Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D142D27CF65F11EF999F556F762E951A.roa
File: D142D27CF65F11EF999F556F762E951A.roa (raw, json)
Hash identifier: eRQLplnVY8KKLex36W79jk/esTOhpH+JjWx96ZtalUo=
Subject key identifier: 7F:F0:AD:D4:A8:34:43:15:62:2B:30:45:FC:68:4E:10:C5:BA:7D:39
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016D2A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D142D27CF65F11EF999F556F762E951A.roa
Signing time: Sat 01 Mar 2025 05:41:26 +0000
ROA not before: Sat 01 Mar 2025 05:41:23 +0000
ROA not after: Sat 19 Feb 2028 05:41:23 +0000
asID: 17561
IP address blocks: 154.194.5.0/24 maxlen: 24
154.198.43.0/24 maxlen: 24
154.198.44.0/24 maxlen: 24
154.198.45.0/24 maxlen: 24
154.198.46.0/24 maxlen: 24
154.198.47.0/24 maxlen: 24
154.198.63.0/24 maxlen: 24
154.198.174.0/24 maxlen: 24
154.198.175.0/24 maxlen: 24
154.198.176.0/24 maxlen: 24
154.198.177.0/24 maxlen: 24
154.198.178.0/24 maxlen: 24
154.198.179.0/24 maxlen: 24
154.198.180.0/24 maxlen: 24
154.198.181.0/24 maxlen: 24
154.198.182.0/24 maxlen: 24
154.198.183.0/24 maxlen: 24
154.198.184.0/24 maxlen: 24
154.198.185.0/24 maxlen: 24
154.198.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93482 (0x16d2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Mar 1 05:41:23 2025 GMT
Not After : Feb 19 05:41:23 2028 GMT
Subject: CN=67c29e06-1da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d8:72:03:44:91:b7:6c:a6:58:e0:08:9e:94:
3a:f6:df:d6:5e:e4:23:55:71:ef:9c:1c:32:29:24:
d6:9f:6c:89:5d:64:b6:d8:fc:07:4e:a7:9f:9f:38:
59:7f:8b:85:87:83:5b:53:c2:06:18:d4:c9:6a:3f:
28:93:6c:78:62:71:5f:06:be:64:74:fc:f9:a2:f7:
50:1d:38:3c:a9:0e:95:93:68:98:29:be:4d:f4:92:
bd:02:be:75:68:42:3c:c4:c5:d7:5a:9f:69:81:b0:
e5:57:76:17:1e:8b:35:04:3b:f6:b4:9d:db:75:a1:
26:51:8d:44:21:dd:ca:e1:bc:cd:08:22:86:32:4c:
71:09:c4:4c:ee:b7:0f:f4:44:e5:45:62:b1:62:04:
0c:8d:8c:1c:bf:87:fb:9f:53:63:97:ee:1d:79:70:
3d:c5:74:23:d9:45:de:9d:cd:d8:e7:45:4d:c5:1a:
85:c2:44:39:d4:e9:61:48:fb:ec:cf:69:f9:65:e3:
a0:e2:6e:ce:34:13:58:96:20:45:cc:c1:fa:19:a4:
89:b5:87:ad:40:ec:86:a1:ee:c3:b0:63:59:e2:38:
35:8a:ae:5a:71:ad:fa:9e:a4:e8:01:a2:d4:f4:50:
01:cd:20:62:b4:24:1a:29:6f:6f:51:6a:3a:a1:60:
3e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:F0:AD:D4:A8:34:43:15:62:2B:30:45:FC:68:4E:10:C5:BA:7D:39
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D142D27CF65F11EF999F556F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.194.5.0/24
154.198.43.0-154.198.47.255
154.198.63.0/24
154.198.174.0-154.198.185.255
154.198.191.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:61:b4:dc:f1:73:8c:1d:f6:00:cd:d1:4c:0c:7c:7f:f7:fb:
d6:72:c5:88:79:4e:29:0b:6d:3f:c3:08:1f:94:f6:da:c0:0d:
a0:2c:ec:e3:f0:64:2e:1b:59:0b:2a:24:0f:1f:29:c4:2c:e3:
4f:a8:9c:12:a9:69:5a:46:e3:31:12:7e:71:b1:e0:9e:0b:59:
e7:c4:f1:ea:11:5a:1f:1f:b2:4e:89:1c:96:74:3d:38:58:fe:
de:92:61:4a:c6:d7:8a:6c:a5:6a:0d:99:92:8a:7d:39:35:67:
e3:cb:97:ea:18:b1:6d:12:cd:f3:5d:41:7c:1b:0e:8e:e3:4c:
67:fa:5c:65:b8:d0:4e:c0:d8:c7:4b:34:e0:9b:8c:9e:2d:88:
76:c2:ce:c0:9d:70:09:b5:54:ee:11:14:9c:34:18:c5:2c:5b:
45:70:c9:70:0c:43:2c:fc:e6:70:c0:29:87:91:12:4f:f0:1f:
3d:0e:33:f3:32:79:37:0d:ca:25:45:85:b8:b0:5b:07:13:fa:
5b:eb:5d:cb:eb:e2:9b:1c:6d:6c:a9:92:0a:ae:1e:20:a9:83:
48:29:00:2e:4f:80:fd:b9:2f:d3:7b:00:72:06:e9:72:de:46:
f6:4e:4d:45:55:7e:72:cf:19:79:96:1b:34:5a:3a:02:61:8d:
f4:1a:23:b1
-----BEGIN CERTIFICATE-----
MIIFrDCCBJSgAwIBAgIDAW0qMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMzAxMDU0MTIzWhcNMjgwMjE5MDU0MTIzWjAYMRYw
FAYDVQQDEw02N2MyOWUwNi0xZGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxdhyA0SRt2ymWOAInpQ69t/WXuQjVXHvnBwyKSTWn2yJXWS22PwHTqef
nzhZf4uFh4NbU8IGGNTJaj8ok2x4YnFfBr5kdPz5ovdQHTg8qQ6Vk2iYKb5N9JK9
Ar51aEI8xMXXWp9pgbDlV3YXHos1BDv2tJ3bdaEmUY1EId3K4bzNCCKGMkxxCcRM
7rcP9ETlRWKxYgQMjYwcv4f7n1Njl+4deXA9xXQj2UXenc3Y50VNxRqFwkQ51Olh
SPvsz2n5ZeOg4m7ONBNYliBFzMH6GaSJtYetQOyGoe7DsGNZ4jg1iq5aca36nqTo
AaLU9FABzSBitCQaKW9vUWo6oWA+lwIDAQABo4ICzTCCAskwHQYDVR0OBBYEFH/w
rdSoNEMVYiswRfxoThDFun05MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EMTQyRDI3Q0Y2NUYxMUVGOTk5RjU1NkY3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMEcGCCsGAQUFBwEHAQH/BDgwNjA0BAIAATAuAwQAmsIFMAwDBACaxisDBASa
xiADBACaxj8wDAMEAZrGrgMEAZrGuAMEAJrGvzANBgkqhkiG9w0BAQsFAAOCAQEA
xGG03PFzjB32AM3RTAx8f/f71nLFiHlOKQttP8MIH5T22sANoCzs4/BkLhtZCyok
Dx8pxCzjT6icEqlpWkbjMRJ+cbHgngtZ58Tx6hFaHx+yTokclnQ9OFj+3pJhSsbX
imylag2Zkop9OTVn48uX6hixbRLN811BfBsOjuNMZ/pcZbjQTsDYx0s04JuMni2I
dsLOwJ1wCbVU7hEUnDQYxSxbRXDJcAxDLPzmcMAph5EST/AfPQ4z8zJ5Nw3KJUWF
uLBbBxP6W+tdy+vimxxtbKmSCq4eIKmDSCkALk+A/bkv03sAcgbpct5G9k5NRVV+
cs8ZeZYbNFo6AmGN9BojsQ==
-----END CERTIFICATE-----
Generated at Sat Apr 5 10:36:51 2025 by rpki-client