Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1FBA668C8BC11EFAD174B9A762E951A.roa
File: A1FBA668C8BC11EFAD174B9A762E951A.roa (raw, json)
Hash identifier: R6t0fktcvTK2LhxnYdbsiAXbyA0ozaImb97gL9pWKm0=
Subject key identifier: EE:23:80:F1:43:03:D1:D8:6E:0E:13:F1:10:7A:89:25:AB:DF:58:15
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131DC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1FBA668C8BC11EFAD174B9A762E951A.roa
Signing time: Thu 02 Jan 2025 03:49:57 +0000
ROA not before: Thu 02 Jan 2025 03:49:53 +0000
ROA not after: Mon 13 Dec 2027 03:49:53 +0000
asID: 17561
IP address blocks: 154.221.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78300 (0x131dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 03:49:53 2025 GMT
Not After : Dec 13 03:49:53 2027 GMT
Subject: CN=67760ce5-e87a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a5:0a:1e:11:2e:a2:e6:6e:e1:80:75:8c:9f:
4a:fd:17:db:88:3c:9b:9e:fa:42:50:b5:a9:5c:ee:
a9:c9:76:e0:13:9d:0d:e2:00:2f:35:25:87:09:5a:
59:a7:02:5f:23:7d:f6:3f:c5:2e:6e:65:02:c5:76:
39:b3:20:64:d0:2a:c7:ad:0a:76:b2:e9:61:83:63:
61:24:b3:2b:f3:34:a5:36:aa:f3:80:b2:ca:90:49:
46:cd:f1:35:6b:a5:dd:53:b7:83:84:24:a3:6e:7d:
72:7f:64:63:36:9a:5a:31:b9:d4:a8:de:b3:29:9b:
7b:13:7c:a3:0a:e5:ac:99:f5:65:42:30:9b:f2:4d:
13:3e:d8:3a:20:f8:92:49:26:12:a1:82:dd:d2:d3:
99:81:cd:88:84:05:a7:6f:3c:a7:6e:34:02:c3:c4:
7f:05:d2:ce:c5:be:92:5c:7d:1b:2c:a0:00:61:8e:
3c:17:2a:a5:94:5d:6f:36:6d:1c:a4:e5:73:ef:40:
08:7e:ea:e9:23:44:77:a8:e8:32:74:21:5d:b1:f3:
5f:37:84:da:ce:42:89:ce:40:90:d1:9f:6f:58:0e:
5a:5d:28:2d:ab:26:4e:40:5e:5b:a1:aa:e6:aa:b6:
67:fa:84:16:5f:35:57:8a:44:39:99:a8:b7:a2:bb:
66:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:23:80:F1:43:03:D1:D8:6E:0E:13:F1:10:7A:89:25:AB:DF:58:15
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/A1FBA668C8BC11EFAD174B9A762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:5a:1b:fc:11:e7:4d:3f:b1:ef:ed:ca:f3:98:72:81:f0:54:
aa:cc:0f:e8:77:52:b9:e2:a5:73:fd:4c:59:61:d1:97:0e:7a:
93:b9:67:f3:0c:c2:d4:75:93:dd:c9:18:f5:1d:32:0e:89:7e:
8f:cb:56:42:b3:b7:2b:60:e5:7d:f6:1a:2f:d5:05:ff:ea:e6:
d4:22:16:5c:dc:a3:6b:3f:39:fc:74:a6:ba:3e:2d:0b:c0:8b:
ae:e8:d9:7f:25:de:01:9f:86:8c:a0:f9:71:9c:a8:1c:a8:7a:
05:c2:11:90:90:e1:1d:bf:e9:a4:8c:8b:4d:03:30:c6:7c:a9:
61:78:6a:6d:49:f1:89:e2:37:3c:1a:da:88:bc:9c:eb:d9:62:
3a:7f:2b:85:2e:3e:68:f9:d6:6d:40:cb:52:40:b8:3c:d7:d2:
cf:97:b4:d8:3e:5d:2a:c5:04:4e:7a:a1:e6:e4:70:e3:1f:da:
ae:ba:bd:44:40:82:f9:f0:35:35:be:4b:ae:f8:90:57:a4:b5:
e6:48:ce:08:b2:ce:11:d2:c8:07:c7:33:8d:e3:36:fe:09:a0:
7a:be:75:92:92:f5:7e:9a:34:39:a2:c9:56:4c:d1:c2:49:36:
07:99:4e:d6:06:a4:78:c4:5a:23:65:dc:cc:c5:24:c4:8a:a1:
55:3d:dd:53
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATHcMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMDM0OTUzWhcNMjcxMjEzMDM0OTUzWjAYMRYw
FAYDVQQDEw02Nzc2MGNlNS1lODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEArqUKHhEuouZu4YB1jJ9K/RfbiDybnvpCULWpXO6pyXbgE50N4gAvNSWH
CVpZpwJfI332P8UubmUCxXY5syBk0CrHrQp2sulhg2NhJLMr8zSlNqrzgLLKkElG
zfE1a6XdU7eDhCSjbn1yf2RjNppaMbnUqN6zKZt7E3yjCuWsmfVlQjCb8k0TPtg6
IPiSSSYSoYLd0tOZgc2IhAWnbzynbjQCw8R/BdLOxb6SXH0bLKAAYY48FyqllF1v
Nm0cpOVz70AIfurpI0R3qOgydCFdsfNfN4TazkKJzkCQ0Z9vWA5aXSgtqyZOQF5b
oarmqrZn+oQWXzVXikQ5mai3ortmywIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO4j
gPFDA9HYbg4T8RB6iSWr31gVMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BMUZCQTY2OEM4QkMxMUVGQUQxNzRCOUE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt0uMA0GCSqGSIb3DQEB
CwUAA4IBAQA/Whv8EedNP7Hv7crzmHKB8FSqzA/od1K54qVz/UxZYdGXDnqTuWfz
DMLUdZPdyRj1HTIOiX6Py1ZCs7crYOV99hov1QX/6ubUIhZc3KNrPzn8dKa6Pi0L
wIuu6Nl/Jd4Bn4aMoPlxnKgcqHoFwhGQkOEdv+mkjItNAzDGfKlheGptSfGJ4jc8
GtqIvJzr2WI6fyuFLj5o+dZtQMtSQLg819LPl7TYPl0qxQROeqHm5HDjH9quur1E
QIL58DU1vkuu+JBXpLXmSM4Iss4R0sgHxzON4zb+CaB6vnWSkvV+mjQ5oslWTNHC
STYHmU7WBqR4xFojZdzMxSTEiqFVPd1T
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:34:53 2025 by rpki-client