Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/676C929AF81A11EFBB4A0BA6762E951A.roa
File: 676C929AF81A11EFBB4A0BA6762E951A.roa (raw, json)
Hash identifier: 6e1pi1sZyHR8kb571dmXEgtu/TAHy/r91+qErONVckI=
Subject key identifier: 81:2B:12:E6:40:37:0D:63:3A:C4:33:7D:67:4A:09:D4:5A:10:AE:75
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 017019
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/676C929AF81A11EFBB4A0BA6762E951A.roa
Signing time: Mon 03 Mar 2025 10:29:36 +0000
ROA not before: Mon 03 Mar 2025 10:29:32 +0000
ROA not after: Wed 30 Apr 2025 10:29:32 +0000
asID: 138915
IP address blocks: 154.93.111.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94233 (0x17019)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 3 10:29:32 2025 GMT
Not After : Apr 30 10:29:32 2025 GMT
Subject: CN=67c58490-9ac1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c1:37:cf:51:07:4b:c0:43:69:20:b1:f8:5d:
34:9e:69:5f:e0:d3:6e:6f:e3:8c:b9:cf:11:7d:e8:
de:af:73:57:e0:35:2a:11:be:af:83:ac:af:4c:03:
78:99:2a:c8:45:f0:eb:9f:c5:ae:48:ee:4a:41:ab:
c1:ac:e8:ae:76:40:5c:c3:c2:bf:4b:a6:dc:f0:34:
91:83:2c:6d:e9:63:55:c2:ce:21:bb:ac:4a:a9:7a:
27:13:a1:3f:90:6b:7e:9e:e8:6a:19:51:3c:3b:ff:
2d:f4:19:08:7c:29:0b:d1:bb:91:44:97:16:09:6b:
e5:e1:7c:52:f7:03:eb:dd:7d:d2:57:24:8a:6f:78:
7f:e2:98:7a:d2:38:ec:ee:7c:41:50:25:b1:29:c0:
ce:ef:94:f8:ce:e4:12:ea:32:2e:ad:44:6c:d1:31:
61:54:16:d3:40:ea:21:80:91:a3:85:32:f9:9a:da:
89:95:7b:53:6e:73:91:c8:de:9e:d1:6f:69:cf:60:
3d:d7:ac:a4:77:1f:27:2b:c8:fc:f9:ea:83:5f:42:
1f:e0:7d:9d:8f:bd:1f:50:17:70:5d:6d:ad:c5:01:
f7:63:bf:26:5a:c4:1d:06:76:cb:76:bf:d4:74:da:
ac:4e:f8:b3:1e:2b:7e:cb:ce:7c:fa:fc:e4:e0:75:
28:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:2B:12:E6:40:37:0D:63:3A:C4:33:7D:67:4A:09:D4:5A:10:AE:75
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/676C929AF81A11EFBB4A0BA6762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.111.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f9:ec:60:12:bd:1a:24:c4:ee:e4:14:92:b8:23:57:82:5b:
61:86:de:08:a0:d4:44:c2:d8:cf:53:d8:f6:21:b1:66:d0:30:
5e:a9:7f:26:34:5e:26:88:ce:44:00:7e:1a:57:ef:41:40:98:
23:70:b2:83:85:37:6a:50:48:3b:14:8f:cf:cb:ce:e7:08:99:
0c:0d:62:fe:8b:c7:9b:26:d3:cf:03:e4:55:4f:9a:aa:f5:9c:
2e:aa:8f:b4:3c:8d:1c:ec:d7:89:4e:59:84:1f:80:74:f9:5c:
65:c8:5d:ea:ca:ae:ff:fb:31:d2:e7:8e:e9:18:40:af:ae:4f:
9e:f9:0f:58:f1:7b:54:be:c0:fd:71:db:7e:da:84:6a:61:6f:
3c:4d:9a:5b:da:e4:88:5b:79:87:05:1d:3b:08:a3:49:bc:7c:
2e:c9:94:67:66:b4:7a:1a:4a:be:3e:cc:95:8f:f2:ea:1f:a2:
df:b9:61:48:c8:2e:05:67:6d:cd:23:1a:cc:3c:23:65:56:d5:
11:e1:eb:eb:cc:80:63:0f:2b:ce:a4:fe:9e:54:b1:6b:c8:d4:
08:02:45:18:0e:2c:0f:d1:e0:ff:04:84:88:b7:32:1c:b4:32:
fa:d1:a1:14:73:18:c4:ee:50:2c:3d:73:49:47:15:1c:13:f1:
8b:2b:9a:08
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXAZMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzAzMTAyOTMyWhcNMjUwNDMwMTAyOTMyWjAYMRYw
FAYDVQQDEw02N2M1ODQ5MC05YWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA0ME3z1EHS8BDaSCx+F00nmlf4NNub+OMuc8Rfejer3NX4DUqEb6vg6yv
TAN4mSrIRfDrn8WuSO5KQavBrOiudkBcw8K/S6bc8DSRgyxt6WNVws4hu6xKqXon
E6E/kGt+nuhqGVE8O/8t9BkIfCkL0buRRJcWCWvl4XxS9wPr3X3SVySKb3h/4ph6
0jjs7nxBUCWxKcDO75T4zuQS6jIurURs0TFhVBbTQOohgJGjhTL5mtqJlXtTbnOR
yN6e0W9pz2A916ykdx8nK8j8+eqDX0If4H2dj70fUBdwXW2txQH3Y78mWsQdBnbL
dr/UdNqsTvizHit+y858+vzk4HUoDwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFIEr
EuZANw1jOsQzfWdKCdRaEK51MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82NzZDOTI5QUY4MUExMUVGQkI0QTBCQTY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml1vMA0GCSqGSIb3DQEB
CwUAA4IBAQBA+exgEr0aJMTu5BSSuCNXglthht4IoNREwtjPU9j2IbFm0DBeqX8m
NF4miM5EAH4aV+9BQJgjcLKDhTdqUEg7FI/Py87nCJkMDWL+i8ebJtPPA+RVT5qq
9Zwuqo+0PI0c7NeJTlmEH4B0+VxlyF3qyq7/+zHS547pGECvrk+e+Q9Y8XtUvsD9
cdt+2oRqYW88TZpb2uSIW3mHBR07CKNJvHwuyZRnZrR6Gkq+PsyVj/LqH6LfuWFI
yC4FZ23NIxrMPCNlVtUR4evrzIBjDyvOpP6eVLFryNQIAkUYDiwP0eD/BISItzIc
tDL60aEUcxjE7lAsPXNJRxUcE/GLK5oI
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:56:54 2025 by rpki-client