Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48D9B456C54911EFAB7EC99D762E951A.roa
File: 48D9B456C54911EFAB7EC99D762E951A.roa (raw, json)
Hash identifier: Utd7wt6PK1V1Yx6Yyf0bnFAe2q8flezbxPtLx6h6Vns=
Subject key identifier: 87:1F:68:D9:3C:13:31:2A:3E:8B:85:D1:B7:99:D0:CE:F9:15:2F:7C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012CC9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48D9B456C54911EFAB7EC99D762E951A.roa
Signing time: Sat 28 Dec 2024 18:26:42 +0000
ROA not before: Sat 28 Dec 2024 18:26:38 +0000
ROA not after: Sun 12 Dec 2027 18:26:38 +0000
asID: 17561
IP address blocks: 154.209.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77001 (0x12cc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 18:26:38 2024 GMT
Not After : Dec 12 18:26:38 2027 GMT
Subject: CN=677042e2-1d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:fa:e6:ea:c8:bf:b9:90:3e:06:0f:06:ad:0e:
a7:9b:eb:62:74:ee:90:a4:8f:a2:75:96:c1:59:90:
2f:c0:c2:f1:6d:3c:5f:85:6a:e8:5f:72:3d:3d:3a:
6c:14:c5:db:05:bc:4c:30:99:38:d1:7c:a9:97:be:
ae:80:43:30:43:46:d2:8c:2d:83:12:04:88:04:10:
7d:e3:a2:8d:e0:b5:4c:4a:b1:49:a2:d7:31:56:39:
d1:a5:03:05:5b:01:c4:e0:79:61:cf:15:1c:49:e7:
f3:06:a7:a9:76:06:4e:a2:9d:0d:ec:89:a6:29:fd:
93:6d:55:54:86:aa:a2:0e:3f:c7:cf:9a:fa:83:a7:
68:c2:c3:fa:55:4f:d8:cc:1c:db:3c:55:0f:3e:71:
22:df:43:7b:35:3b:6d:e9:74:fd:df:d0:93:58:46:
02:f0:2c:ce:69:0e:9f:56:1f:9c:5b:84:1d:5a:fa:
86:3e:c4:92:df:c4:15:26:76:00:7b:78:4a:ce:e3:
08:03:c2:6c:7e:ee:7b:55:f2:67:ac:50:27:e4:7f:
87:41:22:d8:5e:e1:6f:b2:71:27:e3:c1:a1:63:fc:
08:93:dc:36:fa:2b:04:82:ee:17:b5:02:47:64:b8:
11:cf:3e:53:93:18:69:a9:c8:22:9c:53:d5:db:1c:
93:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:1F:68:D9:3C:13:31:2A:3E:8B:85:D1:B7:99:D0:CE:F9:15:2F:7C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48D9B456C54911EFAB7EC99D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.31.0/24
Signature Algorithm: sha256WithRSAEncryption
53:29:ee:e0:bf:8d:95:4d:f8:38:a7:66:1d:87:2a:60:be:fe:
30:77:36:8a:af:13:94:96:53:a4:8e:7f:2e:a8:70:6f:2f:95:
06:dd:42:e6:26:91:31:89:59:48:c7:c0:5d:bf:05:76:af:35:
b2:54:47:70:0d:30:16:bb:6a:45:7c:74:48:22:7b:5d:71:fb:
88:fd:96:74:11:3d:1c:09:dc:48:8f:d7:b8:7e:ca:41:28:1c:
d7:7b:7b:bb:69:7b:77:16:6c:19:69:5c:76:2c:13:8b:ba:83:
b2:d3:0e:dd:7d:af:4e:23:b5:77:9f:67:c6:60:c3:0d:bf:3c:
62:a0:f0:d5:f1:84:9d:78:24:9b:1d:de:83:2c:6c:75:03:77:
49:4f:30:94:8b:40:e3:4b:a7:99:f3:bb:88:3a:ec:e0:e9:ff:
58:36:33:33:00:e2:00:7e:bc:6e:85:be:04:7f:3f:7d:df:e3:
00:4d:10:ba:9f:00:e9:0b:b4:99:bb:68:3b:50:89:ad:a8:45:
ab:45:fd:07:5f:b4:a0:09:f0:44:50:e3:11:d9:ad:5b:68:e1:
48:65:ea:3a:68:71:ee:1e:22:78:c9:a0:05:d3:01:4d:69:dc:
40:c5:fb:a6:ec:b7:26:a1:d4:e1:ac:4f:11:97:08:d4:40:7b:
25:31:1e:6d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASzJMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI4MTgyNjM4WhcNMjcxMjEyMTgyNjM4WjAYMRYw
FAYDVQQDEw02NzcwNDJlMi0xZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAv/rm6si/uZA+Bg8GrQ6nm+tidO6QpI+idZbBWZAvwMLxbTxfhWroX3I9
PTpsFMXbBbxMMJk40Xypl76ugEMwQ0bSjC2DEgSIBBB946KN4LVMSrFJotcxVjnR
pQMFWwHE4HlhzxUcSefzBqepdgZOop0N7ImmKf2TbVVUhqqiDj/Hz5r6g6dowsP6
VU/YzBzbPFUPPnEi30N7NTtt6XT939CTWEYC8CzOaQ6fVh+cW4QdWvqGPsSS38QV
JnYAe3hKzuMIA8Jsfu57VfJnrFAn5H+HQSLYXuFvsnEn48GhY/wIk9w2+isEgu4X
tQJHZLgRzz5TkxhpqcginFPV2xyTdQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIcf
aNk8EzEqPouF0beZ0M75FS98MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80OEQ5QjQ1NkM1NDkxMUVGQUI3RUM5OUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtEfMA0GCSqGSIb3DQEB
CwUAA4IBAQBTKe7gv42VTfg4p2Ydhypgvv4wdzaKrxOUllOkjn8uqHBvL5UG3ULm
JpExiVlIx8BdvwV2rzWyVEdwDTAWu2pFfHRIIntdcfuI/ZZ0ET0cCdxIj9e4fspB
KBzXe3u7aXt3FmwZaVx2LBOLuoOy0w7dfa9OI7V3n2fGYMMNvzxioPDV8YSdeCSb
Hd6DLGx1A3dJTzCUi0DjS6eZ87uIOuzg6f9YNjMzAOIAfrxuhb4Efz993+MATRC6
nwDpC7SZu2g7UImtqEWrRf0HX7SgCfBEUOMR2a1baOFIZeo6aHHuHiJ4yaAF0wFN
adxAxfum7LcmodThrE8RlwjUQHslMR5t
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:21:09 2025 by rpki-client