Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B57D30AC52D11EFA2322C71762E951A.roa
File: 9B57D30AC52D11EFA2322C71762E951A.roa (raw, json)
Hash identifier: 2GCKNL7GCOWlAk+Mby76g4LyDM3asSf5nzLjyWV0vvI=
Subject key identifier: B1:57:37:0B:67:D2:70:84:DD:0E:2A:5D:08:A2:5D:5E:AB:9A:FA:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012BCD
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B57D30AC52D11EFA2322C71762E951A.roa
Signing time: Sat 28 Dec 2024 15:08:34 +0000
ROA not before: Sat 28 Dec 2024 15:08:31 +0000
ROA not after: Sun 12 Dec 2027 15:08:31 +0000
asID: 17561
IP address blocks: 154.204.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76749 (0x12bcd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 15:08:31 2024 GMT
Not After : Dec 12 15:08:31 2027 GMT
Subject: CN=67701472-2de6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:a4:ef:f4:ba:78:14:da:6f:33:02:f4:fd:
7a:73:36:3c:7b:cf:55:e8:be:71:d9:8d:16:8b:49:
4f:70:bd:70:5c:98:3b:9f:15:70:69:7d:4c:1e:90:
3f:3e:d3:db:e7:09:69:7f:52:d6:f3:a4:a6:80:93:
de:4f:c9:99:65:a0:e9:71:8b:78:d7:c2:36:10:fc:
ac:41:a7:76:f7:0b:cd:69:da:cd:e4:f8:d7:4d:ba:
9e:35:95:f6:3c:cb:78:f4:80:ed:57:c7:84:5d:c7:
e0:fd:2b:9a:96:b5:63:9e:50:c2:dc:b8:87:2a:5a:
e1:f8:16:fb:e4:01:98:cb:11:b4:dd:46:98:78:4a:
57:ab:ab:b7:54:2f:57:c9:69:ff:cb:d8:f4:fa:f6:
3f:6c:43:ef:60:f1:cb:53:06:b0:ba:e1:0c:ea:ec:
32:a6:e2:ce:7a:ef:bb:31:2f:e7:95:a4:00:ca:eb:
04:c7:8b:31:19:ba:85:39:99:37:e6:f0:5a:ac:2d:
da:06:a7:b6:6e:47:d3:7a:0d:7b:64:66:4c:c1:53:
f1:43:c9:8d:d4:ec:16:bd:3b:a4:47:0a:8f:eb:f7:
77:63:c9:47:e6:db:43:d0:8d:24:6a:dc:0b:52:71:
7b:de:f6:16:71:a2:dc:1e:73:bc:e5:7d:e6:6c:94:
84:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:57:37:0B:67:D2:70:84:DD:0E:2A:5D:08:A2:5D:5E:AB:9A:FA:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/9B57D30AC52D11EFA2322C71762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.79.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:7a:20:ff:4a:19:b6:a5:a4:b3:35:3c:dc:de:c8:75:eb:11:
88:65:0f:a5:be:5c:9e:70:90:38:bd:82:84:0a:04:ac:bd:db:
1e:9d:50:f5:fb:1b:95:99:83:43:35:1b:42:b2:fa:87:1a:24:
b0:7f:82:b7:42:40:cc:ed:3f:14:5d:86:8e:4e:37:33:a4:48:
b3:9a:ad:c1:7f:84:b5:b6:8e:e7:e5:b1:72:41:ad:4b:5f:cc:
a7:b1:75:26:a5:f2:dd:fe:c6:05:cb:f9:e6:e1:17:15:10:80:
99:42:d8:52:a4:a3:85:24:b1:fd:3e:3c:48:6f:96:4c:67:18:
2e:d1:7a:a3:86:68:05:d3:68:22:95:d2:6b:a9:f5:c9:f2:a1:
3f:ba:55:5d:36:22:ab:79:9b:67:f7:af:33:77:f0:d6:1a:4f:
76:f8:ab:d2:c4:61:a3:46:b1:16:c8:1e:60:08:01:66:ee:e4:
ab:d1:60:ec:c7:77:ae:7b:dc:51:2a:57:a3:60:79:9e:f0:bb:
24:fd:15:48:d1:b9:1b:19:4d:01:0e:26:b6:92:52:40:00:dc:
30:15:5d:54:61:60:36:11:e7:31:52:a1:87:c6:2a:6b:5b:4d:
10:b0:fc:2e:05:07:85:0a:39:f5:64:ce:2e:36:dc:01:cd:8c:
f2:df:d2:10
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASvNMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI4MTUwODMxWhcNMjcxMjEyMTUwODMxWjAYMRYw
FAYDVQQDEw02NzcwMTQ3Mi0yZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA1mCk7/S6eBTabzMC9P16czY8e89V6L5x2Y0Wi0lPcL1wXJg7nxVwaX1M
HpA/PtPb5wlpf1LW86SmgJPeT8mZZaDpcYt418I2EPysQad29wvNadrN5PjXTbqe
NZX2PMt49IDtV8eEXcfg/SualrVjnlDC3LiHKlrh+Bb75AGYyxG03UaYeEpXq6u3
VC9XyWn/y9j0+vY/bEPvYPHLUwawuuEM6uwypuLOeu+7MS/nlaQAyusEx4sxGbqF
OZk35vBarC3aBqe2bkfTeg17ZGZMwVPxQ8mN1OwWvTukRwqP6/d3Y8lH5ttD0I0k
atwLUnF73vYWcaLcHnO85X3mbJSEfQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLFX
Nwtn0nCE3Q4qXQiiXV6rmvocMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC85QjU3RDMwQUM1MkQxMUVGQTIzMjJDNzE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsxPMA0GCSqGSIb3DQEB
CwUAA4IBAQDSeiD/Shm2paSzNTzc3sh16xGIZQ+lvlyecJA4vYKECgSsvdsenVD1
+xuVmYNDNRtCsvqHGiSwf4K3QkDM7T8UXYaOTjczpEizmq3Bf4S1to7n5bFyQa1L
X8ynsXUmpfLd/sYFy/nm4RcVEICZQthSpKOFJLH9PjxIb5ZMZxgu0XqjhmgF02gi
ldJrqfXJ8qE/ulVdNiKreZtn968zd/DWGk92+KvSxGGjRrEWyB5gCAFm7uSr0WDs
x3eue9xRKlejYHme8Lsk/RVI0bkbGU0BDia2klJAANwwFV1UYWA2EecxUqGHxipr
W00QsPwuBQeFCjn1ZM4uNtwBzYzy39IQ
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:14 2025 by rpki-client