Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78ED3502C52411EFB7FE94B7762E951A.roa
File: 78ED3502C52411EFB7FE94B7762E951A.roa (raw, json)
Hash identifier: VZpkDIwLEbcW4Ew6aq3SER+z1PSma9/o8a9r0rCZcko=
Subject key identifier: E7:BF:BD:33:E5:EE:75:E1:F8:85:6B:F3:42:7E:C5:D8:F7:2B:C0:D2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012B77
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78ED3502C52411EFB7FE94B7762E951A.roa
Signing time: Sat 28 Dec 2024 14:03:11 +0000
ROA not before: Sat 28 Dec 2024 14:03:07 +0000
ROA not after: Sun 12 Dec 2027 14:03:07 +0000
asID: 17561
IP address blocks: 154.203.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76663 (0x12b77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 14:03:07 2024 GMT
Not After : Dec 12 14:03:07 2027 GMT
Subject: CN=6770051f-55db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ea:26:25:d5:99:2a:77:f0:d6:cd:d5:31:13:
88:1f:73:ac:87:1e:27:d5:06:c6:d1:d2:75:4a:7d:
a2:a5:d5:5f:7b:f4:05:c6:3f:46:a8:46:23:f7:23:
71:0b:f9:67:bc:6b:3c:c7:b1:a6:e4:3c:6a:16:b2:
14:c9:d4:07:e0:36:50:82:7a:ef:17:fc:eb:a5:45:
26:64:e2:36:61:01:09:2f:c4:38:d0:d4:db:a8:81:
c2:4b:03:8f:29:47:13:da:0a:5a:26:d2:03:d9:52:
8e:c9:cf:40:67:a2:4b:da:8d:d9:4a:9f:50:62:cc:
dc:af:93:0f:56:40:66:10:be:66:7e:81:96:2b:1e:
e0:cc:93:b7:6c:ac:55:eb:bd:8a:54:98:b4:0f:89:
d7:86:a4:52:28:26:dd:9d:1b:ac:da:b9:52:28:e6:
14:d0:b6:60:2a:cb:92:fa:b8:8f:18:a4:5c:65:cc:
86:a0:81:94:ac:a7:81:22:ba:fb:dd:d2:21:a9:1a:
ff:62:89:ac:fe:2a:f7:22:bd:54:40:13:0d:c1:10:
98:35:92:91:83:b0:11:69:c2:b1:e5:ec:b9:4a:55:
46:42:4e:79:41:92:2c:14:e3:b5:b8:62:72:99:99:
1c:fc:61:3a:ad:3f:d5:e8:50:a9:f2:3a:b6:0c:fb:
15:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BF:BD:33:E5:EE:75:E1:F8:85:6B:F3:42:7E:C5:D8:F7:2B:C0:D2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/78ED3502C52411EFB7FE94B7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.240.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:2d:31:4e:96:5e:87:9f:2b:6c:8e:4e:65:77:7c:6e:9d:3b:
45:39:8f:36:d8:33:29:40:4f:ea:50:f6:cc:5e:af:ff:47:14:
ed:e1:ea:ae:7b:79:a8:ec:04:d1:7b:1c:11:ce:2b:b0:45:19:
4a:df:b0:11:90:47:4f:b4:5e:48:16:59:25:d4:1b:2e:53:b8:
2a:f7:44:6d:5e:07:48:60:a4:5b:00:58:81:23:08:15:84:bd:
56:2a:8e:e3:32:20:28:87:38:91:59:75:12:4b:7b:7e:3c:a4:
8a:24:12:c9:f6:a8:cd:fd:16:e7:61:6e:1f:53:5c:2c:62:f6:
ef:90:d8:1d:17:6c:99:bf:a9:58:1e:dd:a9:1c:4e:df:2d:71:
6d:a9:94:32:a5:f7:78:f5:9e:0a:ed:af:c6:d3:d3:27:bc:98:
93:dd:05:35:8c:b8:e1:a4:1c:e6:41:7f:46:98:3d:57:1f:94:
cf:d9:04:30:4e:af:72:dd:7c:d1:a7:e0:6d:a0:1a:2d:09:f2:
b7:06:d4:b1:c1:60:97:10:63:76:c1:cd:2c:2c:67:97:6f:97:
61:6a:5c:c0:b3:ec:74:e1:31:0d:9e:0c:9a:7b:c3:02:93:a7:
19:c8:7a:4b:70:8f:39:d4:1e:a0:78:2c:b0:bd:14:d6:07:1b:
a9:e2:04:a1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASt3MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI4MTQwMzA3WhcNMjcxMjEyMTQwMzA3WjAYMRYw
FAYDVQQDEw02NzcwMDUxZi01NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAsuomJdWZKnfw1s3VMROIH3Oshx4n1QbG0dJ1Sn2ipdVfe/QFxj9GqEYj
9yNxC/lnvGs8x7Gm5DxqFrIUydQH4DZQgnrvF/zrpUUmZOI2YQEJL8Q40NTbqIHC
SwOPKUcT2gpaJtID2VKOyc9AZ6JL2o3ZSp9QYszcr5MPVkBmEL5mfoGWKx7gzJO3
bKxV672KVJi0D4nXhqRSKCbdnRus2rlSKOYU0LZgKsuS+riPGKRcZcyGoIGUrKeB
Irr73dIhqRr/Yoms/ir3Ir1UQBMNwRCYNZKRg7ARacKx5ey5SlVGQk55QZIsFOO1
uGJymZkc/GE6rT/V6FCp8jq2DPsVzwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOe/
vTPl7nXh+IVr80J+xdj3K8DSMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC83OEVEMzUwMkM1MjQxMUVGQjdGRTk0Qjc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsvwMA0GCSqGSIb3DQEB
CwUAA4IBAQAaLTFOll6Hnytsjk5ld3xunTtFOY822DMpQE/qUPbMXq//RxTt4equ
e3mo7ATRexwRziuwRRlK37ARkEdPtF5IFlkl1BsuU7gq90RtXgdIYKRbAFiBIwgV
hL1WKo7jMiAohziRWXUSS3t+PKSKJBLJ9qjN/RbnYW4fU1wsYvbvkNgdF2yZv6lY
Ht2pHE7fLXFtqZQypfd49Z4K7a/G09MnvJiT3QU1jLjhpBzmQX9GmD1XH5TP2QQw
Tq9y3XzRp+BtoBotCfK3BtSxwWCXEGN2wc0sLGeXb5dhalzAs+x04TENngyae8MC
k6cZyHpLcI851B6geCywvRTWBxup4gSh
-----END CERTIFICATE-----
Generated at Fri Apr 11 16:07:28 2025 by rpki-client