Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3A5AA88C5F911EFBB294C7F762E951A.roa
File: F3A5AA88C5F911EFBB294C7F762E951A.roa (raw, json)
Hash identifier: nSjfEPKVNjKCRjXP9vG77tuR8BGt30n7aRRE0maEduk=
Subject key identifier: 95:5B:B6:9A:69:C0:B5:87:B4:E4:DB:A5:CD:7A:C3:3D:C5:5E:88:11
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012E22
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3A5AA88C5F911EFBB294C7F762E951A.roa
Signing time: Sun 29 Dec 2024 15:31:20 +0000
ROA not before: Sun 29 Dec 2024 15:31:16 +0000
ROA not after: Sun 12 Dec 2027 15:31:16 +0000
asID: 17561
IP address blocks: 154.213.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77346 (0x12e22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 29 15:31:16 2024 GMT
Not After : Dec 12 15:31:16 2027 GMT
Subject: CN=67716b48-d5e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:dd:4f:65:08:e2:9f:65:7a:25:17:98:ce:c5:
47:cb:27:da:20:03:48:d9:d1:38:25:41:cc:fb:89:
f9:76:b9:e8:f8:47:49:f5:07:b4:84:56:29:97:bf:
83:a3:22:c1:6b:85:2c:c5:f8:c8:00:0d:6f:b7:44:
c9:85:b0:eb:9a:b0:22:4b:13:e8:aa:f1:7b:c1:85:
6f:fd:8f:cb:35:47:09:af:42:29:30:ab:17:5c:a9:
50:7f:e6:b2:ed:50:f2:36:55:df:ee:9e:8a:33:d7:
43:3a:9d:be:12:4a:64:9e:18:48:05:08:d2:1c:d0:
cf:38:fa:62:4f:6b:2b:10:7a:8f:aa:1c:fa:21:93:
be:df:a9:00:8c:03:00:83:95:8b:4e:d5:92:05:85:
a0:e2:43:57:68:25:01:af:28:18:bb:37:d9:26:36:
e0:e6:2a:65:18:38:4e:28:51:58:46:e4:87:49:76:
88:56:86:32:89:b9:1d:70:46:3f:24:f0:fc:4d:6f:
3e:e4:05:bf:81:16:0e:61:e2:e9:8b:d5:4f:bb:60:
e1:59:c2:3b:9e:88:92:6d:b4:93:9a:56:2a:fd:93:
aa:9a:ee:99:ec:e8:8b:5c:0a:e4:dc:dc:a3:07:20:
c4:e3:15:39:4e:fa:d8:5a:6e:2c:4b:7d:e0:9e:15:
36:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:5B:B6:9A:69:C0:B5:87:B4:E4:DB:A5:CD:7A:C3:3D:C5:5E:88:11
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/F3A5AA88C5F911EFBB294C7F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.213.223.0/24
Signature Algorithm: sha256WithRSAEncryption
49:bf:2a:c5:0d:33:00:9e:ba:2c:e7:35:26:76:4d:16:7b:54:
5d:79:72:81:c4:32:4d:f0:a6:14:f5:82:be:a9:79:61:b9:b2:
1a:24:62:a1:28:72:2d:89:37:d6:78:41:60:cd:1e:dc:50:b6:
37:b1:b1:af:58:4f:fd:49:a5:02:ec:d3:bd:1b:c5:3f:42:6b:
c8:bd:f8:70:6f:16:94:46:7a:94:7a:fa:2d:46:bf:e7:ff:02:
7b:e2:d0:62:45:cc:7a:b3:8f:ee:15:be:e5:01:c9:85:0c:c0:
79:a4:ab:3a:7d:08:57:08:b7:6b:9e:44:da:9b:fc:91:6e:4d:
c3:c2:78:9c:96:88:3d:b2:c0:a0:3e:1b:81:83:06:53:95:df:
10:e7:bc:01:d4:6d:9a:67:0f:79:a5:72:5b:bf:68:b2:a4:55:
15:58:83:c8:2e:fc:3e:b3:30:0e:9a:1a:49:ca:92:29:98:c2:
51:c9:01:a7:0b:80:b2:fa:82:e4:b0:75:9d:48:60:63:64:9d:
b3:11:75:55:c0:b4:57:6f:a0:f5:15:0c:8f:ae:bc:75:83:81:
51:4f:79:e3:b9:21:10:7a:29:b4:e2:96:e5:87:1c:83:20:d7:
c5:28:29:f7:71:bf:cc:6a:f8:32:ee:aa:66:23:7a:f1:43:1c:
11:45:e3:3b
-----BEGIN CERTIFICATE-----
MIIFhDCCBGygAwIBAgIDAS4iMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQUYxMTAvBgNVBAUTKDI1RDYzRTA4RUFCRTdDRkE2Nzg1RDRDMUQ2RDM0
MTE2REUxNUIzREMwHhcNMjQxMjI5MTUzMTE2WhcNMjcxMjEyMTUzMTE2WjAYMRYw
FAYDVQQDEw02NzcxNmI0OC1kNWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAxt1PZQjin2V6JReYzsVHyyfaIANI2dE4JUHM+4n5drno+EdJ9Qe0hFYp
l7+DoyLBa4UsxfjIAA1vt0TJhbDrmrAiSxPoqvF7wYVv/Y/LNUcJr0IpMKsXXKlQ
f+ay7VDyNlXf7p6KM9dDOp2+EkpknhhIBQjSHNDPOPpiT2srEHqPqhz6IZO+36kA
jAMAg5WLTtWSBYWg4kNXaCUBrygYuzfZJjbg5iplGDhOKFFYRuSHSXaIVoYyibkd
cEY/JPD8TW8+5AW/gRYOYeLpi9VPu2DhWcI7noiSbbSTmlYq/ZOqmu6Z7OiLXArk
3NyjByDE4xU5TvrYWm4sS33gnhU2DwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFJVb
tpppwLWHtOTbpc16wz3FXogRMB8GA1UdIwQYMBaAFCXWPgjqvnz6Z4XUwdbTQRbe
FbPcMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJGOEFFQTIyOC9KZFkt
Q09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY3JsMGcGCCsGAQUFBwEBBFswWTBXBggr
BgEFBQcwAoZLcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYWZy
aW5pYy9KZFktQ09xLWZQcG5oZFRCMXROQkZ0NFZzOXcuY2VyME8GA1UdIAEB/wRF
MEMwQQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmlu
aWMubmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYB
BQUHMAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1i
ZXJfcmVwb3NpdG9yeS9GMzY4RjJEMC83RjRBOThFQTZFMDUxMUU4OUMwRDZFNEJG
OEFFQTIyOC9GM0E1QUE4OEM1RjkxMUVGQkIyOTRDN0Y3NjJFOTUxQS5yb2EwNQYI
KwYBBQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24u
eG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAmtXfMA0GCSqGSIb3DQEB
CwUAA4IBAQBJvyrFDTMAnros5zUmdk0We1RdeXKBxDJN8KYU9YK+qXlhubIaJGKh
KHItiTfWeEFgzR7cULY3sbGvWE/9SaUC7NO9G8U/QmvIvfhwbxaURnqUevotRr/n
/wJ74tBiRcx6s4/uFb7lAcmFDMB5pKs6fQhXCLdrnkTam/yRbk3Dwniclog9ssCg
PhuBgwZTld8Q57wB1G2aZw95pXJbv2iypFUVWIPILvw+szAOmhpJypIpmMJRyQGn
C4Cy+oLksHWdSGBjZJ2zEXVVwLRXb6D1FQyPrrx1g4FRT3njuSEQeim04pblhxyD
INfFKCn3cb/Mavgy7qpmI3rxQxwRReM7
-----END CERTIFICATE-----
Generated at Fri Apr 4 10:56:13 2025 by rpki-client