Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/574AD740C3C811EFB9AFDE8D762E951A.roa
File: 574AD740C3C811EFB9AFDE8D762E951A.roa (raw, json)
Hash identifier: /RlF00CIla7bOM/Vt0XD7nA6QGn23jP+hEVN6ZFrJtc=
Subject key identifier: 57:74:A3:0F:8C:84:A2:BA:5A:70:35:13:A1:1D:7E:7A:90:7F:9A:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127E8
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/574AD740C3C811EFB9AFDE8D762E951A.roa
Signing time: Thu 26 Dec 2024 20:31:10 +0000
ROA not before: Thu 26 Dec 2024 20:31:06 +0000
ROA not after: Sun 12 Dec 2027 20:31:06 +0000
asID: 17561
IP address blocks: 154.83.137.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75752 (0x127e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 20:31:06 2024 GMT
Not After : Dec 12 20:31:06 2027 GMT
Subject: CN=676dbd0e-e81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:eb:3c:71:fb:c5:c2:a1:46:15:e8:a4:d1:9e:
52:da:a8:90:56:71:cc:e7:2f:7f:1b:ac:fa:38:d9:
8d:63:ed:2c:ec:33:0e:c6:c4:92:76:1b:a3:26:53:
1f:e0:a4:a5:d3:25:f6:dd:12:45:c8:80:bc:7e:d9:
1b:a6:c2:fe:ef:c4:1b:f8:b4:3c:c9:b2:06:9e:79:
74:98:85:4b:6f:53:93:b1:bf:6f:d2:4d:3f:1e:3e:
40:46:cf:0c:c7:a3:d9:3f:1d:44:8e:cb:e1:a6:ba:
d8:d3:32:8c:3a:51:6f:e6:d4:39:6c:ab:3c:fb:e5:
bb:fc:5c:10:0c:7b:c2:00:df:e3:71:2a:b7:26:17:
f8:2a:be:6e:06:d1:79:d1:c5:09:ea:ea:31:b2:9b:
3b:c4:8e:85:7d:46:35:19:ae:e2:b3:82:15:ec:51:
43:8a:74:85:eb:12:e1:0f:41:24:38:51:87:a0:0d:
64:1d:61:43:65:5c:c8:b6:bf:78:a1:33:fb:dc:89:
84:08:15:41:2a:18:e8:a4:5f:80:c4:63:3a:7a:2a:
d6:43:f8:b2:aa:d3:9d:93:dc:33:c9:df:1d:f4:1f:
8b:8e:65:2f:0d:15:ae:a2:ca:f2:63:b3:5a:46:b3:
b3:84:0e:41:82:ce:1a:48:1d:c9:36:42:c0:8d:77:
09:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:74:A3:0F:8C:84:A2:BA:5A:70:35:13:A1:1D:7E:7A:90:7F:9A:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/574AD740C3C811EFB9AFDE8D762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.137.0/24
Signature Algorithm: sha256WithRSAEncryption
05:b2:39:d9:1a:28:01:af:21:92:ec:d4:9c:31:fe:f5:b8:62:
6d:0b:5d:bf:9f:5b:5f:0f:8a:2b:06:b5:c3:aa:b9:64:3c:1a:
28:0f:5c:32:ca:20:a9:49:c6:bc:4e:48:df:9d:d4:b2:6c:95:
75:5a:d7:dc:b4:12:9f:69:7f:25:7c:9f:7c:a1:31:44:36:38:
35:f3:ca:ce:f3:f5:2b:22:50:74:fc:55:fe:aa:f1:56:e6:48:
32:12:38:0e:6c:8f:7f:05:01:18:f2:60:f6:68:c2:12:8a:b3:
73:87:d2:da:d5:c9:5e:90:ff:fa:81:37:fc:ee:3c:29:2d:9e:
69:23:51:e5:41:46:4c:ce:8d:c4:f0:2d:ad:fd:39:ba:c2:c5:
40:4c:6c:40:d9:ab:00:17:67:d2:1b:17:7e:e7:2c:16:01:2b:
4f:cb:ef:ce:f6:f2:e4:b2:ee:26:16:41:aa:65:16:2c:fc:6f:
0e:e5:b8:35:e7:e3:15:d5:38:34:5c:d7:9d:bb:92:e1:79:86:
41:60:b8:1b:ae:57:74:7a:b7:12:e1:8a:c9:c3:b5:72:30:78:
c7:29:70:9d:2a:91:32:ba:c9:21:ed:6e:02:21:c6:c3:8f:b9:
0b:70:f7:64:16:4b:82:99:16:8f:ab:f9:8e:dc:22:bc:81:ae:
50:4c:3f:ee
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASfoMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MjAzMTA2WhcNMjcxMjEyMjAzMTA2WjAYMRYw
FAYDVQQDEw02NzZkYmQwZS1lODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAu+s8cfvFwqFGFeik0Z5S2qiQVnHM5y9/G6z6ONmNY+0s7DMOxsSSdhuj
JlMf4KSl0yX23RJFyIC8ftkbpsL+78Qb+LQ8ybIGnnl0mIVLb1OTsb9v0k0/Hj5A
Rs8Mx6PZPx1EjsvhprrY0zKMOlFv5tQ5bKs8++W7/FwQDHvCAN/jcSq3Jhf4Kr5u
BtF50cUJ6uoxsps7xI6FfUY1Ga7is4IV7FFDinSF6xLhD0EkOFGHoA1kHWFDZVzI
tr94oTP73ImECBVBKhjopF+AxGM6eirWQ/iyqtOdk9wzyd8d9B+LjmUvDRWuosry
Y7NaRrOzhA5Bgs4aSB3JNkLAjXcJXwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFd0
ow+MhKK6WnA1E6EdfnqQf5rvMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81NzRBRDc0MEMzQzgxMUVGQjlBRkRFOEQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOJMA0GCSqGSIb3DQEB
CwUAA4IBAQAFsjnZGigBryGS7NScMf71uGJtC12/n1tfD4orBrXDqrlkPBooD1wy
yiCpSca8TkjfndSybJV1WtfctBKfaX8lfJ98oTFENjg188rO8/UrIlB0/FX+qvFW
5kgyEjgObI9/BQEY8mD2aMISirNzh9La1clekP/6gTf87jwpLZ5pI1HlQUZMzo3E
8C2t/Tm6wsVATGxA2asAF2fSGxd+5ywWAStPy+/O9vLksu4mFkGqZRYs/G8O5bg1
5+MV1Tg0XNedu5LheYZBYLgbrld0ercS4YrJw7VyMHjHKXCdKpEyuskh7W4CIcbD
j7kLcPdkFkuCmRaPq/mO3CK8ga5QTD/u
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:13:41 2025 by rpki-client