Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E300758AC91111EF869AF6AD762E951A.roa
File: E300758AC91111EF869AF6AD762E951A.roa (raw, json)
Hash identifier: yilhqaQAfMgeZMIlhHZn49kk4uXCXQs1zJaqNe6+T8E=
Subject key identifier: C6:F7:17:91:A4:FB:A2:52:E0:2C:47:57:B7:24:D8:0E:32:08:82:E2
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0132AF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E300758AC91111EF869AF6AD762E951A.roa
Signing time: Thu 02 Jan 2025 14:00:13 +0000
ROA not before: Thu 02 Jan 2025 14:00:10 +0000
ROA not after: Mon 13 Dec 2027 14:00:10 +0000
asID: 17561
IP address blocks: 154.221.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78511 (0x132af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 14:00:10 2025 GMT
Not After : Dec 13 14:00:10 2027 GMT
Subject: CN=67769bed-a829
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:08:97:a3:3e:d1:c8:5f:96:c9:32:c6:00:2a:
11:4b:8e:3c:f8:92:a4:72:5f:58:b7:b8:b5:3d:d3:
75:5c:51:1a:8c:de:d9:22:3d:e8:06:73:59:bb:ab:
c6:2c:3d:82:fd:3a:5e:5c:d7:ed:80:79:5e:0f:c6:
56:78:fb:ef:71:44:3e:ed:76:78:1b:6d:97:50:9a:
53:f5:49:c0:d2:5f:65:5a:9a:d2:b9:b2:8c:10:f8:
e9:52:50:6d:b0:92:fe:82:92:e3:e8:6d:8e:e2:1c:
11:4b:11:21:f2:28:8d:7d:9c:0f:aa:9b:ac:4d:7c:
35:92:d6:93:9a:24:68:80:d4:8a:22:f1:f5:24:29:
11:18:fb:01:5f:47:b2:5f:a8:88:6c:18:f3:fe:82:
da:99:97:da:2c:1f:07:34:28:b6:c8:49:ee:2f:d6:
ab:c0:85:01:49:4a:6a:11:b3:03:ee:47:f5:a9:4c:
8f:c1:11:88:5e:75:fc:56:80:82:a7:09:62:db:b1:
fd:da:25:ae:36:b3:83:00:6e:08:77:a7:01:49:55:
8a:fd:5d:4b:c9:af:63:3f:4b:f2:02:95:14:b0:e0:
73:52:1a:9b:df:38:d1:0c:7d:a3:b3:0d:c7:c8:38:
bc:7f:c2:07:2d:41:97:6f:23:d0:61:d6:d1:b6:59:
40:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:F7:17:91:A4:FB:A2:52:E0:2C:47:57:B7:24:D8:0E:32:08:82:E2
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E300758AC91111EF869AF6AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.228.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:18:00:2e:c2:01:7e:e1:b1:c6:58:5d:17:13:b8:7b:f6:63:
d9:04:bb:7c:84:b0:a9:35:8c:d6:3b:d7:6c:72:c7:ee:dc:19:
54:72:be:c3:8d:13:9f:df:f7:42:f8:56:c6:50:0f:3a:40:3a:
de:26:cb:cf:8f:3b:40:d0:ab:70:12:a1:94:a3:cd:56:87:c8:
43:83:5d:a1:a9:da:69:6f:17:f8:be:27:bb:aa:63:97:d7:cc:
d6:f0:3d:be:9d:da:fb:f6:6c:8d:99:f0:c5:89:a6:77:c2:eb:
9a:ea:4f:37:4b:bb:24:89:cf:36:3f:7b:6b:4f:b3:4a:b5:6e:
05:49:ca:0d:e1:24:23:a4:ce:c7:17:22:6a:f4:a9:5b:f4:ee:
ad:0e:0a:4e:e0:06:ac:43:e9:e3:a9:17:ef:09:a1:00:f1:60:
e0:91:0a:72:bb:28:ee:87:75:5d:16:7f:e6:84:ec:ee:2c:57:
48:61:fa:84:41:6e:e2:74:2f:02:71:7f:25:db:72:85:13:39:
b2:66:e6:3a:62:91:5c:1a:83:70:cd:0d:9d:4c:25:53:fe:62:
5d:82:ab:76:1b:fc:cb:56:5a:c2:80:4f:28:fa:56:47:39:a9:
76:3b:4f:b4:60:81:95:8c:79:e1:67:d5:b6:f4:19:fd:f6:29:
48:cf:dc:ef
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATKvMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMTQwMDEwWhcNMjcxMjEzMTQwMDEwWjAYMRYw
FAYDVQQDEw02Nzc2OWJlZC1hODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA9wiXoz7RyF+WyTLGACoRS448+JKkcl9Yt7i1PdN1XFEajN7ZIj3oBnNZ
u6vGLD2C/TpeXNftgHleD8ZWePvvcUQ+7XZ4G22XUJpT9UnA0l9lWprSubKMEPjp
UlBtsJL+gpLj6G2O4hwRSxEh8iiNfZwPqpusTXw1ktaTmiRogNSKIvH1JCkRGPsB
X0eyX6iIbBjz/oLamZfaLB8HNCi2yEnuL9arwIUBSUpqEbMD7kf1qUyPwRGIXnX8
VoCCpwli27H92iWuNrODAG4Id6cBSVWK/V1Lya9jP0vyApUUsOBzUhqb3zjRDH2j
sw3HyDi8f8IHLUGXbyPQYdbRtllAtwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFMb3
F5Gk+6JS4CxHV7ck2A4yCILiMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FMzAwNzU4QUM5MTExMUVGODY5QUY2QUQ3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3kMA0GCSqGSIb3DQEB
CwUAA4IBAQDSGAAuwgF+4bHGWF0XE7h79mPZBLt8hLCpNYzWO9dscsfu3BlUcr7D
jROf3/dC+FbGUA86QDreJsvPjztA0KtwEqGUo81Wh8hDg12hqdppbxf4vie7qmOX
18zW8D2+ndr79myNmfDFiaZ3wuua6k83S7skic82P3trT7NKtW4FScoN4SQjpM7H
FyJq9Klb9O6tDgpO4AasQ+njqRfvCaEA8WDgkQpyuyjuh3VdFn/mhOzuLFdIYfqE
QW7idC8CcX8l23KFEzmyZuY6YpFcGoNwzQ2dTCVT/mJdgqt2G/zLVlrCgE8o+lZH
Oal2O0+0YIGVjHnhZ9W29Bn99ilIz9zv
-----END CERTIFICATE-----
Generated at Mon Apr 7 06:44:02 2025 by rpki-client