Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8AAE1D84C36B11EF8BF24549762E951A.roa
File: 8AAE1D84C36B11EF8BF24549762E951A.roa (raw, json)
Hash identifier: hCVaa8RnXNObHPPQU51pRHSxIWCwsqBySENsL28y/cA=
Subject key identifier: BE:DC:35:22:42:F3:F9:72:D5:00:90:2B:76:A0:04:93:C8:E5:BA:29
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0126F0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8AAE1D84C36B11EF8BF24549762E951A.roa
Signing time: Thu 26 Dec 2024 09:26:53 +0000
ROA not before: Thu 26 Dec 2024 09:26:49 +0000
ROA not after: Sun 12 Dec 2027 09:26:49 +0000
asID: 17561
IP address blocks: 154.94.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75504 (0x126f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 09:26:49 2024 GMT
Not After : Dec 12 09:26:49 2027 GMT
Subject: CN=676d215d-daa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:73:b2:e4:d7:6d:2e:bb:1b:63:2c:61:33:42:
14:25:0e:2c:9a:e5:86:8d:d1:3d:1f:ed:3a:b3:53:
c4:57:f2:70:5a:2f:b6:d0:00:d7:29:74:fc:f0:d3:
00:88:ec:c5:10:88:df:a0:12:0c:75:3c:c7:01:af:
92:4f:11:36:9a:71:51:71:6c:69:4c:3b:9c:c9:75:
6d:e0:b3:85:85:97:56:1e:e1:db:b8:91:4b:3a:55:
d0:a0:cd:df:43:2a:c7:c1:ab:bc:e0:49:3a:28:55:
49:a6:98:c4:84:f7:7c:9f:dd:82:2f:12:88:38:9c:
70:c0:e1:4f:ed:8d:74:e8:0c:24:22:da:0d:d7:ed:
cb:ab:52:dc:31:ce:f9:94:97:4d:8a:bc:df:04:42:
3a:17:d0:d2:7c:51:34:b8:ce:97:f6:50:e8:7a:c0:
a9:05:9b:6d:96:5d:df:6c:2f:6e:8e:8b:d2:c4:87:
2a:d7:2b:3a:41:66:87:4a:1e:7b:8e:43:d0:43:d7:
1e:31:44:46:87:9b:75:97:5a:bb:6f:9d:80:32:00:
b4:28:6f:3b:88:6a:a1:98:59:62:21:9d:7e:26:ea:
ca:de:95:d4:5a:dd:b1:5c:be:2a:6b:47:39:d2:ad:
99:23:02:2c:06:76:d9:30:58:99:8d:aa:c6:ee:bb:
cd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:DC:35:22:42:F3:F9:72:D5:00:90:2B:76:A0:04:93:C8:E5:BA:29
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8AAE1D84C36B11EF8BF24549762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.143.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:1b:5d:0a:d2:1c:17:91:e2:79:a3:a9:e6:21:49:32:0a:4e:
41:cb:d9:d8:ec:63:6f:e0:bb:38:83:04:a6:cd:83:99:df:a7:
3e:76:38:56:c8:e7:e0:9c:f1:de:51:87:e8:b4:a2:87:99:7b:
aa:b8:07:a9:2c:87:67:fd:a5:21:79:9f:ed:02:37:df:75:c7:
46:4b:22:d3:f6:60:66:86:c1:2f:44:99:b7:6f:59:6c:a3:c8:
d1:55:91:c6:8f:1f:33:f8:a1:50:9f:7d:0d:a0:e1:5c:26:f4:
bc:18:f2:1e:19:68:fa:08:8c:94:cb:57:ef:a2:0d:91:e3:9a:
de:4a:6e:cf:e2:f2:e9:1e:7d:1b:b3:76:0e:5e:2d:c8:bc:a1:
f9:c8:8b:b3:bd:3b:79:39:0a:3c:a2:c4:fd:c2:06:f0:23:88:
88:42:43:83:1a:40:77:0c:96:2d:1e:1f:f0:1f:e9:4c:e4:5e:
14:ac:1a:e1:3f:78:40:1a:8b:c3:6e:4e:93:af:b0:13:05:9e:
99:34:ac:7e:20:9f:3b:21:f9:3a:d3:50:06:20:55:b0:e7:65:
e1:29:54:14:79:bf:b5:85:93:cb:72:2b:ec:d2:d6:21:d1:ee:
b7:36:cf:1a:6c:ab:41:e8:39:c6:fb:5e:aa:a7:53:76:99:b0:
f6:fa:67:77
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASbwMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDkyNjQ5WhcNMjcxMjEyMDkyNjQ5WjAYMRYw
FAYDVQQDEw02NzZkMjE1ZC1kYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAynOy5NdtLrsbYyxhM0IUJQ4smuWGjdE9H+06s1PEV/JwWi+20ADXKXT8
8NMAiOzFEIjfoBIMdTzHAa+STxE2mnFRcWxpTDucyXVt4LOFhZdWHuHbuJFLOlXQ
oM3fQyrHwau84Ek6KFVJppjEhPd8n92CLxKIOJxwwOFP7Y106AwkItoN1+3Lq1Lc
Mc75lJdNirzfBEI6F9DSfFE0uM6X9lDoesCpBZttll3fbC9ujovSxIcq1ys6QWaH
Sh57jkPQQ9ceMURGh5t1l1q7b52AMgC0KG87iGqhmFliIZ1+JurK3pXUWt2xXL4q
a0c50q2ZIwIsBnbZMFiZjarG7rvN+QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFL7c
NSJC8/ly1QCQK3agBJPI5bopMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QUFFMUQ4NEMzNkIxMUVGOEJGMjQ1NDk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml6PMA0GCSqGSIb3DQEB
CwUAA4IBAQC0G10K0hwXkeJ5o6nmIUkyCk5By9nY7GNv4Ls4gwSmzYOZ36c+djhW
yOfgnPHeUYfotKKHmXuquAepLIdn/aUheZ/tAjffdcdGSyLT9mBmhsEvRJm3b1ls
o8jRVZHGjx8z+KFQn30NoOFcJvS8GPIeGWj6CIyUy1fvog2R45reSm7P4vLpHn0b
s3YOXi3IvKH5yIuzvTt5OQo8osT9wgbwI4iIQkODGkB3DJYtHh/wH+lM5F4UrBrh
P3hAGovDbk6Tr7ATBZ6ZNKx+IJ87Ifk601AGIFWw52XhKVQUeb+1hZPLcivs0tYh
0e63Ns8abKtB6DnG+16qp1N2mbD2+md3
-----END CERTIFICATE-----
Generated at Mon Apr 7 23:20:58 2025 by rpki-client