Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6072D2C3C811EF803DEC8F762E951A.roa
File: BE6072D2C3C811EF803DEC8F762E951A.roa (raw, json)
Hash identifier: 4PxQVOgDFgl4ayqrOWO1Q1ZyFRFhYG03oCJ/KuHC9R4=
Subject key identifier: 9F:A6:2A:8C:24:0D:5F:22:B6:76:64:07:19:F5:80:CF:52:36:AC:AE
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0127EC
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6072D2C3C811EF803DEC8F762E951A.roa
Signing time: Thu 26 Dec 2024 20:34:03 +0000
ROA not before: Thu 26 Dec 2024 20:33:59 +0000
ROA not after: Fri 12 Dec 2025 20:33:59 +0000
asID: 984
IP address blocks: 154.83.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75756 (0x127ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 20:33:59 2024 GMT
Not After : Dec 12 20:33:59 2025 GMT
Subject: CN=676dbdbb-0139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:a1:28:a7:ab:43:10:cc:3a:f4:68:21:a5:75:
dc:cc:44:f6:23:bd:46:ad:90:26:50:76:8c:46:70:
db:6f:44:1f:4c:b7:5f:e1:90:6c:7c:c2:9a:26:dc:
8a:7a:77:24:d1:19:07:20:77:9b:e7:52:66:7e:b9:
4c:b7:cd:54:23:88:11:59:53:f8:93:2a:63:cf:72:
ac:df:96:d3:d1:5f:62:9f:c4:e5:9d:9a:1b:5c:e3:
f1:fa:d5:c9:e8:7e:79:2b:7d:ff:ad:de:7f:02:36:
05:8c:cd:40:42:be:e7:ec:1c:7b:a5:97:c2:85:e8:
cd:01:20:b5:8c:64:28:3c:a8:5c:81:3f:d0:8c:ac:
c2:c5:aa:e7:c3:97:5d:07:9a:01:73:86:a2:21:92:
f5:9e:53:9d:22:3f:49:2a:24:a6:68:9e:d4:e0:15:
18:1c:00:ea:44:0a:ad:21:e3:c0:06:cd:a8:61:02:
61:bd:a7:a8:71:23:f9:f0:22:23:da:e0:16:56:89:
53:bc:3d:29:2c:80:59:20:6b:71:4d:ee:31:9e:4e:
12:9c:a5:1e:b2:c6:8a:b2:80:49:52:64:df:7b:32:
92:12:7b:84:71:43:29:da:18:ed:a6:00:c6:ae:08:
0a:16:ad:c4:18:d7:a2:94:3d:99:c8:c0:de:c1:9d:
a4:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:A6:2A:8C:24:0D:5F:22:B6:76:64:07:19:F5:80:CF:52:36:AC:AE
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/BE6072D2C3C811EF803DEC8F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.139.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:cd:90:a5:72:f1:9b:66:bd:cf:e3:fb:d0:60:e4:0f:56:06:
68:08:74:64:be:db:55:ce:5f:72:cf:4d:a6:d8:17:a2:de:d4:
8e:20:86:ae:51:8f:b8:10:63:f1:20:ba:d2:33:1a:4e:9f:fb:
54:06:da:16:34:03:44:04:fd:01:dd:4d:5f:a4:c4:7a:b4:08:
e4:ec:2d:7f:11:36:66:36:5b:63:1d:40:48:d9:20:4a:ca:42:
e5:41:f9:8e:2b:7e:af:bf:cd:9e:6b:73:34:a4:f2:f3:f3:b4:
80:2f:87:65:11:a7:73:e5:fb:26:4d:bb:f5:56:ea:b4:68:b4:
4c:62:7c:b1:9a:3b:19:83:b9:ed:c3:33:77:d9:ab:01:e0:de:
f1:7f:2b:0c:91:9b:9a:6a:53:f4:2a:2e:fb:7b:da:b5:41:e8:
e2:4e:76:cf:3c:66:a2:4e:ff:3f:4a:50:25:c0:ae:e1:93:0c:
6c:32:43:f2:45:37:25:ec:55:65:0e:e4:02:a5:54:51:cc:48:
70:62:0f:6b:6b:5d:e9:17:be:a9:25:27:d5:37:b3:b5:06:43:
96:a5:8e:33:63:7c:8b:dd:2c:17:55:9d:fa:be:21:61:cb:b6:
0a:d4:83:7b:e4:04:14:ec:34:8b:00:34:73:fa:05:d8:f2:3c:
ea:56:94:b1
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASfsMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MjAzMzU5WhcNMjUxMjEyMjAzMzU5WjAYMRYw
FAYDVQQDEw02NzZkYmRiYi0wMTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA36Eop6tDEMw69GghpXXczET2I71GrZAmUHaMRnDbb0QfTLdf4ZBsfMKa
JtyKenck0RkHIHeb51JmfrlMt81UI4gRWVP4kypjz3Ks35bT0V9in8TlnZobXOPx
+tXJ6H55K33/rd5/AjYFjM1AQr7n7Bx7pZfChejNASC1jGQoPKhcgT/QjKzCxarn
w5ddB5oBc4aiIZL1nlOdIj9JKiSmaJ7U4BUYHADqRAqtIePABs2oYQJhvaeocSP5
8CIj2uAWVolTvD0pLIBZIGtxTe4xnk4SnKUessaKsoBJUmTfezKSEnuEcUMp2hjt
pgDGrggKFq3EGNeilD2ZyMDewZ2kXwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJ+m
KowkDV8itnZkBxn1gM9SNqyuMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9CRTYwNzJEMkMzQzgxMUVGODAzREVDOEY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOLMA0GCSqGSIb3DQEB
CwUAA4IBAQDOzZClcvGbZr3P4/vQYOQPVgZoCHRkvttVzl9yz02m2Bei3tSOIIau
UY+4EGPxILrSMxpOn/tUBtoWNANEBP0B3U1fpMR6tAjk7C1/ETZmNltjHUBI2SBK
ykLlQfmOK36vv82ea3M0pPLz87SAL4dlEadz5fsmTbv1Vuq0aLRMYnyxmjsZg7nt
wzN32asB4N7xfysMkZuaalP0Ki77e9q1QejiTnbPPGaiTv8/SlAlwK7hkwxsMkPy
RTcl7FVlDuQCpVRRzEhwYg9ra13pF76pJSfVN7O1BkOWpY4zY3yL3SwXVZ36viFh
y7YK1IN75AQU7DSLADRz+gXY8jzqVpSx
-----END CERTIFICATE-----
Generated at Mon Apr 7 06:25:23 2025 by rpki-client