Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3339B40C8B411EF86B75364762E951A.roa
File: C3339B40C8B411EF86B75364762E951A.roa (raw, json)
Hash identifier: 56hAesOQEB4AhpdG49XdizQls9o8i1acpATZqmZzkgs=
Subject key identifier: DD:A4:C5:6B:28:C2:73:6B:48:60:75:29:BD:AF:62:FE:0D:39:87:78
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0131C2
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3339B40C8B411EF86B75364762E951A.roa
Signing time: Thu 02 Jan 2025 02:53:37 +0000
ROA not before: Thu 02 Jan 2025 02:53:33 +0000
ROA not after: Mon 13 Dec 2027 02:53:33 +0000
asID: 17561
IP address blocks: 154.220.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78274 (0x131c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 02:53:33 2025 GMT
Not After : Dec 13 02:53:33 2027 GMT
Subject: CN=6775ffb1-18bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:97:8f:d0:38:b6:ad:7a:f3:44:66:a9:5f:90:
8e:c0:04:47:37:ff:26:99:28:74:b3:13:e3:d7:02:
3c:24:53:45:93:00:14:1c:4f:02:c3:6a:0f:79:b2:
1c:de:72:9f:71:ed:d8:a9:f8:25:31:d7:9b:1d:62:
05:44:54:7b:1c:ba:07:81:1d:42:8f:08:47:79:07:
81:45:9e:3c:79:1b:56:fd:3b:7a:9c:51:2b:7f:f4:
00:fd:2e:f2:2a:a6:c3:99:ec:b9:8d:0e:1e:aa:29:
76:c1:df:3e:dd:43:9a:4d:2a:ae:fa:3e:25:ab:a3:
00:ed:50:c3:23:fc:6b:92:72:f0:79:7a:c3:e6:ba:
04:26:54:29:99:f8:f4:6d:87:81:d9:0c:02:df:99:
e7:3e:64:20:e0:53:9a:66:0c:ab:ed:4c:a2:8f:2a:
24:09:0b:fc:e5:4c:78:b9:de:db:98:5f:4b:36:66:
ae:16:22:8c:96:e8:c2:ef:39:5a:58:f3:3b:db:01:
6b:12:49:bb:84:eb:02:5b:02:3e:49:8d:53:d1:99:
40:89:27:08:31:06:6c:2a:c4:de:63:b6:e9:29:59:
68:de:0e:d6:c8:70:8c:65:6a:70:9f:44:67:d1:cf:
9f:51:83:de:f0:69:eb:34:5d:65:0e:d2:66:7c:b8:
d8:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A4:C5:6B:28:C2:73:6B:48:60:75:29:BD:AF:62:FE:0D:39:87:78
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/C3339B40C8B411EF86B75364762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.220.189.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e5:66:e4:28:8a:25:04:23:f1:23:c9:9d:22:01:2f:34:d3:
f4:1a:a4:b9:ab:64:d5:91:fa:4d:f9:cf:d6:b5:c6:8c:3d:46:
0f:94:26:3e:a9:0f:7f:d5:46:8c:d3:e9:e2:8d:73:65:c9:aa:
8f:27:84:1a:04:88:bb:c2:e1:f1:41:05:50:02:38:f5:c2:a4:
d7:12:6f:8b:da:f9:72:03:ec:f8:ca:9a:de:3c:15:b5:6c:51:
d4:e2:a8:11:e1:b5:f8:ba:f2:70:bf:74:54:15:2f:f6:27:2f:
09:cf:e3:09:0e:42:bd:0b:dc:8c:04:d2:19:6a:5c:da:d7:b8:
ca:a2:ec:06:0b:c3:3e:a9:13:fe:06:c2:75:14:db:bf:48:fa:
e4:75:f9:99:02:70:34:98:eb:6f:fc:aa:86:d1:f4:28:fd:fb:
d4:73:b3:d0:28:ba:d8:c5:5d:4b:d2:a0:1a:a7:ec:23:ca:28:
90:c9:4d:eb:10:70:a2:2b:38:e4:a2:8e:98:59:66:29:e6:7b:
60:68:69:0c:1c:ea:0e:68:0b:a6:9d:f6:4e:f9:86:8b:03:b0:
5b:75:6d:46:a4:7f:82:67:23:a8:9f:53:f6:f9:d1:f0:01:8d:
bd:f9:11:f5:f8:15:2b:34:22:f8:57:96:0f:3b:66:e7:b9:c6:
15:ef:9d:a3
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATHCMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMDI1MzMzWhcNMjcxMjEzMDI1MzMzWjAYMRYw
FAYDVQQDEw02Nzc1ZmZiMS0xOGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnJeP0Di2rXrzRGapX5COwARHN/8mmSh0sxPj1wI8JFNFkwAUHE8Cw2oP
ebIc3nKfce3YqfglMdebHWIFRFR7HLoHgR1CjwhHeQeBRZ48eRtW/Tt6nFErf/QA
/S7yKqbDmey5jQ4eqil2wd8+3UOaTSqu+j4lq6MA7VDDI/xrknLweXrD5roEJlQp
mfj0bYeB2QwC35nnPmQg4FOaZgyr7UyijyokCQv85Ux4ud7bmF9LNmauFiKMlujC
7zlaWPM72wFrEkm7hOsCWwI+SY1T0ZlAiScIMQZsKsTeY7bpKVlo3g7WyHCMZWpw
n0Rn0c+fUYPe8GnrNF1lDtJmfLjYowIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFN2k
xWsownNrSGB1Kb2vYv4NOYd4MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DMzMzOUI0MEM4QjQxMUVGODZCNzUzNjQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmty9MA0GCSqGSIb3DQEB
CwUAA4IBAQBn5WbkKIolBCPxI8mdIgEvNNP0GqS5q2TVkfpN+c/WtcaMPUYPlCY+
qQ9/1UaM0+nijXNlyaqPJ4QaBIi7wuHxQQVQAjj1wqTXEm+L2vlyA+z4yprePBW1
bFHU4qgR4bX4uvJwv3RUFS/2Jy8Jz+MJDkK9C9yMBNIZalza17jKouwGC8M+qRP+
BsJ1FNu/SPrkdfmZAnA0mOtv/KqG0fQo/fvUc7PQKLrYxV1L0qAap+wjyiiQyU3r
EHCiKzjkoo6YWWYp5ntgaGkMHOoOaAumnfZO+YaLA7BbdW1GpH+CZyOon1P2+dHw
AY29+RH1+BUrNCL4V5YPO2bnucYV752j
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:37:13 2025 by rpki-client