Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73948BE0C8AE11EF9ECAB3B4762E951A.roa
File: 73948BE0C8AE11EF9ECAB3B4762E951A.roa (raw, json)
Hash identifier: jMKfF6SF822HwtcP7pkL2AZpIJntNPuIYhdLP6kOu1c=
Subject key identifier: EE:1C:F8:FD:3C:B8:9F:1E:85:B2:4F:8D:00:8A:97:F6:AF:3C:59:32
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013192
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73948BE0C8AE11EF9ECAB3B4762E951A.roa
Signing time: Thu 02 Jan 2025 02:08:26 +0000
ROA not before: Thu 02 Jan 2025 02:08:22 +0000
ROA not after: Mon 13 Dec 2027 02:08:22 +0000
asID: 17561
IP address blocks: 154.220.165.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78226 (0x13192)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 02:08:22 2025 GMT
Not After : Dec 13 02:08:22 2027 GMT
Subject: CN=6775f51a-7bc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:fb:df:57:b0:42:dc:45:5d:b4:c2:a4:f1:
3d:74:94:9c:d9:7c:a0:d9:6a:40:bd:bc:d4:2b:82:
9b:1a:df:e6:4a:46:c7:35:e0:87:8d:9f:77:05:e3:
fd:45:66:99:b6:4a:03:92:98:cb:07:63:9c:2c:ff:
84:d3:fd:c4:f0:d3:f0:ae:1d:a3:18:02:3d:70:e6:
4f:85:61:73:24:6f:44:ff:4f:38:22:7c:5f:3e:50:
df:70:c9:32:3f:2b:69:9c:e3:db:d2:fc:b2:b9:84:
a3:9f:8b:ff:82:44:2d:78:2e:59:eb:b5:c2:b6:41:
5d:0f:cb:66:f1:4d:bd:bf:ed:d7:90:37:11:6e:ca:
fe:a9:1b:97:b6:fb:95:ec:3b:ef:ef:ee:62:00:fa:
28:4c:60:e7:30:d3:1f:49:d8:3a:5b:18:18:28:17:
09:eb:21:92:fb:4f:8e:57:49:2a:b5:32:ca:24:37:
4b:b3:5b:da:47:28:b6:f6:c8:50:d3:df:af:c2:bd:
b8:73:5b:b7:f5:c0:e4:45:0e:bb:5c:de:3b:21:91:
4a:29:e9:20:ea:5e:98:64:f7:3d:62:94:92:23:b7:
22:96:28:e1:41:af:5f:cc:59:71:57:bd:2c:da:92:
8d:e3:15:50:90:d4:85:ea:71:a5:e8:73:c0:34:ba:
3c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1C:F8:FD:3C:B8:9F:1E:85:B2:4F:8D:00:8A:97:F6:AF:3C:59:32
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/73948BE0C8AE11EF9ECAB3B4762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.165.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:56:49:0d:d5:24:93:57:5f:38:74:2b:cf:fe:3d:a6:97:cd:
e6:bd:1f:cf:45:a7:2a:44:86:93:f6:d7:cc:59:a9:22:b4:dc:
8c:09:0e:7c:f6:ec:36:75:06:f8:8e:e8:db:76:88:e9:68:0e:
62:15:81:b3:8f:5f:a4:e3:7a:e3:ec:06:08:32:cf:eb:6e:55:
51:24:92:e4:72:c5:e8:8d:26:71:f9:12:14:23:be:d7:97:44:
d8:ab:cc:8c:ee:66:75:d0:23:26:b1:08:c8:5d:66:66:1c:5e:
23:1f:f8:91:2f:ec:4c:82:64:3c:4d:64:c2:17:7e:a0:68:e4:
00:8e:c1:8b:29:5b:80:1c:05:01:50:f3:bd:44:d1:f7:50:30:
5b:58:b3:69:94:23:7e:84:72:f0:73:97:49:07:b9:f0:54:ca:
59:14:b1:ed:aa:07:8c:09:a7:ff:ed:24:39:26:66:16:7c:47:
b3:a5:7b:d4:4a:b9:3d:f9:26:67:4c:69:64:b2:c0:8c:27:5d:
16:17:ab:b5:1c:09:67:47:4d:5d:ce:da:62:e3:58:bb:92:12:
0c:69:f5:a2:5f:f1:46:f8:7f:75:3e:cd:8f:78:85:a3:78:23:
0c:95:ee:a4:f2:6e:a5:0c:21:0e:67:ff:3c:e5:a3:cf:e6:1d:
50:05:aa:78
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATGSMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMDIwODIyWhcNMjcxMjEzMDIwODIyWjAYMRYw
FAYDVQQDEw02Nzc1ZjUxYS03YmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAs9v731ewQtxFXbTCpPE9dJSc2Xyg2WpAvbzUK4KbGt/mSkbHNeCHjZ93
BeP9RWaZtkoDkpjLB2OcLP+E0/3E8NPwrh2jGAI9cOZPhWFzJG9E/084InxfPlDf
cMkyPytpnOPb0vyyuYSjn4v/gkQteC5Z67XCtkFdD8tm8U29v+3XkDcRbsr+qRuX
tvuV7Dvv7+5iAPooTGDnMNMfSdg6WxgYKBcJ6yGS+0+OV0kqtTLKJDdLs1vaRyi2
9shQ09+vwr24c1u39cDkRQ67XN47IZFKKekg6l6YZPc9YpSSI7cilijhQa9fzFlx
V70s2pKN4xVQkNSF6nGl6HPANLo8jQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO4c
+P08uJ8ehbJPjQCKl/avPFkyMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83Mzk0OEJFMEM4QUUxMUVGOUVDQUIzQjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtylMA0GCSqGSIb3DQEB
CwUAA4IBAQB6VkkN1SSTV184dCvP/j2ml83mvR/PRacqRIaT9tfMWakitNyMCQ58
9uw2dQb4jujbdojpaA5iFYGzj1+k43rj7AYIMs/rblVRJJLkcsXojSZx+RIUI77X
l0TYq8yM7mZ10CMmsQjIXWZmHF4jH/iRL+xMgmQ8TWTCF36gaOQAjsGLKVuAHAUB
UPO9RNH3UDBbWLNplCN+hHLwc5dJB7nwVMpZFLHtqgeMCaf/7SQ5JmYWfEezpXvU
Srk9+SZnTGlkssCMJ10WF6u1HAlnR01dztpi41i7khIMafWiX/FG+H91Ps2PeIWj
eCMMle6k8m6lDCEOZ/885aPP5h1QBap4
-----END CERTIFICATE-----
Generated at Mon Apr 7 13:23:17 2025 by rpki-client