Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CDEFABF6C5DE11EF9D80E755762E951A.roa
File: CDEFABF6C5DE11EF9D80E755762E951A.roa (raw, json)
Hash identifier: A+ZHjY4ZyVrT1bAptBN+n0QAj/IDZARXPaBL1QMe3/A=
Subject key identifier: 07:11:00:8F:5F:F4:6B:68:90:66:03:99:6C:D7:30:7D:A3:C1:96:48
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D3A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CDEFABF6C5DE11EF9D80E755762E951A.roa
Signing time: Sun 29 Dec 2024 12:17:00 +0000
ROA not before: Sun 29 Dec 2024 12:16:56 +0000
ROA not after: Sun 12 Dec 2027 12:16:56 +0000
asID: 17561
IP address blocks: 154.210.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77114 (0x12d3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 12:16:56 2024 GMT
Not After : Dec 12 12:16:56 2027 GMT
Subject: CN=67713dbc-4166
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:27:dc:43:78:47:20:5d:9d:cd:80:39:6b:17:
59:d3:d4:29:28:13:cb:14:01:55:44:3b:e0:19:7e:
22:55:92:e2:60:d9:9d:bc:8e:de:e7:9b:6b:8d:5c:
e4:1f:99:a4:ce:0e:e1:02:c0:4e:44:a1:51:4f:09:
63:87:2b:be:f9:5f:f1:f7:fa:fb:5d:f5:02:a0:6f:
cb:68:a3:36:0f:63:ce:b2:30:44:bc:b6:62:16:40:
7e:49:ca:2a:db:06:a3:b7:5c:a4:98:ff:ef:c9:95:
c6:84:d4:ae:04:86:a9:ef:f5:4b:ed:47:4e:a0:76:
ca:85:e0:6a:c0:f4:1a:5a:76:dd:72:d9:cc:b6:9a:
1b:73:aa:20:ce:ec:4a:a8:5a:62:61:a2:08:b0:7b:
2f:51:80:eb:2c:c0:17:a3:7f:19:6d:4a:46:42:7e:
10:0e:5f:56:5e:1d:91:88:15:89:f7:27:77:5b:1d:
a1:0c:2d:89:fe:d2:00:1c:da:1a:5e:59:6e:30:7d:
e0:2f:3e:da:05:27:84:6a:43:ef:f4:de:49:85:fe:
34:1e:36:06:61:09:2d:2c:6e:ae:02:ef:c8:36:ef:
32:00:fb:b2:31:56:2d:7e:40:f1:23:62:31:e6:d4:
25:ad:04:f9:16:e1:26:f4:4f:01:62:a6:8d:eb:0e:
e8:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:11:00:8F:5F:F4:6B:68:90:66:03:99:6C:D7:30:7D:A3:C1:96:48
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/CDEFABF6C5DE11EF9D80E755762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.95.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ab:14:c9:0f:6f:25:5c:44:36:11:b0:d3:bb:dd:01:fe:bb:
41:89:b1:74:1c:03:05:29:de:fa:be:6d:74:dd:bb:cb:60:8c:
13:c1:78:73:45:f5:5a:05:20:c4:62:02:da:bb:aa:62:f3:79:
64:af:b3:67:53:13:a1:70:a5:3b:63:67:fa:aa:e7:8d:ac:5c:
55:c4:fd:d0:a0:9f:45:fc:4f:dd:9f:d5:9f:58:4d:70:74:ba:
34:63:3a:42:e8:dc:11:25:48:28:1d:25:e5:3d:d4:16:f1:23:
4f:6c:82:f0:33:36:15:0d:12:43:c1:97:4f:88:92:bb:75:92:
f2:ef:3a:f0:1c:75:f0:5f:4b:83:38:1d:71:b6:38:dc:78:c5:
ff:46:26:ab:d8:28:51:60:d4:1f:fb:65:1d:50:bb:d9:9a:67:
b3:9b:a1:66:e6:64:ca:61:2b:28:54:b5:f3:a7:70:78:18:03:
16:ec:97:94:bc:aa:a4:ec:d8:1b:3e:a7:f0:fc:73:c1:1f:a5:
8f:3d:b5:b9:f6:78:e8:29:70:d2:8f:d7:2b:92:ca:2b:16:69:
76:6c:5d:3e:5a:94:89:6c:82:c8:95:95:3c:64:46:f0:37:2d:
59:8c:a0:5e:da:86:ce:2a:11:65:d6:aa:34:2f:bc:a6:1c:56:
84:de:a9:3c
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS06MA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTIxNjU2WhcNMjcxMjEyMTIxNjU2WjAYMRYw
FAYDVQQDEw02NzcxM2RiYy00MTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAvCfcQ3hHIF2dzYA5axdZ09QpKBPLFAFVRDvgGX4iVZLiYNmdvI7e55tr
jVzkH5mkzg7hAsBORKFRTwljhyu++V/x9/r7XfUCoG/LaKM2D2POsjBEvLZiFkB+
Scoq2wajt1ykmP/vyZXGhNSuBIap7/VL7UdOoHbKheBqwPQaWnbdctnMtpobc6og
zuxKqFpiYaIIsHsvUYDrLMAXo38ZbUpGQn4QDl9WXh2RiBWJ9yd3Wx2hDC2J/tIA
HNoaXlluMH3gLz7aBSeEakPv9N5Jhf40HjYGYQktLG6uAu/INu8yAPuyMVYtfkDx
I2Ix5tQlrQT5FuEm9E8BYqaN6w7oLQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFAcR
AI9f9GtokGYDmWzXMH2jwZZIMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9DREVGQUJGNkM1REUxMUVGOUQ4MEU3NTU3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtJfMA0GCSqGSIb3DQEB
CwUAA4IBAQB8qxTJD28lXEQ2EbDTu90B/rtBibF0HAMFKd76vm103bvLYIwTwXhz
RfVaBSDEYgLau6pi83lkr7NnUxOhcKU7Y2f6queNrFxVxP3QoJ9F/E/dn9WfWE1w
dLo0YzpC6NwRJUgoHSXlPdQW8SNPbILwMzYVDRJDwZdPiJK7dZLy7zrwHHXwX0uD
OB1xtjjceMX/Riar2ChRYNQf+2UdULvZmmezm6Fm5mTKYSsoVLXzp3B4GAMW7JeU
vKqk7NgbPqfw/HPBH6WPPbW59njoKXDSj9crksorFml2bF0+WpSJbILIlZU8ZEbw
Ny1ZjKBe2obOKhFl1qo0L7ymHFaE3qk8
-----END CERTIFICATE-----
Generated at Sat Apr 5 00:43:32 2025 by rpki-client