Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7418C55EED1111EFA5F93E88762E951A.roa
File: 7418C55EED1111EFA5F93E88762E951A.roa (raw, json)
Hash identifier: 8v6q3WSP+6ckjaEMc2ISZoLO2lbeWSJspNk1GyhX/ys=
Subject key identifier: 98:B4:EE:67:BE:90:42:79:EB:EA:33:54:81:57:18:8F:46:9D:8E:F6
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0157DE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7418C55EED1111EFA5F93E88762E951A.roa
Signing time: Mon 17 Feb 2025 09:27:49 +0000
ROA not before: Mon 17 Feb 2025 09:27:45 +0000
ROA not after: Fri 22 Aug 2025 09:27:45 +0000
asID: 28458
IP address blocks: 154.197.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88030 (0x157de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 17 09:27:45 2025 GMT
Not After : Aug 22 09:27:45 2025 GMT
Subject: CN=67b30115-f31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:61:20:52:34:2c:c5:77:1c:5e:68:3b:16:09:
5a:16:08:70:09:d8:2d:69:57:a8:55:9f:01:9c:3b:
64:d1:d8:49:ad:8c:d3:dc:6b:4f:af:79:63:f8:d8:
35:62:78:68:3a:8e:28:78:43:43:e8:bf:58:5b:8f:
aa:e4:e9:26:8f:ab:f1:dd:a2:8f:71:e2:ac:f4:e4:
94:c6:4a:86:20:a5:2a:8a:62:93:03:d7:37:56:f9:
83:43:4c:dc:81:a8:d1:03:67:94:8a:f3:2a:41:3b:
37:c2:5d:f9:aa:73:5a:b3:97:84:d6:ba:b8:10:d2:
8b:78:2d:5e:bf:74:75:7d:ed:af:cb:5d:c9:44:dc:
6d:0c:8f:b4:3b:4f:82:16:4f:22:c3:12:1b:a6:1d:
f9:78:9a:22:6e:db:ec:09:c0:c9:6e:89:4d:b3:35:
72:79:78:bd:0c:24:9d:93:c7:bf:f7:84:cf:d6:17:
5f:27:7b:20:d3:7a:88:55:22:e4:fb:4f:c1:69:de:
7f:b0:32:45:41:b7:2a:5b:2a:67:bd:0d:df:c6:93:
d3:e6:38:76:be:11:ed:01:a0:7b:a2:20:c2:3b:70:
d5:da:ca:78:a4:71:d4:aa:22:f7:2f:a4:97:bc:e2:
fb:66:cb:5d:4d:47:31:52:2c:59:72:ef:32:89:38:
49:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:B4:EE:67:BE:90:42:79:EB:EA:33:54:81:57:18:8F:46:9D:8E:F6
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/7418C55EED1111EFA5F93E88762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.197.58.0/24
Signature Algorithm: sha256WithRSAEncryption
12:4d:74:8e:79:b0:4f:e1:81:11:8d:ed:e0:73:ce:75:ea:c6:
7c:47:2b:8e:60:a4:fa:d2:ad:e4:62:d9:93:5c:a7:98:7f:c7:
c7:28:ae:e0:2f:bf:3a:e2:64:08:d0:21:e6:62:6b:dc:b5:4c:
3c:e8:3a:4b:ff:64:1a:7f:11:a2:08:fe:67:9f:e1:bb:f2:fd:
98:57:46:ba:49:b4:a1:fb:cf:50:36:fa:49:17:06:d5:26:86:
44:89:98:da:07:ec:25:fd:d9:53:58:55:b6:6c:1d:3c:99:01:
7f:c2:51:a0:69:c3:ed:89:44:ab:2a:5a:aa:61:f5:9a:3d:a0:
5b:bb:b2:84:dc:3f:a9:d3:34:90:cb:98:ba:e6:09:84:82:58:
c0:ec:9a:9d:d5:84:18:8a:da:8f:33:f1:2e:3f:f0:f8:a1:00:
ec:4c:6b:df:d2:49:a4:57:eb:64:3a:7c:c6:5d:c9:51:10:ce:
0b:d1:e1:d4:c8:2d:53:4e:18:11:dd:93:a1:56:f9:51:e2:6f:
4a:54:b0:58:49:ac:d5:54:35:d3:09:ae:48:3d:c9:d9:05:04:
a5:43:d9:17:73:78:94:3e:de:f9:db:6b:1e:9e:0c:77:95:ea:
ea:dd:28:be:79:c5:19:51:22:25:58:4e:9d:f2:f4:82:11:8b:
de:be:6b:a7
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAVfeMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjE3MDkyNzQ1WhcNMjUwODIyMDkyNzQ1WjAYMRYw
FAYDVQQDEw02N2IzMDExNS1mMzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnWEgUjQsxXccXmg7FglaFghwCdgtaVeoVZ8BnDtk0dhJrYzT3GtPr3lj
+Ng1YnhoOo4oeEND6L9YW4+q5Okmj6vx3aKPceKs9OSUxkqGIKUqimKTA9c3VvmD
Q0zcgajRA2eUivMqQTs3wl35qnNas5eE1rq4ENKLeC1ev3R1fe2vy13JRNxtDI+0
O0+CFk8iwxIbph35eJoibtvsCcDJbolNszVyeXi9DCSdk8e/94TP1hdfJ3sg03qI
VSLk+0/Bad5/sDJFQbcqWypnvQ3fxpPT5jh2vhHtAaB7oiDCO3DV2sp4pHHUqiL3
L6SXvOL7ZstdTUcxUixZcu8yiThJTwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJi0
7me+kEJ56+ozVIFXGI9GnY72MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83NDE4QzU1RUVEMTExMUVGQTVGOTNFODg3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsU6MA0GCSqGSIb3DQEB
CwUAA4IBAQASTXSOebBP4YERje3gc8516sZ8RyuOYKT60q3kYtmTXKeYf8fHKK7g
L7864mQI0CHmYmvctUw86DpL/2QafxGiCP5nn+G78v2YV0a6SbSh+89QNvpJFwbV
JoZEiZjaB+wl/dlTWFW2bB08mQF/wlGgacPtiUSrKlqqYfWaPaBbu7KE3D+p0zSQ
y5i65gmEgljA7Jqd1YQYitqPM/EuP/D4oQDsTGvf0kmkV+tkOnzGXclREM4L0eHU
yC1TThgR3ZOhVvlR4m9KVLBYSazVVDXTCa5IPcnZBQSlQ9kXc3iUPt7522sengx3
lerq3Si+ecUZUSIlWE6d8vSCEYvevmun
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:18 2025 by rpki-client