Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4253954AC5E711EFB4B6FD8A762E951A.roa
File: 4253954AC5E711EFB4B6FD8A762E951A.roa (raw, json)
Hash identifier: q4wkYwhsoz+cEL53SzOGjdpn4XqHqxSiPFhgqJd3lhs=
Subject key identifier: 26:74:BD:BC:9F:B5:20:94:05:D8:E6:C4:04:25:C3:C6:CD:B7:A9:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D84
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4253954AC5E711EFB4B6FD8A762E951A.roa
Signing time: Sun 29 Dec 2024 13:17:31 +0000
ROA not before: Sun 29 Dec 2024 13:17:28 +0000
ROA not after: Fri 12 Dec 2025 13:17:28 +0000
asID: 984
IP address blocks: 154.210.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77188 (0x12d84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 13:17:28 2024 GMT
Not After : Dec 12 13:17:28 2025 GMT
Subject: CN=67714beb-3aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:37:fe:88:94:e5:aa:63:a1:c6:f5:c0:3f:
e7:5d:66:f0:66:a8:5b:12:2c:ff:6e:86:5b:29:29:
8f:39:f2:05:d4:26:0e:c4:d0:2f:a7:62:3c:f8:03:
7b:22:b7:bd:f6:c4:d1:99:b7:38:af:74:4c:48:87:
f0:7f:b3:b2:c4:ec:d1:87:ab:da:83:4a:04:79:1d:
5c:d9:f0:54:e9:cd:2a:2a:68:d2:29:a2:f0:e7:b4:
c5:04:47:33:89:2b:81:9b:64:e8:94:28:2c:e1:ec:
ba:7d:c6:10:2f:e7:e7:1c:ed:7c:91:3c:e7:df:63:
ba:58:53:35:aa:9c:0e:01:10:b6:42:38:7f:af:d4:
86:7b:ef:fc:01:f5:20:61:cd:b1:20:a4:1e:ae:08:
f0:21:89:a9:5b:50:17:f2:cd:7b:97:1a:28:81:2c:
59:1e:46:94:0f:89:e7:90:17:f2:1f:b1:ac:66:fb:
2b:20:cf:6d:a7:42:e0:b8:f2:10:3d:1b:aa:06:96:
95:ee:ae:04:92:90:6b:b5:18:d5:08:05:ed:ad:19:
16:5a:c7:ff:81:84:a6:77:13:56:04:64:67:c8:73:
a9:60:99:5c:f5:7d:66:07:48:bf:80:8d:eb:6a:d6:
63:a2:b8:ef:b6:59:d3:46:18:34:54:d1:66:39:3a:
02:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:74:BD:BC:9F:B5:20:94:05:D8:E6:C4:04:25:C3:C6:CD:B7:A9:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/4253954AC5E711EFB4B6FD8A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.241.0/24
Signature Algorithm: sha256WithRSAEncryption
96:f5:48:a8:34:06:0c:b3:03:0d:c1:7e:5c:64:db:fe:b6:e2:
9c:fe:40:7b:40:d3:9c:d7:20:e9:3d:0d:74:f2:cd:61:b9:6a:
47:cb:86:24:ae:55:e2:83:f7:cf:dd:d0:95:dc:05:d4:88:dc:
e1:69:ad:ef:b9:7e:04:d7:88:ca:08:1a:53:97:4a:96:99:14:
d5:98:f2:c4:77:4b:38:af:e6:c7:2f:59:6f:6f:0e:71:ac:ce:
4a:76:60:f7:77:ae:04:e1:7e:da:89:d6:7e:84:1f:cf:b0:3d:
b7:a8:a9:03:0f:71:64:de:85:af:75:40:00:cd:a4:61:46:6c:
ae:09:6e:74:8c:13:e2:98:87:93:da:f1:c3:6c:59:36:f9:fc:
e5:94:4d:be:28:a9:62:ca:da:e8:67:86:1c:d5:60:95:01:2c:
fe:62:ba:ed:cb:57:48:cf:3a:f4:ad:c8:67:35:8f:78:ae:84:
87:8c:1e:82:e6:99:f9:37:c3:ed:90:57:00:1d:12:e3:f9:33:
28:3c:65:d8:e6:ab:ec:1b:48:55:30:62:f5:6d:7b:15:05:5d:
c3:db:53:ad:bf:c0:70:9a:f6:df:7e:4f:01:54:15:a4:21:d2:
6e:8e:ce:db:d2:74:80:5a:c8:14:5c:6a:d3:21:45:41:f3:39:
e2:d6:ed:72
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS2EMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTMxNzI4WhcNMjUxMjEyMTMxNzI4WjAYMRYw
FAYDVQQDEw02NzcxNGJlYi0zYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvQ03/oiU5apjocb1wD/nXWbwZqhbEiz/boZbKSmPOfIF1CYOxNAvp2I8
+AN7Ire99sTRmbc4r3RMSIfwf7OyxOzRh6vag0oEeR1c2fBU6c0qKmjSKaLw57TF
BEcziSuBm2TolCgs4ey6fcYQL+fnHO18kTzn32O6WFM1qpwOARC2Qjh/r9SGe+/8
AfUgYc2xIKQergjwIYmpW1AX8s17lxoogSxZHkaUD4nnkBfyH7GsZvsrIM9tp0Lg
uPIQPRuqBpaV7q4EkpBrtRjVCAXtrRkWWsf/gYSmdxNWBGRnyHOpYJlc9X1mB0i/
gI3ratZjorjvtlnTRhg0VNFmOToCAQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCZ0
vbyftSCUBdjmxAQlw8bNt6mzMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80MjUzOTU0QUM1RTcxMUVGQjRCNkZEOEE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtLxMA0GCSqGSIb3DQEB
CwUAA4IBAQCW9UioNAYMswMNwX5cZNv+tuKc/kB7QNOc1yDpPQ108s1huWpHy4Yk
rlXig/fP3dCV3AXUiNzhaa3vuX4E14jKCBpTl0qWmRTVmPLEd0s4r+bHL1lvbw5x
rM5KdmD3d64E4X7aidZ+hB/PsD23qKkDD3Fk3oWvdUAAzaRhRmyuCW50jBPimIeT
2vHDbFk2+fzllE2+KKliytroZ4Yc1WCVASz+Yrrty1dIzzr0rchnNY94roSHjB6C
5pn5N8PtkFcAHRLj+TMoPGXY5qvsG0hVMGL1bXsVBV3D21Otv8Bwmvbffk8BVBWk
IdJujs7b0nSAWsgUXGrTIUVB8zni1u1y
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:17:11 2025 by rpki-client