Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AFC5B62C36311EFA4D46294762E951A.roa
File: 5AFC5B62C36311EFA4D46294762E951A.roa (raw, json)
Hash identifier: hgt2IBdp1De2siVqsF8pi1C8hmXFunpDzkuQnNEUHKk=
Subject key identifier: EF:71:A7:55:AC:88:CC:81:2F:83:EA:27:AC:EF:50:DE:E6:8F:5D:F8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012680
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AFC5B62C36311EFA4D46294762E951A.roa
Signing time: Thu 26 Dec 2024 08:28:17 +0000
ROA not before: Thu 26 Dec 2024 08:28:13 +0000
ROA not after: Sun 12 Dec 2027 08:28:13 +0000
asID: 17561
IP address blocks: 154.93.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75392 (0x12680)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:28:13 2024 GMT
Not After : Dec 12 08:28:13 2027 GMT
Subject: CN=676d13a1-825c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7c:17:83:67:51:83:37:55:08:c1:85:ad:37:
79:8a:fe:9b:ea:8c:c2:27:c3:c0:e4:61:8d:8a:2d:
9c:27:ca:f7:4d:07:cc:06:74:8f:ca:69:54:6b:78:
e5:25:f9:5d:c4:5f:19:90:68:d4:3f:b9:6e:6a:5e:
d3:b0:ce:c7:8c:b7:f7:20:14:0f:07:37:59:b5:e8:
c4:32:d5:48:84:87:1c:8e:2e:c3:a8:4f:75:f5:b6:
54:d9:54:61:cf:f9:13:8d:ba:6a:58:1a:63:6a:1d:
fa:bc:17:e7:3a:68:d8:ab:01:f5:a4:b8:1a:b6:d4:
42:9c:86:13:04:63:db:0e:33:8b:7d:8e:c2:48:ac:
28:f6:6c:16:ce:8c:fa:c6:f5:bc:12:b0:51:d5:45:
26:eb:d6:cf:42:39:ac:e2:13:80:fa:a0:4b:fd:28:
47:27:14:1f:06:22:7b:77:06:0c:35:e5:07:8d:79:
00:ff:b3:15:99:1d:fc:51:96:6f:9e:dc:6e:9f:98:
e4:7f:b4:66:68:ad:c0:53:61:36:36:16:e0:ea:7b:
8a:f0:44:9c:96:6e:89:59:2b:ed:d8:82:b4:a7:44:
4a:95:bf:91:29:1e:29:58:e8:85:63:a0:f9:39:f3:
99:a5:58:71:71:27:e9:c9:55:6d:16:55:01:d9:78:
70:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:71:A7:55:AC:88:CC:81:2F:83:EA:27:AC:EF:50:DE:E6:8F:5D:F8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/5AFC5B62C36311EFA4D46294762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.11.0/24
Signature Algorithm: sha256WithRSAEncryption
13:4f:a7:4d:cc:fd:ae:ca:c2:3d:f2:07:07:8c:ab:74:8c:07:
57:66:76:b5:26:14:d1:f2:35:96:d4:b4:94:ae:72:b3:38:76:
29:1d:9f:e6:7f:1f:13:45:cf:d8:f5:61:0c:41:ff:b6:7b:c7:
2d:39:ff:b4:cd:c7:38:d3:db:08:02:0f:55:0d:fa:e8:ab:61:
1f:cb:f0:b9:bf:b5:2e:26:70:a6:b1:a5:da:4e:b7:2f:0c:8f:
c3:6a:15:d9:32:0f:ee:ef:04:20:1c:31:0b:09:5e:1c:19:b1:
5b:e0:7d:19:31:fc:0b:6a:82:eb:2f:1b:a3:66:3d:4d:cb:7a:
32:db:57:47:84:30:42:34:84:4d:3a:2d:f5:2f:ca:e0:d2:a4:
a2:1e:ff:b2:6b:70:6b:c8:e9:ee:e7:9a:c2:e9:50:fd:5f:f9:
7b:66:45:2d:41:27:7f:3c:42:97:45:03:c5:30:3e:1e:a5:fc:
f9:bd:3c:eb:a4:52:dc:3d:00:f3:4c:06:13:3d:78:1d:19:d4:
68:5a:36:1a:18:bb:a1:1e:00:60:0b:e4:fc:f6:80:c1:ce:61:
aa:65:95:8f:6e:14:17:05:d4:58:1f:9b:64:77:19:cc:71:40:
0c:8c:93:b8:e4:2b:89:dc:73:65:e3:10:19:b9:16:e5:85:a0:
a8:09:78:ee
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASaAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDgyODEzWhcNMjcxMjEyMDgyODEzWjAYMRYw
FAYDVQQDEw02NzZkMTNhMS04MjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAuHwXg2dRgzdVCMGFrTd5iv6b6ozCJ8PA5GGNii2cJ8r3TQfMBnSPymlU
a3jlJfldxF8ZkGjUP7lual7TsM7HjLf3IBQPBzdZtejEMtVIhIccji7DqE919bZU
2VRhz/kTjbpqWBpjah36vBfnOmjYqwH1pLgattRCnIYTBGPbDjOLfY7CSKwo9mwW
zoz6xvW8ErBR1UUm69bPQjms4hOA+qBL/ShHJxQfBiJ7dwYMNeUHjXkA/7MVmR38
UZZvntxun5jkf7RmaK3AU2E2Nhbg6nuK8ESclm6JWSvt2IK0p0RKlb+RKR4pWOiF
Y6D5OfOZpVhxcSfpyVVtFlUB2XhwxQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO9x
p1WsiMyBL4PqJ6zvUN7mj134MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC81QUZDNUI2MkMzNjMxMUVGQTRENDYyOTQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml0LMA0GCSqGSIb3DQEB
CwUAA4IBAQATT6dNzP2uysI98gcHjKt0jAdXZna1JhTR8jWW1LSUrnKzOHYpHZ/m
fx8TRc/Y9WEMQf+2e8ctOf+0zcc409sIAg9VDfroq2Efy/C5v7UuJnCmsaXaTrcv
DI/DahXZMg/u7wQgHDELCV4cGbFb4H0ZMfwLaoLrLxujZj1Ny3oy21dHhDBCNIRN
Oi31L8rg0qSiHv+ya3BryOnu55rC6VD9X/l7ZkUtQSd/PEKXRQPFMD4epfz5vTzr
pFLcPQDzTAYTPXgdGdRoWjYaGLuhHgBgC+T89oDBzmGqZZWPbhQXBdRYH5tkdxnM
cUAMjJO45CuJ3HNl4xAZuRblhaCoCXju
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:59:22 2025 by rpki-client