Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACFB53C20B2611F087D3534C762E951A.roa
File: ACFB53C20B2611F087D3534C762E951A.roa (raw, json)
Hash identifier: Prs3bUSP3754nLPz9dBz2LsOvy8Eqxjazb8jE7w/DSc=
Subject key identifier: 47:84:CE:2D:0A:98:10:19:BF:F4:27:82:F2:A1:DE:2A:07:8F:F2:24
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01768F
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACFB53C20B2611F087D3534C762E951A.roa
Signing time: Thu 27 Mar 2025 16:15:19 +0000
ROA not before: Thu 27 Mar 2025 16:15:15 +0000
ROA not after: Wed 16 Apr 2025 16:15:15 +0000
asID: 135097
IP address blocks: 154.89.64.0/18 maxlen: 24
154.89.64.0/19 maxlen: 24
154.89.96.0/20 maxlen: 24
154.89.112.0/21 maxlen: 24
154.89.120.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95887 (0x1768f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 27 16:15:15 2025 GMT
Not After : Apr 16 16:15:15 2025 GMT
Subject: CN=67e57997-5791
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fd:27:20:25:bb:fd:4f:d6:e1:28:aa:5b:ef:
7f:cc:ff:19:bd:e6:1a:b5:2d:6b:78:19:76:a3:d3:
b5:b9:12:67:01:1f:92:f5:ef:d5:9f:64:82:9c:21:
f7:39:19:0f:59:4f:d1:78:29:69:6c:f1:b9:f9:76:
5d:c8:31:3a:ab:51:dd:10:8a:cd:da:b6:ec:07:be:
ba:23:e0:ca:92:5a:89:59:56:2e:94:db:63:84:0b:
b2:cc:c7:97:5f:13:e9:76:1c:b1:d1:17:60:36:83:
86:18:d3:4e:61:0e:f8:2f:e1:49:54:d4:a7:38:3f:
28:0f:7b:c7:00:80:28:33:c4:58:80:5f:73:55:5b:
ac:e5:56:8d:e3:64:14:bd:92:51:b9:3f:62:65:f4:
f0:54:00:9a:9c:76:be:50:b8:65:7c:5f:43:20:cc:
ad:3d:56:b8:06:44:d9:bf:f0:bd:0c:52:20:ea:c1:
b2:cd:f0:7a:90:dc:16:1a:5c:15:39:ec:dd:d0:84:
fd:e7:d2:2f:33:6b:91:8b:23:1f:02:dc:90:33:eb:
f5:9d:f9:aa:9b:c0:02:32:ea:e9:2e:85:98:c8:b5:
fb:6b:a0:f9:7b:9c:94:7f:cc:3d:a8:30:cd:3b:87:
d7:b1:22:bd:53:42:d1:fc:eb:d7:10:f6:1d:a5:ec:
fa:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:84:CE:2D:0A:98:10:19:BF:F4:27:82:F2:A1:DE:2A:07:8F:F2:24
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/ACFB53C20B2611F087D3534C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.64.0/18
Signature Algorithm: sha256WithRSAEncryption
58:00:fa:e2:99:b0:ed:23:32:a6:76:22:e5:8b:12:6c:b1:dd:
68:38:0a:31:e4:39:0d:95:38:45:5b:bb:fb:1c:52:5d:86:cd:
99:ba:73:b6:5d:09:a5:fe:82:65:7c:0d:f8:ea:ba:d7:e6:f1:
4d:23:49:2a:01:5a:93:bf:d3:5f:74:45:97:b2:c1:44:1b:f6:
c3:4c:d6:30:93:d7:13:a2:4f:b4:34:7a:1f:d2:6a:50:67:cf:
dc:3e:3f:1b:6a:86:41:a6:c4:59:c3:4e:06:4a:4d:9e:cc:88:
2d:18:a7:3a:8a:06:24:b8:38:f0:06:f2:2c:70:88:6d:30:bd:
c5:91:c5:12:e0:8e:cd:b0:59:fc:73:5a:a1:4f:66:a6:d3:ee:
f2:71:e2:3b:54:9a:a5:06:1f:68:6c:35:18:56:f5:ed:18:0e:
be:6b:3c:6c:d4:be:f8:ca:25:27:8d:12:95:6f:13:9c:da:db:
a3:c3:be:ad:e7:32:35:71:86:c1:80:00:a8:4e:e7:79:1a:06:
07:f1:7a:fa:32:8a:93:88:d5:cb:90:7b:e5:12:23:ae:51:93:
0a:ff:18:34:18:a1:88:22:05:2a:34:7e:76:5c:2b:b8:96:eb:
41:4b:83:7a:55:59:97:f5:04:ca:69:3c:ee:6b:4a:71:e5:5c:
c1:4f:1d:45
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXaPMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzI3MTYxNTE1WhcNMjUwNDE2MTYxNTE1WjAYMRYw
FAYDVQQDEw02N2U1Nzk5Ny01NzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAq/0nICW7/U/W4SiqW+9/zP8ZveYatS1reBl2o9O1uRJnAR+S9e/Vn2SC
nCH3ORkPWU/ReClpbPG5+XZdyDE6q1HdEIrN2rbsB766I+DKklqJWVYulNtjhAuy
zMeXXxPpdhyx0RdgNoOGGNNOYQ74L+FJVNSnOD8oD3vHAIAoM8RYgF9zVVus5VaN
42QUvZJRuT9iZfTwVACanHa+ULhlfF9DIMytPVa4BkTZv/C9DFIg6sGyzfB6kNwW
GlwVOezd0IT959IvM2uRiyMfAtyQM+v1nfmqm8ACMurpLoWYyLX7a6D5e5yUf8w9
qDDNO4fXsSK9U0LR/OvXEPYdpez60QIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFEeE
zi0KmBAZv/QngvKh3ioHj/IkMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9BQ0ZCNTNDMjBCMjYxMUYwODdEMzUzNEM3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGmllAMA0GCSqGSIb3DQEB
CwUAA4IBAQBYAPrimbDtIzKmdiLlixJssd1oOAox5DkNlThFW7v7HFJdhs2ZunO2
XQml/oJlfA346rrX5vFNI0kqAVqTv9NfdEWXssFEG/bDTNYwk9cTok+0NHof0mpQ
Z8/cPj8baoZBpsRZw04GSk2ezIgtGKc6igYkuDjwBvIscIhtML3FkcUS4I7NsFn8
c1qhT2am0+7yceI7VJqlBh9obDUYVvXtGA6+azxs1L74yiUnjRKVbxOc2tujw76t
5zI1cYbBgACoTud5GgYH8Xr6MoqTiNXLkHvlEiOuUZMK/xg0GKGIIgUqNH52XCu4
lutBS4N6VVmX9QTKaTzua0px5VzBTx1F
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:55:37 2025 by rpki-client