Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/368F22A0C5E811EF8F415F8F762E951A.roa
File: 368F22A0C5E811EF8F415F8F762E951A.roa (raw, json)
Hash identifier: 7PBWP3+efYULQbSmgk6cKAK6fAvMu3f77e5HsngfWfA=
Subject key identifier: FB:4D:D3:D6:2F:A6:F2:80:AA:50:33:2D:E6:B6:E1:47:17:8C:CE:22
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D8C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/368F22A0C5E811EF8F415F8F762E951A.roa
Signing time: Sun 29 Dec 2024 13:24:21 +0000
ROA not before: Sun 29 Dec 2024 13:24:17 +0000
ROA not after: Fri 12 Dec 2025 13:24:17 +0000
asID: 984
IP address blocks: 154.210.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77196 (0x12d8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 13:24:17 2024 GMT
Not After : Dec 12 13:24:17 2025 GMT
Subject: CN=67714d85-fd86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:38:92:ce:9f:86:e3:1e:b7:29:0a:e3:05:3d:
af:7c:77:42:58:85:4b:b7:21:3c:d5:99:5e:dc:69:
b1:d0:d1:8f:b9:75:6e:93:5b:29:37:7d:68:c2:33:
6a:10:e7:07:33:05:dc:7f:ce:54:92:9c:55:78:60:
c7:59:ba:ae:9b:65:48:c4:ef:35:a3:25:4e:91:ec:
39:64:2d:b5:df:e2:fe:78:6a:82:33:53:5d:8b:b5:
b8:c5:f6:90:7a:39:7c:e1:2b:12:f2:0b:49:70:8e:
b6:ad:ae:62:60:2d:78:68:d3:e7:09:f4:a6:e1:55:
12:0c:61:10:e8:54:e0:d6:ca:de:82:13:84:a7:7e:
37:9b:47:9d:69:55:df:bd:7c:4d:52:12:0d:05:c0:
9b:b7:05:07:87:18:63:02:0c:d9:4c:79:33:96:ed:
fa:e4:2e:a7:97:c0:7b:ea:94:2e:a1:67:4e:94:e7:
31:39:bf:d8:3a:01:ba:b5:62:9e:f9:b8:cf:5c:60:
4e:b1:26:e9:b9:b9:80:ff:3b:ff:80:bf:cc:ad:90:
98:3f:92:44:cd:a9:d3:74:ef:bf:44:05:00:56:1f:
bd:65:a1:92:56:07:31:5b:93:97:26:28:73:e9:82:
f7:dc:41:db:79:49:a0:d1:c1:fa:e4:f0:cd:4f:e8:
bb:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4D:D3:D6:2F:A6:F2:80:AA:50:33:2D:E6:B6:E1:47:17:8C:CE:22
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/368F22A0C5E811EF8F415F8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.245.0/24
Signature Algorithm: sha256WithRSAEncryption
99:f3:9e:c2:d6:91:09:16:17:98:61:be:ea:fe:c8:cc:ca:5c:
a2:3b:43:ea:24:0d:56:d9:75:0d:0b:36:e9:86:6f:2c:58:d6:
7e:9c:5a:fc:95:e4:4b:87:e1:51:48:dc:32:2b:aa:15:73:c1:
00:35:36:ef:7e:d6:48:78:79:19:63:51:da:cd:9d:2c:c7:0e:
21:ff:84:f2:f0:f0:29:d9:2b:1f:5b:04:2d:91:b8:81:35:b5:
1d:29:00:6a:52:2b:3b:82:bd:50:1e:44:93:6e:3f:10:a7:a8:
60:b1:b0:62:e8:94:6b:4a:8c:70:c6:ce:ed:de:80:c8:bd:09:
0a:45:86:dd:2d:d1:56:b8:aa:62:df:0a:69:06:cb:ee:78:63:
6d:1a:09:d3:62:e6:67:4c:f0:c2:5a:5d:fd:7a:08:07:e7:1c:
97:66:0f:d7:51:21:c2:84:d8:fc:63:c0:e6:c7:4a:35:a0:9e:
44:80:56:60:5a:77:82:7a:6e:75:6b:37:d9:1e:0b:3c:a3:c8:
68:be:a6:26:6c:de:6b:d5:de:a7:36:39:43:a9:e6:de:46:ed:
b9:ee:bf:5b:e8:88:04:23:8c:71:bc:25:00:21:df:80:90:7d:
1c:03:8f:62:77:cf:c6:17:70:e8:eb:bf:99:36:f0:8c:5f:d5:
76:8f:04:e0
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS2MMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTMyNDE3WhcNMjUxMjEyMTMyNDE3WjAYMRYw
FAYDVQQDEw02NzcxNGQ4NS1mZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvziSzp+G4x63KQrjBT2vfHdCWIVLtyE81Zle3Gmx0NGPuXVuk1spN31o
wjNqEOcHMwXcf85UkpxVeGDHWbqum2VIxO81oyVOkew5ZC213+L+eGqCM1Ndi7W4
xfaQejl84SsS8gtJcI62ra5iYC14aNPnCfSm4VUSDGEQ6FTg1sreghOEp343m0ed
aVXfvXxNUhINBcCbtwUHhxhjAgzZTHkzlu365C6nl8B76pQuoWdOlOcxOb/YOgG6
tWKe+bjPXGBOsSbpubmA/zv/gL/MrZCYP5JEzanTdO+/RAUAVh+9ZaGSVgcxW5OX
Jihz6YL33EHbeUmg0cH65PDNT+i7LwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPtN
09YvpvKAqlAzLea24UcXjM4iMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC8zNjhGMjJBMEM1RTgxMUVGOEY0MTVGOEY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtL1MA0GCSqGSIb3DQEB
CwUAA4IBAQCZ857C1pEJFheYYb7q/sjMylyiO0PqJA1W2XUNCzbphm8sWNZ+nFr8
leRLh+FRSNwyK6oVc8EANTbvftZIeHkZY1HazZ0sxw4h/4Ty8PAp2SsfWwQtkbiB
NbUdKQBqUis7gr1QHkSTbj8Qp6hgsbBi6JRrSoxwxs7t3oDIvQkKRYbdLdFWuKpi
3wppBsvueGNtGgnTYuZnTPDCWl39eggH5xyXZg/XUSHChNj8Y8Dmx0o1oJ5EgFZg
WneCem51azfZHgs8o8hovqYmbN5r1d6nNjlDqebeRu257r9b6IgEI4xxvCUAId+A
kH0cA49id8/GF3Do67+ZNvCMX9V2jwTg
-----END CERTIFICATE-----
Generated at Wed Apr 9 17:17:26 2025 by rpki-client