.201.47.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76215 (0x129b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 27 06:59:52 2024 GMT
Not After : Dec 12 06:59:52 2027 GMT
Subject: CN=676e506c-0d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:36:86:52:6c:7b:ab:64:e6:34:77:4f:92:c4:
0b:7f:a0:f9:fc:2d:8f:0e:27:73:76:07:89:5e:04:
ec:d7:8d:9a:66:88:5e:bd:a8:72:ed:8e:49:1a:23:
b9:f8:00:a9:1d:32:9b:69:62:a9:5f:d0:3d:fa:6b:
e6:12:fb:33:81:e8:0b:1f:6b:b1:a0:8a:c9:a2:27:
5d:b2:70:a9:4d:83:b6:bc:53:1b:a8:5b:a9:97:25:
09:7f:be:da:f3:14:17:20:e8:4e:9f:0b:54:f5:31:
85:75:f2:4b:30:12:3d:11:c2:13:54:78:1a:1f:94:
75:66:09:7d:d5:a2:95:db:30:c1:48:04:ff:39:cf:
99:ba:9a:63:49:35:1e:6a:9d:1e:a1:0e:5f:37:65:
77:e4:79:6a:ea:80:c9:00:1a:93:86:b7:bb:6d:70:
9b:67:1a:8b:35:31:85:0d:cf:2c:06:d6:39:ff:62:
92:5f:c2:b3:e8:38:9e:e2:65:d3:1d:be:d8:78:75:
3e:34:71:1c:6a:f6:1a:1b:b1:e5:cc:33:52:91:7c:
da:bf:35:7a:aa:eb:69:21:76:34:43:4f:77:7c:8e:
b2:81:45:53:a5:8c:7b:52:95:16:78:c8:d2:06:41:
c1:00:8b:70:61:a8:6a:e9:31:ab:48:64:a5:a8:0b:
3a:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:DD:E2:1F:15:5A:B3:3C:71:08:F4:EC:94:E0:C9:A2:02:53:0B:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/2DB2BFD0C42011EF929D7E4E762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.201.47.0/24
Signature Algorithm: sha256WithRSAEncryption
85:3b:30:15:c3:2f:86:3a:f7:10:0d:d5:99:9f:0f:2c:0e:08:
33:6b:4f:05:4d:00:a4:c9:29:b4:7d:ef:2c:2b:7a:60:82:1f:
94:73:f8:5b:54:45:7c:c0:74:c7:30:d4:f2:79:ea:c8:5c:54:
36:56:65:53:f4:10:ba:9d:ff:23:a4:e7:aa:0e:ae:d8:35:41:
19:74:43:0e:c4:f8:5e:b0:c1:04:09:47:d5:45:a8:e3:cd:08:
8e:e6:33:6d:ea:8f:42:80:bf:ee:79:17:a3:8f:e4:da:26:66:
51:67:62:47:f4:ea:f5:17:bf:da:56:2a:49:28:f9:03:c3:cb:
f3:22:cb:f0:1a:cc:32:91:33:7d:d1:e7:58:09:a8:26:4a:7e:
79:32:83:15:bf:47:5b:96:14:fa:b6:8f:b7:5f:49:09:ea:e9:
95:8d:67:2a:cb:7f:a4:d6:1e:cb:b5:4b:07:27:4a:ec:e7:1f:
09:03:0f:04:c0:aa:07:47:1e:ae:a6:21:37:f2:38:f5:b0:ba:
c8:2b:1b:ea:50:0d:45:37:79:44:cf:f4:be:8e:5a:b2:c3:af:
ec:b2:75:52:a4:84:ef:dd:43:9e:fa:77:71:8a:0b:fc:cf:2b:
4f:f9:22:26:b1:23:62:e9:66:8d:12:ff:28:29:c0:29:67:42:
a3:79:a3:c6
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASm3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI3MDY1OTUyWhcNMjcxMjEyMDY1OTUyWjAYMRYw
FAYDVQQDEw02NzZlNTA2Yy0wZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzzaGUmx7q2TmNHdPksQLf6D5/C2PDidzdgeJXgTs142aZohevahy7Y5J
GiO5+ACpHTKbaWKpX9A9+mvmEvszgegLH2uxoIrJoiddsnCpTYO2vFMbqFuplyUJ
f77a8xQXIOhOnwtU9TGFdfJLMBI9EcITVHgaH5R1Zgl91aKV2zDBSAT/Oc+Zuppj
STUeap0eoQ5fN2V35Hlq6oDJABqThre7bXCbZxqLNTGFDc8sBtY5/2KSX8Kz6Die
4mXTHb7YeHU+NHEcavYaG7HlzDNSkXzavzV6qutpIXY0Q093fI6ygUVTpYx7UpUW
eMjSBkHBAItwYahq6TGrSGSlqAs6AQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFP/d
4h8VWrM8cQj07JTgyaICUwt8MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8yREIyQkZEMEM0MjAxMUVGOTI5RDdFNEU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmskvMA0GCSqGSIb3DQEB
CwUAA4IBAQCFOzAVwy+GOvcQDdWZnw8sDggza08FTQCkySm0fe8sK3pggh+Uc/hb
VEV8wHTHMNTyeerIXFQ2VmVT9BC6nf8jpOeqDq7YNUEZdEMOxPhesMEECUfVRajj
zQiO5jNt6o9CgL/ueRejj+TaJmZRZ2JH9Or1F7/aVipJKPkDw8vzIsvwGswykTN9
0edYCagmSn55MoMVv0dblhT6to+3X0kJ6umVjWcqy3+k1h7LtUsHJ0rs5x8JAw8E
wKoHRx6upiE38jj1sLrIKxvqUA1FN3lEz/S+jlqyw6/ssnVSpITv3UOe+ndxigv8
zytP+SImsSNi6WaNEv8oKcApZ0KjeaPG
-----END CERTIFICATE-----
Generated at Thu Apr 10 08:40:23 2025 by rpki-client