Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF3829EC5E911EF9CA1FD99762E951A.roa
File: DBF3829EC5E911EF9CA1FD99762E951A.roa (raw, json)
Hash identifier: ekjWT7NWTERnEWI+W2P4BA6zkj0L4Y3OV0iOASkUj1o=
Subject key identifier: AD:25:14:ED:81:58:44:1D:4C:10:0E:E7:03:A8:69:86:E1:A1:9E:F3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012D9A
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF3829EC5E911EF9CA1FD99762E951A.roa
Signing time: Sun 29 Dec 2024 13:36:08 +0000
ROA not before: Sun 29 Dec 2024 13:36:04 +0000
ROA not after: Fri 12 Dec 2025 13:36:04 +0000
asID: 984
IP address blocks: 154.210.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77210 (0x12d9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 13:36:04 2024 GMT
Not After : Dec 12 13:36:04 2025 GMT
Subject: CN=67715048-5b6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:a9:a3:c3:46:cc:fc:8f:66:5d:18:42:84:19:
c2:77:da:6d:cf:be:ce:cc:00:d2:7f:77:71:17:f4:
c5:23:16:26:89:a3:35:5e:5f:5a:a0:34:a8:82:da:
a7:48:4c:2e:92:51:d0:d6:68:64:78:0a:94:5e:66:
e9:4d:fa:cd:9b:6c:d0:e1:29:3d:24:b5:e9:e1:25:
3b:92:75:9d:86:b2:3a:40:34:8c:a1:33:21:27:bc:
22:01:2c:a0:53:4c:59:7b:72:f8:d1:d0:fc:82:95:
bb:08:f5:b5:7c:66:e4:5f:4e:30:db:23:62:ec:2c:
72:ed:43:0a:d3:b4:b1:38:35:cb:22:4a:ce:5f:7f:
13:74:d2:bd:d4:ea:54:9a:5d:40:23:8a:04:53:d6:
cf:ef:ad:3b:9f:2c:51:5f:f4:0c:10:93:ad:d5:88:
a5:10:2c:8b:a8:90:6f:ed:2e:0f:a9:82:53:ab:54:
a1:80:1a:65:98:a9:5c:fe:f5:93:da:32:77:c1:69:
fa:1a:45:e3:cf:fc:e3:3a:7c:79:f0:a8:ef:7c:d9:
ea:9b:2f:41:98:62:cb:a2:d0:24:68:61:a7:99:81:
5f:d3:aa:fe:26:98:2d:7f:80:65:12:61:60:d5:4d:
f1:2d:44:22:d3:2f:0c:df:59:84:11:1d:69:90:8a:
8a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:25:14:ED:81:58:44:1D:4C:10:0E:E7:03:A8:69:86:E1:A1:9E:F3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/DBF3829EC5E911EF9CA1FD99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.210.252.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:3a:ea:eb:20:92:79:f0:cd:ad:2c:66:0a:76:44:be:66:f5:
4a:b3:d8:0c:5e:e7:34:26:57:33:eb:5d:79:84:78:51:c5:b2:
55:05:8c:ab:b9:6f:7c:c9:03:95:4a:f5:13:15:4a:f2:ee:fc:
7d:29:41:21:c6:81:79:00:84:5e:95:d3:22:d6:60:f1:26:a2:
25:6f:83:f5:e6:5a:2d:d7:10:fc:85:e9:c6:e4:ba:42:85:2f:
f2:0a:27:b4:26:55:0a:47:fa:44:31:c9:c8:44:de:a1:82:43:
78:c1:44:97:4a:84:8d:6d:ca:d0:c0:d2:c7:cb:65:85:a5:19:
27:72:46:cc:98:68:b3:ae:1a:b0:a3:f3:6b:61:5e:83:c8:6b:
e0:49:6b:7d:a3:34:b4:0e:c3:8c:7e:59:c0:ba:8f:05:ee:c7:
8d:45:18:07:b9:96:72:96:fe:49:2a:c2:67:4d:87:6b:16:4e:
94:1c:ba:29:16:39:6e:3a:11:a0:65:15:02:4b:23:01:ae:27:
05:2d:9e:10:c2:1d:54:d3:14:eb:77:fb:8f:2e:19:02:6f:7b:
6c:69:87:d4:cf:53:f0:7b:4b:1d:90:6b:e0:2f:eb:87:8c:97:
48:64:55:90:ce:09:01:a1:95:db:73:8a:93:3e:af:b2:f4:0c:
53:af:b7:5b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS2aMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTMzNjA0WhcNMjUxMjEyMTMzNjA0WjAYMRYw
FAYDVQQDEw02NzcxNTA0OC01YjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA86mjw0bM/I9mXRhChBnCd9ptz77OzADSf3dxF/TFIxYmiaM1Xl9aoDSo
gtqnSEwuklHQ1mhkeAqUXmbpTfrNm2zQ4Sk9JLXp4SU7knWdhrI6QDSMoTMhJ7wi
ASygU0xZe3L40dD8gpW7CPW1fGbkX04w2yNi7Cxy7UMK07SxODXLIkrOX38TdNK9
1OpUml1AI4oEU9bP7607nyxRX/QMEJOt1YilECyLqJBv7S4PqYJTq1ShgBplmKlc
/vWT2jJ3wWn6GkXjz/zjOnx58KjvfNnqmy9BmGLLotAkaGGnmYFf06r+Jpgtf4Bl
EmFg1U3xLUQi0y8M31mEER1pkIqKXwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFK0l
FO2BWEQdTBAO5wOoaYbhoZ7zMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9EQkYzODI5RUM1RTkxMUVGOUNBMUZEOTk3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtL8MA0GCSqGSIb3DQEB
CwUAA4IBAQAuOurrIJJ58M2tLGYKdkS+ZvVKs9gMXuc0Jlcz6115hHhRxbJVBYyr
uW98yQOVSvUTFUry7vx9KUEhxoF5AIReldMi1mDxJqIlb4P15lot1xD8henG5LpC
hS/yCie0JlUKR/pEMcnIRN6hgkN4wUSXSoSNbcrQwNLHy2WFpRknckbMmGizrhqw
o/NrYV6DyGvgSWt9ozS0DsOMflnAuo8F7seNRRgHuZZylv5JKsJnTYdrFk6UHLop
FjluOhGgZRUCSyMBricFLZ4Qwh1U0xTrd/uPLhkCb3tsaYfUz1Pwe0sdkGvgL+uH
jJdIZFWQzgkBoZXbc4qTPq+y9AxTr7db
-----END CERTIFICATE-----
Generated at Sun Apr 6 05:14:48 2025 by rpki-client