Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66DAC36CCF5F11EFBA35DA4F762E951A.roa
File: 66DAC36CCF5F11EFBA35DA4F762E951A.roa (raw, json)
Hash identifier: RW23MrTgBrQV0vnhIEwChPvsbebqwywpSZzpXD3t5Cg=
Subject key identifier: 05:C4:DB:4C:BA:E2:84:75:3F:84:07:B0:17:DD:34:87:E1:5A:E8:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013A01
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66DAC36CCF5F11EFBA35DA4F762E951A.roa
Signing time: Fri 10 Jan 2025 14:30:13 +0000
ROA not before: Fri 10 Jan 2025 14:30:09 +0000
ROA not after: Sun 12 Dec 2027 14:30:09 +0000
asID: 17561
IP address blocks: 154.81.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80385 (0x13a01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 10 14:30:09 2025 GMT
Not After : Dec 12 14:30:09 2027 GMT
Subject: CN=67812ef5-34e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:6e:1f:36:d3:d4:13:ff:69:f6:44:68:e6:
b3:1b:b1:13:76:9a:dd:8a:4b:47:8d:d3:48:e4:27:
99:de:c4:80:97:bb:85:e0:10:04:96:41:9a:78:d8:
d7:59:c6:0e:0a:1d:f5:a6:cc:80:a2:f1:e1:f8:ef:
64:5a:ed:9c:b7:64:35:2c:fd:d4:3a:08:43:f9:b8:
c5:4e:b1:3d:45:31:d9:6f:ac:ad:58:34:f9:21:6e:
b2:68:fb:27:43:4f:69:1c:77:43:ef:4a:7e:8e:da:
1b:12:60:07:db:2f:1a:4e:bb:ac:5f:ab:ae:b3:91:
c3:75:1e:32:15:36:bf:92:64:31:6d:ca:90:30:f6:
b1:f5:9f:c4:fc:d8:28:52:3e:43:be:0d:af:09:4f:
e3:99:7f:33:96:45:80:01:af:c8:a2:b0:14:e3:75:
f5:f2:b2:0f:b5:a6:51:a7:ce:a5:67:30:f3:41:b3:
47:14:a1:63:88:06:41:70:d8:18:ba:3d:82:fa:64:
4c:98:a7:1e:a6:5c:cb:ac:51:a1:01:ac:9d:24:f5:
2e:47:26:18:94:9b:c8:29:35:a8:28:10:e3:24:d8:
22:0b:be:56:58:7c:19:6a:5f:9e:b4:d4:ea:bd:7a:
ed:0e:da:db:13:3a:7e:dc:80:c2:4a:99:dc:14:64:
6d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C4:DB:4C:BA:E2:84:75:3F:84:07:B0:17:DD:34:87:E1:5A:E8:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/66DAC36CCF5F11EFBA35DA4F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.81.132.0/24
Signature Algorithm: sha256WithRSAEncryption
be:8f:47:e3:4a:b8:9a:45:cb:bd:56:4f:88:a9:fd:fd:5c:52:
e3:33:e6:80:3a:27:16:14:1a:bb:44:ff:c2:17:b2:0a:4c:78:
29:3e:59:bb:dc:7c:96:e6:40:8e:9b:94:0d:d8:d0:37:1e:8f:
c8:17:1c:9e:90:ba:6d:5b:c7:fa:5f:6d:7a:95:34:1c:e2:8e:
70:77:c1:54:20:20:00:e7:68:12:80:01:03:02:6c:1a:0e:75:
e3:e4:0a:d9:2f:78:06:39:6b:0b:06:23:a0:e2:f8:9e:bb:8b:
49:a5:12:2f:7c:3b:7d:2d:b6:79:70:2a:49:b6:d4:47:33:2c:
2a:a4:1f:67:c7:64:39:1a:10:7a:dc:78:7c:60:1f:86:4e:1d:
c8:c0:ee:19:61:01:49:cf:f0:ba:f5:09:b8:72:90:c9:84:38:
7b:64:a8:91:ab:32:56:5e:23:61:b3:42:a3:a2:79:c0:4a:f3:
95:f2:97:26:9f:e1:ad:e8:b2:50:65:9b:02:1a:40:8a:c0:0e:
37:46:78:51:5e:79:72:10:aa:a2:e1:37:97:82:20:a5:55:6e:
87:b8:22:5c:5b:04:5c:9e:db:6a:cf:28:d7:25:b5:ec:1a:3f:
f5:24:16:b2:0c:0c:6b:2d:9f:2e:16:dc:24:1f:3c:c9:8e:7b:
ac:d5:36:94
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAToBMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTEwMTQzMDA5WhcNMjcxMjEyMTQzMDA5WjAYMRYw
FAYDVQQDEw02NzgxMmVmNS0zNGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAtbhuHzbT1BP/afZEaOazG7ETdprdiktHjdNI5CeZ3sSAl7uF4BAElkGa
eNjXWcYOCh31psyAovHh+O9kWu2ct2Q1LP3UOghD+bjFTrE9RTHZb6ytWDT5IW6y
aPsnQ09pHHdD70p+jtobEmAH2y8aTrusX6uus5HDdR4yFTa/kmQxbcqQMPax9Z/E
/NgoUj5Dvg2vCU/jmX8zlkWAAa/IorAU43X18rIPtaZRp86lZzDzQbNHFKFjiAZB
cNgYuj2C+mRMmKceplzLrFGhAaydJPUuRyYYlJvIKTWoKBDjJNgiC75WWHwZal+e
tNTqvXrtDtrbEzp+3IDCSpncFGRtbQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAXE
20y64oR1P4QHsBfdNIfhWuj0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NkRBQzM2Q0NGNUYxMUVGQkEzNURBNEY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlGEMA0GCSqGSIb3DQEB
CwUAA4IBAQC+j0fjSriaRcu9Vk+Iqf39XFLjM+aAOicWFBq7RP/CF7IKTHgpPlm7
3HyW5kCOm5QN2NA3Ho/IFxyekLptW8f6X216lTQc4o5wd8FUICAA52gSgAEDAmwa
DnXj5ArZL3gGOWsLBiOg4vieu4tJpRIvfDt9LbZ5cCpJttRHMywqpB9nx2Q5GhB6
3Hh8YB+GTh3IwO4ZYQFJz/C69Qm4cpDJhDh7ZKiRqzJWXiNhs0KjonnASvOV8pcm
n+Gt6LJQZZsCGkCKwA43RnhRXnlyEKqi4TeXgiClVW6HuCJcWwRcnttqzyjXJbXs
Gj/1JBayDAxrLZ8uFtwkHzzJjnus1TaU
-----END CERTIFICATE-----
Generated at Mon Apr 7 02:26:18 2025 by rpki-client