Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC5DE5A2C3CD11EF927937B1762E951A.roa
File: EC5DE5A2C3CD11EF927937B1762E951A.roa (raw, json)
Hash identifier: A1nOBGhSKp7uQzSiTg8OAK/QenlSVL3x0xqYsPkJjLI=
Subject key identifier: 50:DC:E3:14:BF:1C:BB:2B:EE:BB:99:A9:67:D1:D6:41:CB:1B:47:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012820
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC5DE5A2C3CD11EF927937B1762E951A.roa
Signing time: Thu 26 Dec 2024 21:11:07 +0000
ROA not before: Thu 26 Dec 2024 21:11:04 +0000
ROA not after: Sun 12 Dec 2027 21:11:04 +0000
asID: 17561
IP address blocks: 154.83.166.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75808 (0x12820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 26 21:11:04 2024 GMT
Not After : Dec 12 21:11:04 2027 GMT
Subject: CN=676dc66b-2902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:72:15:41:5f:f9:63:0d:2a:ae:18:8a:27:0c:
4d:b1:f9:0b:c6:0a:72:93:20:ba:62:1f:f5:df:dc:
30:b7:02:b6:e1:93:53:26:92:e3:8d:f0:42:39:e0:
41:99:9d:61:91:81:46:f1:aa:13:85:31:29:d2:d7:
06:e6:30:98:9e:5b:cd:db:05:7a:f9:76:f0:00:86:
e0:ab:57:95:80:af:33:a3:f7:85:42:e3:77:ad:7f:
f5:14:60:f4:51:31:8b:15:af:0c:9f:cf:a2:a1:6e:
9b:4f:ee:c4:4e:1c:f1:dd:66:e9:fd:2f:6d:14:c8:
9b:de:f0:db:4c:7c:de:d7:69:60:39:16:2c:b9:a7:
ba:ec:12:dc:08:57:19:68:e3:19:04:22:54:c0:ea:
ad:a9:33:81:c8:01:2b:9a:39:7c:5b:f1:a0:57:ac:
3f:22:21:06:67:a2:d9:a9:ef:6f:fa:d5:16:e3:cc:
95:15:2a:38:4d:6f:ae:e0:3b:e1:44:34:04:bc:46:
28:d2:b6:52:fa:0d:e0:d3:d6:5d:26:68:11:e3:2f:
2d:2c:0c:30:6b:ee:e9:a6:7d:f8:57:63:9f:62:16:
fa:6f:f3:66:47:23:8f:14:40:1a:db:64:04:51:c9:
fc:14:5e:92:20:47:43:d6:6f:c5:d7:17:20:94:7d:
cb:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:DC:E3:14:BF:1C:BB:2B:EE:BB:99:A9:67:D1:D6:41:CB:1B:47:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EC5DE5A2C3CD11EF927937B1762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.83.166.0/24
Signature Algorithm: sha256WithRSAEncryption
19:e0:be:c5:6c:62:8c:cb:59:2e:9d:31:fc:de:62:a0:d8:93:
63:ea:ed:ec:57:af:be:02:b1:1e:22:92:1b:e6:82:b5:0a:eb:
42:ae:06:ca:6e:c4:c1:2a:27:9d:7d:e4:b3:87:db:a0:1a:c0:
84:dc:91:03:7f:01:0d:bc:00:fb:92:68:1f:6e:d9:ce:b8:28:
4a:1e:98:0b:01:b2:06:c5:4a:31:14:f0:e6:4d:a8:b7:8a:74:
ca:09:9d:0c:7c:e2:dd:f9:1e:1e:4d:22:7c:30:e7:29:f4:8c:
9c:ef:8d:b0:5b:fb:31:fe:d3:03:b2:41:7b:71:49:7b:3f:39:
04:b9:31:75:e7:d6:21:3a:65:9d:c2:88:28:f8:e6:01:3f:74:
4e:22:16:8f:f5:7d:87:5a:91:b5:61:7f:a8:6d:a5:0c:08:56:
69:5c:36:15:da:60:2a:22:31:72:d9:18:6c:82:57:15:36:80:
bf:00:18:9e:66:4d:9a:b2:7a:4a:8e:ac:11:c5:46:76:85:da:
2c:1a:29:03:7d:48:0e:22:05:63:64:4a:7f:54:8b:0c:3c:9c:
e4:c5:81:b0:58:29:cc:86:64:e5:e8:f3:1b:39:24:f3:61:d4:
60:96:1c:ca:3e:31:d1:56:bc:f3:9f:ec:36:50:6d:10:58:0b:
f6:ac:cf:66
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDASggMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI2MjExMTA0WhcNMjcxMjEyMjExMTA0WjAYMRYw
FAYDVQQDEw02NzZkYzY2Yi0yOTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA4nIVQV/5Yw0qrhiKJwxNsfkLxgpykyC6Yh/139wwtwK24ZNTJpLjjfBC
OeBBmZ1hkYFG8aoThTEp0tcG5jCYnlvN2wV6+XbwAIbgq1eVgK8zo/eFQuN3rX/1
FGD0UTGLFa8Mn8+ioW6bT+7EThzx3Wbp/S9tFMib3vDbTHze12lgORYsuae67BLc
CFcZaOMZBCJUwOqtqTOByAErmjl8W/GgV6w/IiEGZ6LZqe9v+tUW48yVFSo4TW+u
4DvhRDQEvEYo0rZS+g3g09ZdJmgR4y8tLAwwa+7ppn34V2OfYhb6b/NmRyOPFEAa
22QEUcn8FF6SIEdD1m/F1xcglH3LwQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFDc
4xS/HLsr7ruZqWfR1kHLG0daMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FQzVERTVBMkMzQ0QxMUVGOTI3OTM3QjE3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlOmMA0GCSqGSIb3DQEB
CwUAA4IBAQAZ4L7FbGKMy1kunTH83mKg2JNj6u3sV6++ArEeIpIb5oK1CutCrgbK
bsTBKiedfeSzh9ugGsCE3JEDfwENvAD7kmgfbtnOuChKHpgLAbIGxUoxFPDmTai3
inTKCZ0MfOLd+R4eTSJ8MOcp9Iyc742wW/sx/tMDskF7cUl7PzkEuTF159YhOmWd
wogo+OYBP3ROIhaP9X2HWpG1YX+obaUMCFZpXDYV2mAqIjFy2RhsglcVNoC/ABie
Zk2asnpKjqwRxUZ2hdosGikDfUgOIgVjZEp/VIsMPJzkxYGwWCnMhmTl6PMbOSTz
YdRglhzKPjHRVrzzn+w2UG0QWAv2rM9m
-----END CERTIFICATE-----
Generated at Mon Apr 7 12:52:52 2025 by rpki-client