Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA2AE35CF99511EF8A7F42B5762E951A.roa
File: BA2AE35CF99511EF8A7F42B5762E951A.roa (raw, json)
Hash identifier: uRK5ECpETBF5R9biQJw1l7cmqWT6i9+bNt52u7AEHao=
Subject key identifier: 2C:AE:7E:E9:DE:B9:2A:9E:78:75:6F:B3:55:98:D4:5B:AC:A1:CD:9F
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01723E
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA2AE35CF99511EF8A7F42B5762E951A.roa
Signing time: Wed 05 Mar 2025 07:44:54 +0000
ROA not before: Wed 05 Mar 2025 07:44:50 +0000
ROA not after: Tue 15 Apr 2025 07:44:50 +0000
asID: 138915
IP address blocks: 154.203.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94782 (0x1723e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 5 07:44:50 2025 GMT
Not After : Apr 15 07:44:50 2025 GMT
Subject: CN=67c800f6-7ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:f7:60:1c:ef:f7:0c:61:68:4e:7a:bb:4a:ea:
02:9c:fe:aa:21:25:ba:c9:83:8d:4c:1e:c6:0a:e7:
a1:04:fa:0e:46:f8:5b:d5:6a:39:02:bb:a7:fa:3a:
d2:ed:3f:79:6e:2c:3e:4e:de:1c:ed:52:93:d3:3a:
26:a0:74:45:83:8c:74:f5:c7:42:5d:fb:38:b5:77:
f0:99:92:c9:d7:45:61:99:f3:76:9b:66:8a:60:36:
da:e5:88:54:72:0f:a1:02:04:88:a6:de:5f:84:77:
9c:72:98:8e:33:c7:58:c1:d0:c1:2d:12:cc:e2:ab:
f2:53:b2:9b:74:9d:19:b2:d9:89:ed:ab:c5:c2:5c:
09:1a:31:27:6c:d7:81:08:5e:fb:a6:8f:4e:b6:cb:
a5:24:db:dd:7b:87:46:86:89:28:17:dd:c5:33:d0:
5b:03:f9:4c:14:67:36:0f:e5:75:5e:89:fd:45:5f:
ba:c8:06:f2:6b:39:18:aa:74:c8:a7:67:1f:b4:cb:
84:26:15:9c:b9:e2:23:6f:eb:06:ee:f2:c0:59:6c:
4f:52:1b:84:e3:b4:a8:a5:08:26:e3:43:8a:46:86:
4a:f7:d8:ee:eb:eb:fd:3b:e2:c7:c9:11:f9:7a:07:
5e:cb:87:7a:2f:c4:76:8a:90:7a:23:b7:79:82:a5:
ac:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:AE:7E:E9:DE:B9:2A:9E:78:75:6F:B3:55:98:D4:5B:AC:A1:CD:9F
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BA2AE35CF99511EF8A7F42B5762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.203.143.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:4f:3f:f5:21:91:e1:a1:5e:54:50:76:52:38:a1:09:76:ae:
ce:1a:d7:de:00:13:be:30:90:5d:90:98:41:42:44:b4:5f:74:
1b:cc:79:13:23:f0:48:88:c1:04:84:ba:77:fc:f6:6c:c7:3b:
b7:c9:08:6c:6a:59:d0:7e:73:7d:7d:db:1b:19:3d:48:09:3b:
59:1a:59:0d:e4:4e:88:9e:4e:b9:c2:de:83:ec:17:11:b6:c2:
83:bc:eb:c5:1b:94:94:7f:4c:ed:d5:7c:fb:87:81:33:c2:37:
fc:2e:a0:ad:70:a6:fe:38:a9:b1:74:58:a4:82:ca:7f:b3:37:
91:9d:f7:45:c7:c0:2f:cc:ac:80:bd:86:70:c6:b3:81:c2:18:
84:2f:0c:59:00:e5:7d:c5:fd:b0:0e:cd:e4:3b:47:1b:a5:8b:
a3:0e:5a:65:1d:a9:19:8d:5d:41:f2:f8:c4:8d:85:dc:47:aa:
ec:c4:df:b0:c5:6a:52:55:61:02:80:a7:c5:ed:ee:52:f1:2e:
92:92:9f:bf:d7:71:1a:9d:81:16:cc:3b:5a:9c:9b:b4:ee:35:
0f:04:96:b3:01:94:26:f1:3d:8c:98:05:8e:92:a1:d1:9a:1f:
e9:ac:65:59:22:15:16:01:56:a8:4e:6d:7a:16:71:7e:10:ac:
20:76:dc:e8
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAXI+MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzA1MDc0NDUwWhcNMjUwNDE1MDc0NDUwWjAYMRYw
FAYDVQQDEw02N2M4MDBmNi03Y2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2vdgHO/3DGFoTnq7SuoCnP6qISW6yYONTB7GCuehBPoORvhb1Wo5Arun
+jrS7T95biw+Tt4c7VKT0zomoHRFg4x09cdCXfs4tXfwmZLJ10VhmfN2m2aKYDba
5YhUcg+hAgSIpt5fhHeccpiOM8dYwdDBLRLM4qvyU7KbdJ0ZstmJ7avFwlwJGjEn
bNeBCF77po9OtsulJNvde4dGhokoF93FM9BbA/lMFGc2D+V1Xon9RV+6yAbyazkY
qnTIp2cftMuEJhWcueIjb+sG7vLAWWxPUhuE47SopQgm40OKRoZK99ju6+v9O+LH
yRH5egdey4d6L8R2ipB6I7d5gqWsPwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCyu
funeuSqeeHVvs1WY1Fusoc2fMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CQTJBRTM1Q0Y5OTUxMUVGOEE3RjQyQjU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsuPMA0GCSqGSIb3DQEB
CwUAA4IBAQB9Tz/1IZHhoV5UUHZSOKEJdq7OGtfeABO+MJBdkJhBQkS0X3QbzHkT
I/BIiMEEhLp3/PZsxzu3yQhsalnQfnN9fdsbGT1ICTtZGlkN5E6Ink65wt6D7BcR
tsKDvOvFG5SUf0zt1Xz7h4Ezwjf8LqCtcKb+OKmxdFikgsp/szeRnfdFx8AvzKyA
vYZwxrOBwhiELwxZAOV9xf2wDs3kO0cbpYujDlplHakZjV1B8vjEjYXcR6rsxN+w
xWpSVWECgKfF7e5S8S6Skp+/13EanYEWzDtanJu07jUPBJazAZQm8T2MmAWOkqHR
mh/prGVZIhUWAVaoTm16FnF+EKwgdtzo
-----END CERTIFICATE-----
Generated at Mon Apr 7 10:24:12 2025 by rpki-client