Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70EFEC5AF3B911EF80267E9B762E951A.roa
File: 70EFEC5AF3B911EF80267E9B762E951A.roa (raw, json)
Hash identifier: 5yHhYNrm44DCfbrxlpQY8zjm3dDdAOvkEKlqm8yAXpw=
Subject key identifier: 9D:3A:C3:F2:FC:0B:D4:20:0D:58:5A:A4:CB:C9:20:AD:12:C8:CC:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 015FF9
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70EFEC5AF3B911EF80267E9B762E951A.roa
Signing time: Tue 25 Feb 2025 20:45:26 +0000
ROA not before: Tue 25 Feb 2025 20:45:22 +0000
ROA not after: Wed 09 Apr 2025 20:45:22 +0000
asID: 138915
IP address blocks: 154.95.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90105 (0x15ff9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 25 20:45:22 2025 GMT
Not After : Apr 9 20:45:22 2025 GMT
Subject: CN=67be2be6-d597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:51:8d:74:43:fd:5c:df:1f:ed:94:d4:09:c2:
5c:b2:75:9e:40:ea:cb:66:d5:5f:f4:99:9a:b6:a4:
0b:d5:e3:72:b4:0d:44:1c:90:43:13:73:88:1d:2f:
58:24:6c:80:18:c0:2c:1f:46:ca:09:7a:c6:75:a0:
99:fe:60:85:fc:2b:c6:10:38:42:9f:d7:8f:45:9e:
5b:ae:de:cb:66:ba:4e:07:f4:22:42:25:b6:62:33:
03:5a:f8:a4:8b:7b:19:6e:14:89:be:ac:04:d8:01:
77:1d:33:2f:51:10:f9:4a:54:95:c9:d7:cc:c2:85:
ef:f4:04:dc:53:5a:30:b8:71:ae:cf:5d:69:4d:7f:
63:4a:57:30:45:46:01:fd:17:3f:10:86:19:d3:57:
79:70:8b:fd:45:65:da:b8:37:4f:34:36:4f:6e:3a:
55:fc:8b:f4:4b:a7:a4:b7:94:91:bb:75:42:3c:20:
99:7a:08:b0:74:2e:cc:53:61:f3:da:f9:43:dd:c1:
83:d3:a4:2e:44:64:4d:93:0c:72:db:fc:52:2a:f9:
f1:36:28:52:e1:51:1c:3d:ae:b1:34:d9:56:7a:c7:
2d:8a:af:b1:49:af:df:a2:91:9a:46:20:cb:37:11:
9c:17:c7:56:d6:20:b2:10:a7:20:f7:88:d8:8d:f7:
c8:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:3A:C3:F2:FC:0B:D4:20:0D:58:5A:A4:CB:C9:20:AD:12:C8:CC:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/70EFEC5AF3B911EF80267E9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.95.76.0/24
Signature Algorithm: sha256WithRSAEncryption
81:d2:a9:57:65:bf:a8:f2:62:6c:63:90:30:4d:30:39:d5:98:
f4:6c:f5:60:45:6a:1b:56:81:3e:16:a9:f5:23:ca:17:e5:10:
fd:4a:10:32:03:f9:35:02:93:3e:81:cf:72:b3:10:49:cf:74:
08:dd:e0:49:11:45:33:3c:6e:8d:00:df:bb:fb:73:c7:82:f6:
6c:cd:c8:12:ad:5c:f2:5e:96:f9:d6:5a:28:2d:00:c5:5d:f7:
44:7e:26:d6:c6:f1:39:f0:56:95:7b:4e:fd:b1:e8:a0:d8:22:
a6:f3:3d:a3:06:f0:eb:3a:a7:84:29:c8:d1:2e:15:af:08:f8:
63:ad:cb:c0:88:5e:61:92:3a:c1:7e:0a:6b:db:a5:7e:8f:45:
36:65:c2:64:38:60:85:1e:71:2c:15:69:94:d5:ad:64:ca:85:
51:a5:c9:3f:cc:35:a7:ba:a2:d9:a4:eb:14:cc:0d:9f:58:42:
a2:fc:c1:a1:02:17:94:46:b4:a1:27:1c:52:a1:ca:a5:94:09:
5f:90:97:db:d0:c8:44:67:00:c3:12:ad:17:e8:7c:1b:5c:0c:
fe:67:02:44:9e:d2:11:8b:92:49:a5:27:24:a2:51:0a:61:ed:
38:45:c2:82:69:01:b7:10:9e:33:19:30:4e:d7:4d:24:8b:af:
1f:b7:25:8a
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAV/5MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI1MjA0NTIyWhcNMjUwNDA5MjA0NTIyWjAYMRYw
FAYDVQQDEw02N2JlMmJlNi1kNTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAx1GNdEP9XN8f7ZTUCcJcsnWeQOrLZtVf9JmatqQL1eNytA1EHJBDE3OI
HS9YJGyAGMAsH0bKCXrGdaCZ/mCF/CvGEDhCn9ePRZ5brt7LZrpOB/QiQiW2YjMD
Wviki3sZbhSJvqwE2AF3HTMvURD5SlSVydfMwoXv9ATcU1owuHGuz11pTX9jSlcw
RUYB/Rc/EIYZ01d5cIv9RWXauDdPNDZPbjpV/Iv0S6ekt5SRu3VCPCCZegiwdC7M
U2Hz2vlD3cGD06QuRGRNkwxy2/xSKvnxNihS4VEcPa6xNNlWesctiq+xSa/fopGa
RiDLNxGcF8dW1iCyEKcg94jYjffItwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJ06
w/L8C9QgDVhapMvJIK0SyMxgMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83MEVGRUM1QUYzQjkxMUVGODAyNjdFOUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml9MMA0GCSqGSIb3DQEB
CwUAA4IBAQCB0qlXZb+o8mJsY5AwTTA51Zj0bPVgRWobVoE+Fqn1I8oX5RD9ShAy
A/k1ApM+gc9ysxBJz3QI3eBJEUUzPG6NAN+7+3PHgvZszcgSrVzyXpb51looLQDF
XfdEfibWxvE58FaVe079seig2CKm8z2jBvDrOqeEKcjRLhWvCPhjrcvAiF5hkjrB
fgpr26V+j0U2ZcJkOGCFHnEsFWmU1a1kyoVRpck/zDWnuqLZpOsUzA2fWEKi/MGh
AheURrShJxxSocqllAlfkJfb0MhEZwDDEq0X6HwbXAz+ZwJEntIRi5JJpSckolEK
Ye04RcKCaQG3EJ4zGTBO100ki68ftyWK
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:58:00 2025 by rpki-client