Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C88EACF61B11EFB0CDF489762E951A.roa
File: 53C88EACF61B11EFB0CDF489762E951A.roa (raw, json)
Hash identifier: ANxbDwGpZtKAgla51RFn04tGmpxNO8N267ELg2XXeIg=
Subject key identifier: 76:DE:55:C7:5D:55:CA:19:58:F2:02:49:65:EB:7E:2E:97:ED:43:FE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016C47
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C88EACF61B11EFB0CDF489762E951A.roa
Signing time: Fri 28 Feb 2025 21:31:10 +0000
ROA not before: Fri 28 Feb 2025 21:31:06 +0000
ROA not after: Sun 13 Apr 2025 21:31:06 +0000
asID: 138915
IP address blocks: 154.206.58.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93255 (0x16c47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 28 21:31:06 2025 GMT
Not After : Apr 13 21:31:06 2025 GMT
Subject: CN=67c22b1e-637c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:8f:7b:5e:f6:34:93:df:3b:be:c8:0a:11:76:
39:7c:59:47:72:46:37:0e:cf:5a:e5:38:9c:92:d4:
46:59:20:9a:fa:f2:b2:7f:40:98:b6:c4:24:0d:59:
6e:b5:ff:96:04:83:25:7d:fa:1e:6b:11:e3:13:6e:
d1:00:77:24:20:57:12:7f:3c:41:59:b1:6d:7e:10:
31:97:f9:b4:1b:4e:10:c2:dd:15:4a:ef:d8:57:d9:
5e:19:af:8f:4e:61:a1:66:7e:2f:50:46:c6:9c:27:
71:e5:ff:f6:e8:31:6f:76:e9:70:16:49:75:e3:d2:
c2:f1:28:bc:54:18:e6:ad:4a:44:da:12:e1:31:b0:
3e:93:b0:5e:d4:48:3d:a3:66:2a:56:20:1d:de:97:
87:52:7d:5e:f2:4f:49:b6:fa:ca:52:25:ec:21:4a:
e4:d8:26:51:68:03:13:3c:a4:7d:52:1d:16:38:f2:
d1:b5:1b:95:0b:b9:e2:bc:84:16:41:59:5e:29:bf:
66:3d:53:fb:36:a1:82:68:37:96:1d:26:f4:ac:5c:
86:7e:c3:79:11:47:3e:e4:40:54:36:aa:10:f5:3a:
a2:19:23:81:0d:16:40:ef:95:1a:05:ae:bb:11:dd:
e9:e6:ff:05:c7:97:cf:ff:89:a6:e6:36:46:82:51:
d3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DE:55:C7:5D:55:CA:19:58:F2:02:49:65:EB:7E:2E:97:ED:43:FE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/53C88EACF61B11EFB0CDF489762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.206.58.0/23
Signature Algorithm: sha256WithRSAEncryption
70:d2:ef:c0:56:04:d7:af:d7:53:48:b0:08:52:15:82:53:4a:
ab:71:a3:46:7a:e5:33:ef:c8:14:79:8a:bb:34:72:a7:fc:c5:
b1:5c:5f:69:d8:83:2d:2a:19:07:5a:0a:65:f2:86:eb:8b:ed:
8f:86:47:01:85:62:20:0a:e0:33:89:d8:fd:6c:7e:95:4a:73:
71:ef:f6:1a:85:3b:c9:d0:ce:9c:45:9d:66:f5:65:4d:2c:21:
f0:5e:e6:90:2b:92:97:5a:69:28:72:0c:00:ae:c6:60:99:cb:
be:18:11:38:dc:4a:55:5f:1f:a3:e2:fe:dc:cd:0c:98:02:04:
b4:8c:87:34:39:f5:02:ce:f9:da:2b:74:d2:db:16:d7:f9:73:
5a:60:b0:91:9e:8e:4b:3c:08:cf:53:c9:7b:87:b2:0a:92:f3:
3a:ef:ba:aa:c9:53:d1:c7:b6:b9:e8:3c:b2:6d:dc:99:ff:ca:
99:8d:d1:f1:7b:6d:65:f5:73:ee:58:69:b9:ad:52:7c:f5:a8:
6b:61:a1:53:12:8c:31:37:8f:4a:b1:81:49:ee:aa:6d:6d:a1:
46:c9:5f:8a:ef:15:bc:1e:a8:5f:71:97:03:85:df:70:db:70:
29:b2:81:10:44:39:2e:14:a7:9e:1b:da:82:5a:85:56:30:e0:
f2:64:73:25
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWxHMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI4MjEzMTA2WhcNMjUwNDEzMjEzMTA2WjAYMRYw
FAYDVQQDEw02N2MyMmIxZS02MzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0Y97XvY0k987vsgKEXY5fFlHckY3Ds9a5TicktRGWSCa+vKyf0CYtsQk
DVlutf+WBIMlffoeaxHjE27RAHckIFcSfzxBWbFtfhAxl/m0G04Qwt0VSu/YV9le
Ga+PTmGhZn4vUEbGnCdx5f/26DFvdulwFkl149LC8Si8VBjmrUpE2hLhMbA+k7Be
1Eg9o2YqViAd3peHUn1e8k9JtvrKUiXsIUrk2CZRaAMTPKR9Uh0WOPLRtRuVC7ni
vIQWQVleKb9mPVP7NqGCaDeWHSb0rFyGfsN5EUc+5EBUNqoQ9TqiGSOBDRZA75Ua
Ba67Ed3p5v8Fx5fP/4mm5jZGglHT9QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFHbe
VcddVcoZWPICSWXrfi6X7UP+MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81M0M4OEVBQ0Y2MUIxMUVGQjBDREY0ODk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBms46MA0GCSqGSIb3DQEB
CwUAA4IBAQBw0u/AVgTXr9dTSLAIUhWCU0qrcaNGeuUz78gUeYq7NHKn/MWxXF9p
2IMtKhkHWgpl8obri+2PhkcBhWIgCuAzidj9bH6VSnNx7/YahTvJ0M6cRZ1m9WVN
LCHwXuaQK5KXWmkocgwArsZgmcu+GBE43EpVXx+j4v7czQyYAgS0jIc0OfUCzvna
K3TS2xbX+XNaYLCRno5LPAjPU8l7h7IKkvM677qqyVPRx7a56DyybdyZ/8qZjdHx
e21l9XPuWGm5rVJ89ahrYaFTEowxN49KsYFJ7qptbaFGyV+K7xW8HqhfcZcDhd9w
23ApsoEQRDkuFKeeG9qCWoVWMODyZHMl
-----END CERTIFICATE-----
Generated at Thu Apr 10 22:08:03 2025 by rpki-client