Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B6047B4C36311EF9E108194762E951A.roa
File: 8B6047B4C36311EF9E108194762E951A.roa (raw, json)
Hash identifier: hhxRShK7nkgj7I2zmV0kd+L/rju/9jPTP8U0QRdz53E=
Subject key identifier: AD:0D:FB:6A:65:4F:DE:06:B7:D5:BC:18:12:CD:43:B9:B7:B1:98:31
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012682
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B6047B4C36311EF9E108194762E951A.roa
Signing time: Thu 26 Dec 2024 08:29:38 +0000
ROA not before: Thu 26 Dec 2024 08:29:34 +0000
ROA not after: Sun 12 Dec 2027 08:29:34 +0000
asID: 17561
IP address blocks: 154.93.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75394 (0x12682)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 08:29:34 2024 GMT
Not After : Dec 12 08:29:34 2027 GMT
Subject: CN=676d13f2-1f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1d:84:75:f7:58:33:99:15:14:7b:64:44:c4:
a5:c4:1c:18:76:68:d8:83:71:ee:67:43:0f:4e:f3:
66:cf:59:b3:30:0f:08:e5:d7:77:63:f4:a0:b5:50:
75:64:fa:f8:75:1a:d2:18:75:8d:16:82:00:cc:d6:
c4:fd:0f:73:ea:51:04:1f:46:07:8a:af:37:ec:8a:
71:16:a7:0b:ad:3d:18:bf:56:e2:1f:5d:84:1a:9e:
7e:4f:ec:ee:2d:29:03:61:59:fe:e7:57:1e:0d:08:
2c:cf:86:67:0c:94:54:d9:94:08:97:65:c5:fb:bb:
80:8c:96:19:11:4a:74:ff:ca:c0:92:65:09:8c:ec:
68:62:bb:0f:e3:43:50:32:d3:de:5a:04:8a:fd:74:
53:e0:d7:a5:7b:81:43:0b:c8:3f:85:72:f0:8b:fc:
ac:78:d4:06:36:a5:35:0c:47:4a:61:15:b6:2f:c1:
55:b8:82:cb:fa:96:af:f5:20:0e:55:d6:bd:b9:49:
5e:21:6f:26:ba:c0:23:ae:da:dd:3b:a2:f8:bb:f3:
8f:af:4d:ea:2f:53:d7:eb:da:1f:90:a5:0f:51:9c:
21:3e:fb:48:a8:4c:e9:f6:ca:44:73:17:54:ce:50:
04:7a:fe:7d:0b:f7:5f:59:7a:6d:ad:67:71:9d:f7:
d0:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:0D:FB:6A:65:4F:DE:06:B7:D5:BC:18:12:CD:43:B9:B7:B1:98:31
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/8B6047B4C36311EF9E108194762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.93.12.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:36:83:06:da:61:1c:29:21:6c:17:70:18:ba:81:07:6b:0a:
cf:ec:b9:19:92:f8:6e:44:e4:cc:25:9d:4e:7d:69:0c:b8:ec:
1c:ef:bb:c1:01:da:28:b8:69:98:c6:61:70:fc:53:fe:7c:21:
0c:d3:a7:17:fe:92:39:00:28:9e:5d:a9:85:a1:d9:6c:93:80:
0f:2e:cb:e0:ff:8d:98:83:90:2a:b3:82:92:d5:20:37:e5:68:
30:16:58:01:86:84:6f:2a:1a:b4:af:0e:b3:13:3e:24:6b:2b:
71:2c:1b:a1:b5:1c:9b:e8:67:1e:5a:dc:bb:b3:7e:2a:9d:fa:
9e:1f:f4:b5:ea:33:9a:bb:4b:70:5e:19:99:67:3d:91:52:17:
f6:84:29:50:53:0f:1a:bf:6e:59:0f:dc:58:05:6d:46:d3:b0:
43:47:02:18:38:78:6b:d4:1a:3a:4d:a2:f8:20:8b:0a:ba:8e:
af:62:fa:44:01:bb:d8:2e:83:22:55:7b:b2:7b:c8:fa:be:ca:
6b:14:bf:0c:34:ce:ba:04:ce:b7:8b:de:05:ee:ca:9f:b7:c6:
d3:0c:a4:83:d4:94:8e:f2:ef:85:20:d0:34:a6:51:a2:e1:e7:
21:6a:8a:1c:51:b7:31:a7:e0:f8:97:d2:43:08:9d:f1:b8:1a:
cf:eb:a5:59
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASaCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MDgyOTM0WhcNMjcxMjEyMDgyOTM0WjAYMRYw
FAYDVQQDEw02NzZkMTNmMi0xZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4h2EdfdYM5kVFHtkRMSlxBwYdmjYg3HuZ0MPTvNmz1mzMA8I5dd3Y/Sg
tVB1ZPr4dRrSGHWNFoIAzNbE/Q9z6lEEH0YHiq837IpxFqcLrT0Yv1biH12EGp5+
T+zuLSkDYVn+51ceDQgsz4ZnDJRU2ZQIl2XF+7uAjJYZEUp0/8rAkmUJjOxoYrsP
40NQMtPeWgSK/XRT4Nele4FDC8g/hXLwi/yseNQGNqU1DEdKYRW2L8FVuILL+pav
9SAOVda9uUleIW8musAjrtrdO6L4u/OPr03qL1PX69ofkKUPUZwhPvtIqEzp9spE
cxdUzlAEev59C/dfWXptrWdxnffQmQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK0N
+2plT94Gt9W8GBLNQ7m3sZgxMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC84QjYwNDdCNEMzNjMxMUVGOUUxMDgxOTQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml0MMA0GCSqGSIb3DQEB
CwUAA4IBAQALNoMG2mEcKSFsF3AYuoEHawrP7LkZkvhuROTMJZ1OfWkMuOwc77vB
AdoouGmYxmFw/FP+fCEM06cX/pI5ACieXamFodlsk4APLsvg/42Yg5Aqs4KS1SA3
5WgwFlgBhoRvKhq0rw6zEz4kaytxLBuhtRyb6GceWty7s34qnfqeH/S16jOau0tw
XhmZZz2RUhf2hClQUw8av25ZD9xYBW1G07BDRwIYOHhr1Bo6TaL4IIsKuo6vYvpE
AbvYLoMiVXuye8j6vsprFL8MNM66BM63i94F7sqft8bTDKSD1JSO8u+FINA0plGi
4echaoocUbcxp+D4l9JDCJ3xuBrP66VZ
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:39:32 2025 by rpki-client