Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B607B4FEDC0211EFA4BE6349762E951A.roa
File: B607B4FEDC0211EFA4BE6349762E951A.roa (raw, json)
Hash identifier: aQUFUyx5mmCsoxe6aitbR/vtv7BMgk4nwJyyGaV0UZY=
Subject key identifier: 89:82:C5:C2:CE:A7:E0:4F:2D:DF:5F:D1:D8:93:95:3E:ED:34:38:DA
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014AEA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B607B4FEDC0211EFA4BE6349762E951A.roa
Signing time: Sun 26 Jan 2025 16:29:27 +0000
ROA not before: Sun 26 Jan 2025 16:29:24 +0000
ROA not after: Tue 01 Apr 2025 16:29:24 +0000
asID: 63139
IP address blocks: 154.94.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84714 (0x14aea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 26 16:29:24 2025 GMT
Not After : Apr 1 16:29:24 2025 GMT
Subject: CN=679662e7-318f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fe:d8:0e:26:01:6d:af:fd:d6:f6:bd:8d:ef:
e7:4c:ba:a0:15:8e:1b:e7:ca:12:6c:81:63:5d:ea:
18:23:a3:92:a6:dd:cb:b2:66:27:aa:cc:49:b8:48:
d4:0e:a6:3d:52:22:e0:f3:a6:d5:91:1a:a4:01:92:
69:20:44:ee:d2:88:1b:cc:44:51:89:44:d5:c9:2a:
84:79:af:e0:da:de:a0:33:94:6b:fd:07:aa:f9:b0:
c6:0e:01:8b:2c:66:f1:36:a9:fb:33:35:67:d2:5e:
41:9d:6c:dc:53:53:62:48:37:8e:4a:f8:fc:eb:e1:
6b:9d:c7:6f:7e:f1:99:9c:e6:06:e8:09:7d:e8:c3:
db:68:20:82:cd:55:66:a6:05:cd:40:17:49:72:1d:
c3:7f:e4:35:0c:3d:bb:98:de:e3:b5:24:73:f1:5b:
3f:f6:8d:41:f6:3a:ab:e6:67:fe:81:92:5e:54:8b:
e3:32:fd:d7:09:8a:98:a3:b8:ff:60:ce:76:4f:b3:
66:35:7d:a6:92:43:73:e8:03:7e:3b:6e:f9:eb:25:
f0:8f:07:fa:e5:69:c0:60:a3:57:e5:9c:b3:3b:1c:
c2:4e:35:5e:e0:ab:c3:71:f2:a4:f0:41:d8:20:f9:
34:24:c2:0c:56:28:3c:8a:85:63:45:cc:8c:fa:08:
43:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:82:C5:C2:CE:A7:E0:4F:2D:DF:5F:D1:D8:93:95:3E:ED:34:38:DA
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/B607B4FEDC0211EFA4BE6349762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.77.0/24
Signature Algorithm: sha256WithRSAEncryption
97:0d:fc:50:f1:26:a5:0b:a4:38:ea:46:f4:0f:7b:9c:bd:33:
f6:bd:03:62:fd:b0:55:84:b7:11:88:14:08:29:75:cd:16:04:
8c:9d:4a:af:12:27:4f:12:58:db:5b:1e:e3:c6:24:e1:40:cb:
86:a1:de:e5:bc:cc:3f:ee:2d:a6:ab:ed:ee:c2:a5:d6:19:58:
23:de:83:c3:0c:2d:74:66:23:5b:33:ca:44:5e:04:c8:e4:85:
6e:1a:8a:6c:51:8b:09:17:b1:0a:43:aa:7d:46:a4:76:ce:3a:
ca:32:97:97:75:39:54:9d:38:c8:76:31:0f:58:be:3d:84:b9:
99:e6:b3:eb:c7:fb:b5:cc:bf:59:10:95:23:69:f0:d9:43:4b:
07:4f:88:a7:96:3d:f2:fc:a8:92:ea:ba:60:36:5b:82:d8:ef:
6d:31:ed:00:fa:38:45:65:40:11:99:78:cc:65:45:23:ce:7d:
e3:d8:44:05:5a:a5:0a:32:2b:0a:97:a5:6e:f0:2e:a9:af:3e:
f7:76:e0:ab:23:5e:7a:7d:ab:20:8c:55:3c:09:1c:91:26:c1:
7a:ae:4d:8d:19:83:d4:5b:d5:16:4d:98:ee:a9:c8:dc:9a:49:
27:cb:29:02:f0:f5:c3:70:54:5b:07:20:3a:a6:66:11:36:c9:
62:18:d1:12
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAUrqMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTI2MTYyOTI0WhcNMjUwNDAxMTYyOTI0WjAYMRYw
FAYDVQQDEw02Nzk2NjJlNy0zMThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxv7YDiYBba/91va9je/nTLqgFY4b58oSbIFjXeoYI6OSpt3LsmYnqsxJ
uEjUDqY9UiLg86bVkRqkAZJpIETu0ogbzERRiUTVySqEea/g2t6gM5Rr/Qeq+bDG
DgGLLGbxNqn7MzVn0l5BnWzcU1NiSDeOSvj86+FrncdvfvGZnOYG6Al96MPbaCCC
zVVmpgXNQBdJch3Df+Q1DD27mN7jtSRz8Vs/9o1B9jqr5mf+gZJeVIvjMv3XCYqY
o7j/YM52T7NmNX2mkkNz6AN+O2756yXwjwf65WnAYKNX5ZyzOxzCTjVe4KvDcfKk
8EHYIPk0JMIMVig8ioVjRcyM+ghDRQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFImC
xcLOp+BPLd9f0diTlT7tNDjaMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CNjA3QjRGRURDMDIxMUVGQTRCRTYzNDk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAml5NMA0GCSqGSIb3DQEB
CwUAA4IBAQCXDfxQ8SalC6Q46kb0D3ucvTP2vQNi/bBVhLcRiBQIKXXNFgSMnUqv
EidPEljbWx7jxiThQMuGod7lvMw/7i2mq+3uwqXWGVgj3oPDDC10ZiNbM8pEXgTI
5IVuGopsUYsJF7EKQ6p9RqR2zjrKMpeXdTlUnTjIdjEPWL49hLmZ5rPrx/u1zL9Z
EJUjafDZQ0sHT4inlj3y/KiS6rpgNluC2O9tMe0A+jhFZUARmXjMZUUjzn3j2EQF
WqUKMisKl6Vu8C6prz73duCrI156fasgjFU8CRyRJsF6rk2NGYPUW9UWTZjuqcjc
mkknyykC8PXDcFRbByA6pmYRNsliGNES
-----END CERTIFICATE-----
Generated at Sat Apr 12 05:05:43 2025 by rpki-client