Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67DF251CC36D11EF906AE855762E951A.roa
File: 67DF251CC36D11EF906AE855762E951A.roa (raw, json)
Hash identifier: GjtM1ibBVxrAxsj6/QzUzM4iiXohi04hqeLkESxODR4=
Subject key identifier: 63:DF:CB:AD:1B:B7:7A:2D:DE:97:E9:FB:68:6B:66:7C:37:BA:F7:2C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012704
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67DF251CC36D11EF906AE855762E951A.roa
Signing time: Thu 26 Dec 2024 09:40:13 +0000
ROA not before: Thu 26 Dec 2024 09:40:10 +0000
ROA not after: Sun 12 Dec 2027 09:40:10 +0000
asID: 17561
IP address blocks: 154.94.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75524 (0x12704)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 09:40:10 2024 GMT
Not After : Dec 12 09:40:10 2027 GMT
Subject: CN=676d247d-c431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:25:9b:da:9d:16:7b:4b:08:ad:49:d4:67:f6:
e9:71:89:6b:63:3a:88:bb:d8:22:4e:79:b3:6c:41:
93:fb:ee:44:35:d9:37:0f:90:05:23:d2:fe:1c:3f:
45:21:0d:dc:60:b7:4d:e8:05:ee:cd:1d:f4:7c:6c:
49:35:33:69:62:93:33:44:02:4a:d5:30:09:03:c2:
9a:1a:13:cc:26:52:31:e7:ae:76:70:35:4d:57:f2:
59:5e:91:25:74:98:4b:28:ff:0c:f9:db:d8:fd:29:
5d:91:85:2f:7a:be:8d:f2:05:90:12:ca:fd:98:69:
74:09:53:69:57:ee:5d:04:f2:4a:6e:8f:45:88:db:
26:43:23:25:2b:ac:80:bf:53:bb:cd:58:a3:85:85:
4b:f2:4c:13:e7:86:e3:0b:46:c5:b2:03:d9:0a:fd:
e5:81:bd:a4:70:98:4c:dc:b9:61:5c:12:8e:0f:31:
60:c6:2f:ee:4d:c0:37:bf:10:b0:c6:1c:af:62:7a:
8d:26:af:72:6d:fe:1a:73:cc:92:a1:b6:d7:03:1a:
61:ff:8b:1a:c5:e8:64:6e:60:df:5b:4c:be:26:6a:
2b:94:b8:e5:28:f6:9d:a2:25:cf:e9:8b:b4:d7:2e:
fd:59:2e:9e:4c:2f:42:aa:92:b3:55:5a:b8:e7:44:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DF:CB:AD:1B:B7:7A:2D:DE:97:E9:FB:68:6B:66:7C:37:BA:F7:2C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/67DF251CC36D11EF906AE855762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.153.0/24
Signature Algorithm: sha256WithRSAEncryption
38:3c:41:de:d5:9c:c5:38:6d:b2:88:d9:2b:bf:01:ec:7d:30:
b0:d6:28:0d:79:c9:a0:a4:64:bb:9b:3b:9c:4a:98:73:0b:4f:
71:c2:2f:17:36:9a:19:3a:e3:6d:7f:7f:3c:76:1b:19:42:e0:
74:4c:99:f1:0d:4e:e4:63:95:05:30:b9:b9:b3:00:9e:02:aa:
a5:f9:c2:0c:aa:f8:0a:da:d4:f6:71:29:4b:bb:7b:e3:f3:fe:
65:96:b4:ce:33:fb:18:bf:cd:e5:d7:4f:05:1e:a4:5d:9b:bb:
d9:33:0f:dc:f2:28:73:30:d7:16:1e:6b:33:7a:7b:6b:fc:11:
e2:77:34:3c:10:bd:69:d7:2e:a2:f7:eb:e9:30:2f:62:da:8b:
7b:2d:f7:17:93:25:99:66:bc:fa:fa:1f:ab:41:b3:23:21:c0:
fb:f9:5d:91:00:65:6d:7d:54:46:f3:b1:ed:58:3a:fe:86:a0:
7b:46:52:98:12:d5:24:33:74:d6:fd:40:fc:2e:90:76:a8:b6:
68:e1:ec:c5:76:29:55:a5:a5:89:2e:51:41:be:f4:aa:12:d9:
93:d5:43:f3:89:f1:00:d6:59:fd:53:02:5e:3a:93:9e:93:28:
ce:2f:6f:c5:87:fa:0b:7c:44:8c:ec:a7:04:eb:b3:77:14:45:
0a:71:77:6c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAScEMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDk0MDEwWhcNMjcxMjEyMDk0MDEwWjAYMRYw
FAYDVQQDEw02NzZkMjQ3ZC1jNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsCWb2p0We0sIrUnUZ/bpcYlrYzqIu9giTnmzbEGT++5ENdk3D5AFI9L+
HD9FIQ3cYLdN6AXuzR30fGxJNTNpYpMzRAJK1TAJA8KaGhPMJlIx5652cDVNV/JZ
XpEldJhLKP8M+dvY/SldkYUver6N8gWQEsr9mGl0CVNpV+5dBPJKbo9FiNsmQyMl
K6yAv1O7zVijhYVL8kwT54bjC0bFsgPZCv3lgb2kcJhM3LlhXBKODzFgxi/uTcA3
vxCwxhyvYnqNJq9ybf4ac8ySobbXAxph/4saxehkbmDfW0y+JmorlLjlKPadoiXP
6Yu01y79WS6eTC9CqpKzVVq450RoUQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGPf
y60bt3ot3pfp+2hrZnw3uvcsMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC82N0RGMjUxQ0MzNkQxMUVGOTA2QUU4NTU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml6ZMA0GCSqGSIb3DQEB
CwUAA4IBAQA4PEHe1ZzFOG2yiNkrvwHsfTCw1igNecmgpGS7mzucSphzC09xwi8X
NpoZOuNtf388dhsZQuB0TJnxDU7kY5UFMLm5swCeAqql+cIMqvgK2tT2cSlLu3vj
8/5llrTOM/sYv83l108FHqRdm7vZMw/c8ihzMNcWHmszentr/BHidzQ8EL1p1y6i
9+vpMC9i2ot7LfcXkyWZZrz6+h+rQbMjIcD7+V2RAGVtfVRG87HtWDr+hqB7RlKY
EtUkM3TW/UD8LpB2qLZo4ezFdilVpaWJLlFBvvSqEtmT1UPzifEA1ln9UwJeOpOe
kyjOL2/Fh/oLfESM7KcE67N3FEUKcXds
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:47:02 2025 by rpki-client