Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E89DBD1EC91011EFAE128FA7762E951A.roa
File: E89DBD1EC91011EFAE128FA7762E951A.roa (raw, json)
Hash identifier: NqnJjWwnr4rHYRMKIP9W+E/IdOgaAJwvA2WB/imDegg=
Subject key identifier: 60:5B:28:2F:ED:39:43:EC:8D:DA:4D:14:AE:BE:83:FE:D3:73:29:F4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 0132A7
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E89DBD1EC91011EFAE128FA7762E951A.roa
Signing time: Thu 02 Jan 2025 13:53:13 +0000
ROA not before: Thu 02 Jan 2025 13:53:09 +0000
ROA not after: Sat 13 Dec 2025 13:53:09 +0000
asID: 984
IP address blocks: 154.221.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78503 (0x132a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 13:53:09 2025 GMT
Not After : Dec 13 13:53:09 2025 GMT
Subject: CN=67769a49-9ed3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:1a:93:1e:48:83:14:11:bb:d4:4b:40:eb:03:
db:f0:8d:5b:f4:83:d8:5a:54:a3:9e:ec:73:28:86:
52:08:b0:e0:c2:44:cc:b3:c0:1b:25:60:11:75:a0:
29:d7:c4:d8:61:7d:94:43:52:20:42:2c:60:7b:57:
a8:0b:28:24:aa:07:7c:29:aa:52:03:bf:98:1b:44:
de:b6:57:48:9f:b9:d3:5a:02:bb:13:a7:98:f8:1e:
b0:18:3f:84:24:bc:b4:5e:15:81:5c:e1:2d:0d:2d:
32:27:3f:68:c6:81:75:47:d8:b0:09:a9:ce:3b:56:
3d:c2:95:76:ec:46:fe:48:b4:ef:52:76:da:dd:73:
58:ac:be:2a:4c:fa:29:88:df:fe:07:6d:e5:96:9b:
bd:a9:36:4d:d2:d3:e9:0b:0f:fb:a9:a6:e5:4c:2a:
0d:01:7b:86:b0:2d:08:1a:4a:74:b8:2e:40:5f:0e:
ff:72:32:a9:bd:1e:e7:68:07:eb:87:cb:8b:c8:8e:
42:45:30:62:30:3c:4c:f3:04:31:c2:dd:78:e0:5e:
a1:7b:bf:b8:b5:92:b6:ee:77:a9:d9:d4:76:34:6f:
e5:b1:05:4e:62:26:42:c9:b7:9b:48:ca:47:99:a3:
aa:4b:db:7f:f3:23:0c:5d:1c:41:f8:52:b1:cf:b3:
7b:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:5B:28:2F:ED:39:43:EC:8D:DA:4D:14:AE:BE:83:FE:D3:73:29:F4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/E89DBD1EC91011EFAE128FA7762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.221.224.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:6a:3f:b3:85:01:fe:e0:c4:23:b2:78:eb:83:ba:00:6d:52:
af:87:cf:7b:33:cf:e8:b1:e3:22:e8:37:ec:87:6a:7d:d1:de:
5c:ac:cb:2d:8a:d5:ef:f4:70:90:f3:51:91:f5:d0:4e:e6:af:
65:61:d8:4f:66:8e:9e:bb:ff:73:62:59:34:01:8e:f7:8b:5b:
0f:c9:18:6e:48:0c:a8:b2:91:2e:2a:bf:7a:14:a5:18:05:e7:
02:c6:a3:9d:93:6c:b3:4d:d7:80:f9:31:36:8e:30:9e:a8:30:
ee:6b:62:d4:d4:c6:92:bd:77:2c:7b:1b:40:fa:9e:c5:de:fb:
2c:9a:57:a7:39:fe:36:27:3a:9c:de:bf:fc:6c:15:5c:5f:63:
ea:b8:34:2b:bf:07:99:b5:b3:a9:73:e2:4b:95:bd:99:89:a5:
59:db:86:4b:df:a3:77:2a:80:ff:83:ee:9f:a8:45:ec:59:1b:
54:5e:89:0f:0e:56:66:a5:de:03:ac:05:15:be:d3:c6:39:9c:
6c:07:31:78:9a:14:81:1d:08:7a:51:5f:15:ba:34:31:30:26:
d9:5b:4c:dc:b7:2d:99:df:d7:2c:54:58:3a:89:db:0c:ad:58:
f4:1c:0d:4f:11:0f:c9:7d:94:e7:b0:64:aa:8f:91:aa:17:d2:
b0:27:07:9d
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDATKnMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjUwMTAyMTM1MzA5WhcNMjUxMjEzMTM1MzA5WjAYMRYw
FAYDVQQDEw02Nzc2OWE0OS05ZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAzBqTHkiDFBG71EtA6wPb8I1b9IPYWlSjnuxzKIZSCLDgwkTMs8AbJWAR
daAp18TYYX2UQ1IgQixge1eoCygkqgd8KapSA7+YG0TetldIn7nTWgK7E6eY+B6w
GD+EJLy0XhWBXOEtDS0yJz9oxoF1R9iwCanOO1Y9wpV27Eb+SLTvUnba3XNYrL4q
TPopiN/+B23llpu9qTZN0tPpCw/7qablTCoNAXuGsC0IGkp0uC5AXw7/cjKpvR7n
aAfrh8uLyI5CRTBiMDxM8wQxwt144F6he7+4tZK27nep2dR2NG/lsQVOYiZCybeb
SMpHmaOqS9t/8yMMXRxB+FKxz7N7wQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGBb
KC/tOUPsjdpNFK6+g/7Tcyn0MB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FODlEQkQxRUM5MTAxMUVGQUUxMjhGQTc3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmt3gMA0GCSqGSIb3DQEB
CwUAA4IBAQBuaj+zhQH+4MQjsnjrg7oAbVKvh897M8/oseMi6Dfsh2p90d5crMst
itXv9HCQ81GR9dBO5q9lYdhPZo6eu/9zYlk0AY73i1sPyRhuSAyospEuKr96FKUY
BecCxqOdk2yzTdeA+TE2jjCeqDDua2LU1MaSvXcsextA+p7F3vssmlenOf42Jzqc
3r/8bBVcX2PquDQrvweZtbOpc+JLlb2ZiaVZ24ZL36N3KoD/g+6fqEXsWRtUXokP
DlZmpd4DrAUVvtPGOZxsBzF4mhSBHQh6UV8VujQxMCbZW0zcty2Z39csVFg6idsM
rVj0HA1PEQ/JfZTnsGSqj5GqF9KwJwed
-----END CERTIFICATE-----
Generated at Sat Apr 5 03:55:27 2025 by rpki-client