Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48FE8080E23E11EF8E75D94D762E951A.roa
File: 48FE8080E23E11EF8E75D94D762E951A.roa (raw, json)
Hash identifier: 2USdd1gd9Z3Ic6bn0xlM76/hzseth/U9qKmMGK0KF/w=
Subject key identifier: 91:AC:91:9B:3D:39:23:49:8D:F3:9E:17:AB:8A:55:26:98:50:68:5F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01501D
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48FE8080E23E11EF8E75D94D762E951A.roa
Signing time: Mon 03 Feb 2025 14:51:01 +0000
ROA not before: Mon 03 Feb 2025 14:50:57 +0000
ROA not after: Wed 30 Apr 2025 14:50:57 +0000
asID: 150008
IP address blocks: 154.209.253.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86045 (0x1501d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 3 14:50:57 2025 GMT
Not After : Apr 30 14:50:57 2025 GMT
Subject: CN=67a0d7d5-a9db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:97:db:62:e9:88:50:2e:2e:b4:54:0a:e2:69:
93:18:94:97:e0:a1:c0:35:57:a4:a6:42:cb:a4:c1:
d4:a6:a6:73:8e:43:9d:90:00:9a:ff:fe:46:aa:c9:
2e:e6:7e:6e:39:72:1c:89:76:67:4d:d6:f2:b0:eb:
17:73:fe:a8:4c:97:e1:8c:53:e0:93:0e:cb:78:e6:
8b:be:03:6a:a4:43:57:39:1e:df:75:3a:fa:ec:84:
d2:60:c4:98:3c:d0:ac:9a:73:63:f1:13:64:fd:8d:
c8:df:e5:84:00:8c:cf:ec:07:c2:c7:f0:56:22:2b:
b3:48:14:04:36:6e:f9:ec:13:cf:b2:9e:05:a4:ce:
43:21:27:36:a1:3e:e4:05:b9:01:74:97:8f:d0:88:
7e:56:dc:e9:0c:6d:9e:94:61:0e:04:da:e1:04:bd:
67:dc:bb:4a:08:2f:06:8d:ea:39:b9:ab:9b:25:0f:
d2:4c:de:43:23:12:0b:12:1f:b6:4d:15:18:7f:b2:
14:71:3f:97:91:4e:de:9a:f4:71:43:c9:a0:05:6d:
25:6c:89:78:c7:8d:a5:12:d8:e6:a1:97:ed:c1:4b:
71:c6:b6:0e:e7:bb:c1:07:e1:4f:be:8e:d8:68:ff:
3e:bf:79:01:40:9d:76:a5:32:24:7d:1a:b7:f4:c0:
90:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:AC:91:9B:3D:39:23:49:8D:F3:9E:17:AB:8A:55:26:98:50:68:5F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/48FE8080E23E11EF8E75D94D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.209.253.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:7a:aa:46:a6:55:50:4f:91:9e:38:1d:20:2e:aa:4b:be:58:
38:d2:11:f8:12:6e:55:9d:21:3c:1f:0e:0c:46:c9:46:3a:2d:
1c:a8:48:05:3e:18:4b:0b:ca:27:a6:87:44:20:1e:7a:6b:4f:
ae:c0:71:d9:52:e4:4a:b3:83:84:14:2c:7c:d4:2f:1c:c9:31:
74:e2:c8:af:68:61:9e:0a:96:99:17:d6:72:c5:ca:cb:a3:23:
91:87:d0:b3:18:9d:f3:1b:36:74:3d:99:fe:81:9b:1c:13:4e:
c7:92:7d:88:a4:76:34:5f:bc:da:ce:30:a1:ac:ad:62:d4:07:
d1:9e:bb:01:72:b6:01:b4:ff:65:3a:77:fb:49:9d:69:c7:43:
25:a2:6f:81:8e:a3:4a:a5:6a:64:3a:8c:e8:57:86:ea:d3:6e:
1a:e8:f1:62:57:db:52:8e:0e:28:b4:aa:9e:22:b4:84:49:f9:
1a:84:c4:89:58:ab:c4:4d:d6:3c:3e:40:83:f3:a4:85:1c:c8:
2c:8b:62:a8:19:7a:99:1b:0f:68:e2:2f:4f:ed:bd:28:b3:5a:
54:87:21:c5:81:3d:c0:41:78:5f:2b:70:63:c7:12:c2:ee:58:
a3:55:a5:c9:ec:84:59:ba:96:9c:1e:62:7a:03:c8:a5:04:89:
61:28:5c:ef
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAVAdMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjAzMTQ1MDU3WhcNMjUwNDMwMTQ1MDU3WjAYMRYw
FAYDVQQDEw02N2EwZDdkNS1hOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEApJfbYumIUC4utFQK4mmTGJSX4KHANVekpkLLpMHUpqZzjkOdkACa//5G
qsku5n5uOXIciXZnTdbysOsXc/6oTJfhjFPgkw7LeOaLvgNqpENXOR7fdTr67ITS
YMSYPNCsmnNj8RNk/Y3I3+WEAIzP7AfCx/BWIiuzSBQENm757BPPsp4FpM5DISc2
oT7kBbkBdJeP0Ih+VtzpDG2elGEOBNrhBL1n3LtKCC8Gjeo5uaubJQ/STN5DIxIL
Eh+2TRUYf7IUcT+XkU7emvRxQ8mgBW0lbIl4x42lEtjmoZftwUtxxrYO57vBB+FP
vo7YaP8+v3kBQJ12pTIkfRq39MCQaQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJGs
kZs9OSNJjfOeF6uKVSaYUGhfMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC80OEZFODA4MEUyM0UxMUVGOEU3NUQ5NEQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtH9MA0GCSqGSIb3DQEB
CwUAA4IBAQDVeqpGplVQT5GeOB0gLqpLvlg40hH4Em5VnSE8Hw4MRslGOi0cqEgF
PhhLC8onpodEIB56a0+uwHHZUuRKs4OEFCx81C8cyTF04sivaGGeCpaZF9ZyxcrL
oyORh9CzGJ3zGzZ0PZn+gZscE07Hkn2IpHY0X7zazjChrK1i1AfRnrsBcrYBtP9l
Onf7SZ1px0Mlom+BjqNKpWpkOozoV4bq024a6PFiV9tSjg4otKqeIrSESfkahMSJ
WKvETdY8PkCD86SFHMgsi2KoGXqZGw9o4i9P7b0os1pUhyHFgT3AQXhfK3BjxxLC
7lijVaXJ7IRZupacHmJ6A8ilBIlhKFzv
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:21 2025 by rpki-client