Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4F3C0BAF42611EFA502FF94762E951A.roa
File: D4F3C0BAF42611EFA502FF94762E951A.roa (raw, json)
Hash identifier: xWNZMkoI5VNX/EjQnqlIpyxW1V89s/JO5xAZUgnpRYI=
Subject key identifier: EF:A3:0D:A5:F8:E7:96:F6:3C:7F:C0:C1:46:82:B7:0B:21:F4:48:A8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 016200
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4F3C0BAF42611EFA502FF94762E951A.roa
Signing time: Wed 26 Feb 2025 09:48:29 +0000
ROA not before: Wed 26 Feb 2025 09:48:25 +0000
ROA not after: Thu 19 Feb 2026 09:48:25 +0000
asID: 328608
IP address blocks: 154.200.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90624 (0x16200)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Feb 26 09:48:25 2025 GMT
Not After : Feb 19 09:48:25 2026 GMT
Subject: CN=67bee36d-7746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:92:59:4c:6b:72:4e:5a:49:8b:91:77:51:01:
5e:5b:9d:7b:78:df:26:7f:37:5c:46:ad:e3:55:2e:
73:91:b7:4d:12:bd:78:69:c4:b9:85:e4:16:03:dc:
aa:17:94:3c:c0:c1:20:d3:9d:e3:83:fd:94:52:34:
1c:92:ff:31:17:82:77:89:48:73:fb:a8:93:d2:69:
9e:3f:4c:8b:aa:6d:c1:56:5e:fc:05:1e:47:67:73:
b4:16:97:e8:bd:e6:be:51:a7:fb:b3:44:97:e2:49:
2c:83:7a:4d:19:33:d8:de:23:18:fb:8c:ed:1f:01:
a5:be:f6:01:0a:2f:83:38:c2:ba:5a:1c:32:85:ac:
64:e6:f6:f8:82:9c:91:01:16:a8:f8:68:f2:b9:d4:
23:ff:cf:97:69:52:ca:e4:c0:30:e3:6c:45:10:d8:
6d:d2:21:3e:29:bf:69:3c:5d:6d:f4:00:20:0c:25:
e0:ab:b8:00:c5:9b:63:7d:c6:e2:85:8f:b4:42:c9:
6b:41:03:59:6b:ce:9f:7d:73:47:63:7b:47:4d:48:
bd:9c:85:11:9a:1d:8a:6d:94:63:10:40:ad:e2:c6:
7e:93:b0:88:bc:c8:37:ae:0e:46:fc:36:5b:a1:86:
93:5f:21:ff:2b:bd:c2:09:84:94:df:33:c6:d0:1a:
c2:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A3:0D:A5:F8:E7:96:F6:3C:7F:C0:C1:46:82:B7:0B:21:F4:48:A8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D4F3C0BAF42611EFA502FF94762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.246.0/24
Signature Algorithm: sha256WithRSAEncryption
68:99:a2:09:9b:69:5c:92:99:17:e3:00:62:bb:ed:f8:96:0e:
3b:9a:fd:13:9f:74:6a:af:71:cf:26:11:95:8f:47:bc:8b:8a:
b4:97:b2:87:a0:29:02:89:96:07:8d:ff:7b:cc:bf:ec:ff:bb:
fc:c8:2f:8e:33:51:02:c2:eb:c2:d6:d9:72:d5:0f:7a:03:1d:
1b:6f:69:e6:d1:89:ee:78:df:e2:04:fa:40:d1:e3:86:4e:a7:
9f:e8:b0:9e:10:e4:57:64:97:f1:32:e5:bb:fe:a5:da:2b:e7:
57:1e:ee:aa:b2:f4:4d:3f:04:36:39:ec:3d:71:8b:1f:d6:c1:
49:dc:40:6b:12:5c:f7:96:d7:9c:a2:29:70:ef:b3:20:40:71:
f6:b2:4a:c2:30:27:1d:e2:1c:81:2c:f2:62:4e:47:ba:90:da:
73:75:48:c8:eb:6b:09:f0:c1:10:3a:f1:65:f9:d6:8a:c2:b5:
5f:84:6e:dc:8a:e0:51:2d:3a:76:ed:03:c4:d9:05:07:69:f1:
76:23:56:12:91:dd:39:c9:35:5c:6a:25:8e:62:b7:2c:9c:0d:
6f:c1:d5:50:05:01:41:cc:76:22:36:95:e0:e6:68:8e:63:9d:
b4:0b:a9:bc:4d:e0:07:96:ee:6b:78:d4:ac:03:3e:9a:78:d7:
17:09:e1:86
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAWIAMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMjI2MDk0ODI1WhcNMjYwMjE5MDk0ODI1WjAYMRYw
FAYDVQQDEw02N2JlZTM2ZC03NzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAw5JZTGtyTlpJi5F3UQFeW517eN8mfzdcRq3jVS5zkbdNEr14acS5heQW
A9yqF5Q8wMEg053jg/2UUjQckv8xF4J3iUhz+6iT0mmeP0yLqm3BVl78BR5HZ3O0
Fpfovea+Uaf7s0SX4kksg3pNGTPY3iMY+4ztHwGlvvYBCi+DOMK6Whwyhaxk5vb4
gpyRARao+GjyudQj/8+XaVLK5MAw42xFENht0iE+Kb9pPF1t9AAgDCXgq7gAxZtj
fcbihY+0QslrQQNZa86ffXNHY3tHTUi9nIURmh2KbZRjEECt4sZ+k7CIvMg3rg5G
/DZboYaTXyH/K73CCYSU3zPG0BrCjwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFO+j
DaX455b2PH/AwUaCtwsh9EioMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9ENEYzQzBCQUY0MjYxMUVGQTUwMkZGOTQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmsj2MA0GCSqGSIb3DQEB
CwUAA4IBAQBomaIJm2lckpkX4wBiu+34lg47mv0Tn3Rqr3HPJhGVj0e8i4q0l7KH
oCkCiZYHjf97zL/s/7v8yC+OM1ECwuvC1tly1Q96Ax0bb2nm0YnueN/iBPpA0eOG
Tqef6LCeEORXZJfxMuW7/qXaK+dXHu6qsvRNPwQ2Oew9cYsf1sFJ3EBrElz3ltec
oilw77MgQHH2skrCMCcd4hyBLPJiTke6kNpzdUjI62sJ8MEQOvFl+daKwrVfhG7c
iuBRLTp27QPE2QUHafF2I1YSkd05yTVcaiWOYrcsnA1vwdVQBQFBzHYiNpXg5miO
Y520C6m8TeAHlu5reNSsAz6aeNcXCeGG
-----END CERTIFICATE-----
Generated at Sun Apr 6 15:09:21 2025 by rpki-client