Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFED89ECC0E011EFBABCBF9B762E951A.roa
File: EFED89ECC0E011EFBABCBF9B762E951A.roa (raw, json)
Hash identifier: nsUiFOkOePfIURKXGK+57BcVTZjdvhKE8PDByRo4VUk=
Subject key identifier: 2C:77:17:7E:07:AB:0D:5D:76:09:48:9A:CC:AC:AC:7F:5A:51:4C:4A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 011EEA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFED89ECC0E011EFBABCBF9B762E951A.roa
Signing time: Mon 23 Dec 2024 03:49:40 +0000
ROA not before: Mon 23 Dec 2024 03:49:37 +0000
ROA not after: Wed 10 Dec 2025 03:49:37 +0000
asID: 984
IP address blocks: 154.89.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73450 (0x11eea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 23 03:49:37 2024 GMT
Not After : Dec 10 03:49:37 2025 GMT
Subject: CN=6768ddd4-9b1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0a:90:66:ac:15:3c:5c:22:2e:51:0f:0e:aa:
8b:d9:aa:ae:a6:2d:93:f4:dd:e9:8d:3a:73:11:cb:
9d:4d:92:a8:a8:73:3a:9b:5f:07:b9:02:fc:b5:c1:
fb:53:83:f3:4d:84:7c:85:cd:04:b6:61:1e:95:77:
c1:1a:6a:96:d4:b1:81:ec:1f:a7:15:eb:37:c6:6e:
37:3f:21:7a:86:ef:39:ad:05:62:17:c8:70:47:24:
70:f6:59:f1:24:d8:e2:a6:50:92:12:24:8c:07:86:
63:45:9e:b3:c4:e9:2e:9c:bf:ca:4b:0d:2a:f3:ba:
dc:0a:82:1d:1d:98:a3:b7:90:04:5b:51:7f:0b:22:
a0:c5:7f:7c:35:21:dd:e2:ea:a2:9f:81:6f:9c:6d:
af:0a:37:b2:6d:7c:77:2c:a4:ee:eb:34:c0:5a:28:
42:dc:e9:83:11:66:fe:56:5c:9a:c0:10:c5:4c:8d:
89:ba:5e:6d:7b:5f:27:af:3c:62:42:47:6d:d5:b6:
3d:66:60:28:95:71:d5:15:6e:cf:31:d9:70:95:01:
b3:a6:fa:43:7e:58:87:35:fb:ed:bd:03:6b:5f:24:
f0:f8:47:ab:c7:8a:84:24:c8:d9:e2:5a:c5:15:05:
ac:28:89:4f:f1:17:b2:b0:4a:52:72:cc:d5:db:87:
0d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:77:17:7E:07:AB:0D:5D:76:09:48:9A:CC:AC:AC:7F:5A:51:4C:4A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/EFED89ECC0E011EFBABCBF9B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.89.211.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:b7:6f:2f:cc:21:50:fe:a0:26:73:28:ac:5c:c0:ea:55:ec:
5a:57:c3:27:c7:dd:7e:38:32:bc:42:4c:c4:98:b8:3f:d5:ec:
72:09:f9:06:6d:e3:e1:0c:32:66:0c:59:47:04:0e:ec:a6:03:
af:f3:c6:d3:c3:39:0b:f0:2d:86:4a:f6:89:37:b1:ab:d9:1b:
0c:14:d0:c9:85:1b:30:8a:5b:b9:80:af:84:30:7d:2c:e5:53:
30:da:b9:c0:a4:18:45:28:1d:fc:e0:f4:41:19:f5:2b:dc:2f:
05:c7:0a:83:8c:40:a5:fe:ae:ff:bf:39:9a:06:85:70:15:b9:
4c:89:50:00:63:40:6f:46:40:92:c3:e6:05:6e:b5:6b:fb:54:
2c:e7:03:9f:26:83:a3:89:c0:76:c9:69:65:99:25:81:eb:ad:
01:64:b5:2c:8b:a2:cb:ce:3c:e7:25:7f:f0:74:81:8b:17:69:
25:74:07:3e:9a:ed:cf:8d:c1:14:28:c8:36:77:d1:c7:2e:6e:
52:41:b0:86:b3:b7:11:6e:37:a0:14:01:b9:ea:ab:ee:e1:43:
0d:98:a2:49:3c:ad:b3:8b:d6:69:f4:05:07:f1:9b:74:37:a9:
ba:78:83:ed:45:74:71:84:8e:69:c1:2f:b6:87:32:66:0f:f0:
be:0c:93:11
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAR7qMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjIzMDM0OTM3WhcNMjUxMjEwMDM0OTM3WjAYMRYw
FAYDVQQDEw02NzY4ZGRkNC05YjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA2wqQZqwVPFwiLlEPDqqL2aqupi2T9N3pjTpzEcudTZKoqHM6m18HuQL8
tcH7U4PzTYR8hc0EtmEelXfBGmqW1LGB7B+nFes3xm43PyF6hu85rQViF8hwRyRw
9lnxJNjiplCSEiSMB4ZjRZ6zxOkunL/KSw0q87rcCoIdHZijt5AEW1F/CyKgxX98
NSHd4uqin4FvnG2vCjeybXx3LKTu6zTAWihC3OmDEWb+VlyawBDFTI2Jul5te18n
rzxiQkdt1bY9ZmAolXHVFW7PMdlwlQGzpvpDfliHNfvtvQNrXyTw+Eerx4qEJMjZ
4lrFFQWsKIlP8ReysEpScszV24cNaQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCx3
F34Hqw1ddglImsysrH9aUUxKMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9FRkVEODlFQ0MwRTAxMUVGQkFCQ0JGOUI3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmlnTMA0GCSqGSIb3DQEB
CwUAA4IBAQBtt28vzCFQ/qAmcyisXMDqVexaV8Mnx91+ODK8QkzEmLg/1exyCfkG
bePhDDJmDFlHBA7spgOv88bTwzkL8C2GSvaJN7Gr2RsMFNDJhRswilu5gK+EMH0s
5VMw2rnApBhFKB384PRBGfUr3C8FxwqDjECl/q7/vzmaBoVwFblMiVAAY0BvRkCS
w+YFbrVr+1Qs5wOfJoOjicB2yWllmSWB660BZLUsi6LLzjznJX/wdIGLF2kldAc+
mu3PjcEUKMg2d9HHLm5SQbCGs7cRbjegFAG56qvu4UMNmKJJPK2zi9Zp9AUH8Zt0
N6m6eIPtRXRxhI5pwS+2hzJmD/C+DJMR
-----END CERTIFICATE-----
Generated at Fri Apr 4 20:16:39 2025 by rpki-client