Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/948A8CAAC8B311EFA7A0975C762E951A.roa
File: 948A8CAAC8B311EFA7A0975C762E951A.roa (raw, json)
Hash identifier: fHdD22yy+UTSNHEYqGdV7lY/zdYVBeMyqcwFpVfeajE=
Subject key identifier: 48:B4:85:17:31:8D:E1:0D:51:8A:9F:C9:DD:C5:03:11:A9:D2:BA:F9
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131BE
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/948A8CAAC8B311EFA7A0975C762E951A.roa
Signing time: Thu 02 Jan 2025 02:45:09 +0000
ROA not before: Thu 02 Jan 2025 02:45:05 +0000
ROA not after: Mon 13 Dec 2027 02:45:05 +0000
asID: 17561
IP address blocks: 154.220.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78270 (0x131be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 02:45:05 2025 GMT
Not After : Dec 13 02:45:05 2027 GMT
Subject: CN=6775fdb5-2144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5c:7f:0f:49:f1:b2:d3:7b:b1:88:4d:0d:d3:
64:5c:10:6d:4a:0c:55:db:9b:af:16:a9:83:92:50:
fb:ba:99:61:ef:45:a6:7e:c9:e4:1d:2c:a3:a7:cb:
b8:d0:c7:39:be:73:56:1b:e9:e8:7b:45:4b:bb:f2:
ea:01:6a:c3:4f:67:03:46:d8:27:e8:9b:83:f8:c6:
39:ce:41:3d:a8:eb:58:35:69:70:d8:68:9e:06:75:
9e:a0:7a:2f:0e:8d:10:50:a3:71:de:2d:97:26:b2:
02:9e:3c:df:63:72:29:37:db:81:d8:ec:27:e1:31:
5d:09:32:e9:89:2f:e7:fe:aa:0d:40:72:61:eb:94:
9f:32:47:06:3a:f3:78:83:d1:e6:95:1e:ad:7e:53:
77:a8:17:21:3d:2d:58:82:48:c6:31:89:04:82:c8:
ae:da:5c:59:5d:ba:95:4c:08:dd:26:0d:0e:cd:e5:
f0:7d:32:9d:28:be:15:49:71:13:6b:5c:a2:91:e4:
9b:e4:59:1c:a8:12:27:a7:d3:d8:a1:40:c8:24:0b:
1c:c5:7d:4e:38:c7:65:02:7b:73:da:a2:ea:32:9e:
d2:b0:59:45:9b:6b:0d:a6:09:52:14:fe:cf:ae:22:
bd:40:2e:01:01:e1:7b:08:e8:ba:15:2b:db:b2:07:
7f:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:B4:85:17:31:8D:E1:0D:51:8A:9F:C9:DD:C5:03:11:A9:D2:BA:F9
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/948A8CAAC8B311EFA7A0975C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.187.0/24
Signature Algorithm: sha256WithRSAEncryption
be:c8:7d:1b:c9:d8:23:bd:37:11:dd:7e:81:a9:3b:1f:e5:9b:
3a:9c:cc:68:1f:7a:78:5d:90:ab:37:49:f4:c1:79:96:2c:3c:
f2:ee:4a:d5:67:28:fb:0e:8c:99:8c:6f:54:d1:4f:80:80:5a:
2f:96:a2:fa:9d:bc:21:9b:f3:70:08:bd:42:9d:f1:a0:4e:e5:
40:63:7c:79:bc:f8:89:96:1f:4a:68:5f:c1:86:5f:b0:f1:37:
fa:75:8b:19:26:a6:0c:7b:a6:7e:bd:7d:56:43:8e:6c:68:be:
28:0e:d3:b3:b1:e5:9e:51:20:0c:24:24:a0:62:08:5b:1b:c3:
bc:71:a9:06:e5:9d:d8:54:c8:b2:d6:d1:78:aa:d1:0a:c7:58:
67:ef:ea:e7:0a:02:f1:95:54:8d:f3:d8:96:f0:e1:15:71:31:
e8:a4:3a:b6:6b:0b:b3:04:34:a3:24:cd:f8:78:63:37:f1:32:
04:ca:5f:d2:85:01:58:8d:9e:4f:c2:d3:53:83:9e:47:3e:9a:
25:08:66:01:6a:f9:54:fb:51:2a:ba:ee:e9:9a:e7:b1:be:38:
0c:2a:54:58:73:75:5f:46:ce:97:21:bc:d7:7b:48:a1:ce:f4:
d8:2c:b9:16:27:1d:82:4c:7e:85:2f:f4:fb:a5:aa:1d:cd:0b:
24:1a:cc:23
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATG+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMDI0NTA1WhcNMjcxMjEzMDI0NTA1WjAYMRYw
FAYDVQQDEw02Nzc1ZmRiNS0yMTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzVx/D0nxstN7sYhNDdNkXBBtSgxV25uvFqmDklD7uplh70WmfsnkHSyj
p8u40Mc5vnNWG+noe0VLu/LqAWrDT2cDRtgn6JuD+MY5zkE9qOtYNWlw2GieBnWe
oHovDo0QUKNx3i2XJrICnjzfY3IpN9uB2Own4TFdCTLpiS/n/qoNQHJh65SfMkcG
OvN4g9HmlR6tflN3qBchPS1YgkjGMYkEgsiu2lxZXbqVTAjdJg0OzeXwfTKdKL4V
SXETa1yikeSb5FkcqBInp9PYoUDIJAscxX1OOMdlAntz2qLqMp7SsFlFm2sNpglS
FP7PriK9QC4BAeF7COi6FSvbsgd/2QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEi0
hRcxjeENUYqfyd3FAxGp0rr5MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85NDhBOENBQUM4QjMxMUVGQTdBMDk3NUM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmty7MA0GCSqGSIb3DQEB
CwUAA4IBAQC+yH0bydgjvTcR3X6BqTsf5Zs6nMxoH3p4XZCrN0n0wXmWLDzy7krV
Zyj7DoyZjG9U0U+AgFovlqL6nbwhm/NwCL1CnfGgTuVAY3x5vPiJlh9KaF/Bhl+w
8Tf6dYsZJqYMe6Z+vX1WQ45saL4oDtOzseWeUSAMJCSgYghbG8O8cakG5Z3YVMiy
1tF4qtEKx1hn7+rnCgLxlVSN89iW8OEVcTHopDq2awuzBDSjJM34eGM38TIEyl/S
hQFYjZ5PwtNTg55HPpolCGYBavlU+1Equu7pmuexvjgMKlRYc3VfRs6XIbzXe0ih
zvTYLLkWJx2CTH6FL/T7paodzQskGswj
-----END CERTIFICATE-----
Generated at Fri Apr 4 16:51:23 2025 by rpki-client