Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/461578A0D8A811EFAE3C45AB762E951A.roa
File: 461578A0D8A811EFAE3C45AB762E951A.roa (raw, json)
Hash identifier: WR61sVMOkdNXAsFLW9alfL8y59AOLo8Xk68VF9jT99c=
Subject key identifier: 01:89:14:94:CA:16:45:B3:59:8D:AC:4C:FC:DE:75:37:F5:CF:2F:E4
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 013EAA
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/461578A0D8A811EFAE3C45AB762E951A.roa
Signing time: Wed 22 Jan 2025 10:04:31 +0000
ROA not before: Wed 22 Jan 2025 10:04:27 +0000
ROA not after: Wed 05 Feb 2025 10:04:27 +0000
asID: 395793
IP address blocks: 154.200.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81578 (0x13eaa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 22 10:04:27 2025 GMT
Not After : Feb 5 10:04:27 2025 GMT
Subject: CN=6790c2af-1a33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:aa:32:59:0d:f7:35:92:70:b1:25:09:0c:d9:
cc:0d:53:91:fd:b8:d5:44:69:cc:d6:19:16:92:43:
1e:e5:27:41:49:9f:c0:64:26:ff:16:b1:00:69:05:
bb:c0:b7:c1:03:26:4e:8e:0c:1e:0c:32:82:14:ad:
7b:cb:d4:58:ef:31:08:2c:47:77:ae:08:dd:2d:a9:
33:5f:c0:4f:04:43:d2:4e:b3:71:d0:f4:6b:ef:49:
f8:1d:13:b3:2b:bb:c9:d3:39:a2:05:e6:a9:40:8a:
43:b9:c3:a4:6f:83:3c:d4:b6:db:d1:a9:78:66:36:
63:88:8e:3e:c2:bb:46:0e:14:36:a8:c5:41:6c:29:
97:2f:ed:61:09:93:54:90:ab:17:88:9d:d6:f5:20:
64:fc:e3:ff:dc:c8:76:e3:47:bc:0a:8b:9c:3f:1c:
f0:95:1a:88:17:84:9f:29:3d:8d:fc:15:ee:16:90:
34:d6:0a:19:44:6c:28:be:61:eb:9c:df:bf:16:3d:
80:1b:c1:69:a4:c7:40:3d:55:57:1d:d0:10:ee:8b:
81:2a:d9:47:cd:7e:ed:b3:54:23:e1:e4:c6:18:68:
0b:e4:0e:92:d7:ea:9f:e6:6e:36:12:50:0a:6c:d5:
c5:48:c7:6e:3c:7c:d6:2b:f5:d9:50:17:d8:ff:f7:
cc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:89:14:94:CA:16:45:B3:59:8D:AC:4C:FC:DE:75:37:F5:CF:2F:E4
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/461578A0D8A811EFAE3C45AB762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.56.0/24
Signature Algorithm: sha256WithRSAEncryption
96:a9:00:aa:7f:4f:df:6d:cb:f0:e6:6f:cc:04:27:ba:75:38:
09:23:48:f4:a7:5e:e7:77:72:a6:03:5d:cc:81:0c:1c:1e:85:
fc:17:54:da:70:50:bc:4b:92:f5:64:2f:ce:97:68:88:e0:3e:
65:c6:b0:fc:ba:b9:a8:48:44:f6:20:5b:a0:10:0f:d6:a8:74:
f9:34:6d:bf:3d:06:90:73:42:3c:40:84:c4:5a:5c:f1:44:11:
2d:de:eb:62:ac:c0:a0:36:12:8d:c3:10:21:7a:3a:0f:9c:0d:
cd:30:b5:f4:e6:5c:da:3f:b7:cd:5d:22:46:6c:f4:a6:dc:ff:
d3:91:1c:f0:1d:64:e6:ac:7f:07:28:8f:11:00:cb:c2:7c:58:
c7:b5:1c:4c:fa:ff:a8:9b:98:36:b7:b7:cb:10:b5:04:7e:81:
56:be:7b:0d:44:e8:e7:e2:34:26:c4:38:d2:0a:29:dd:b0:5d:
73:f8:ae:2a:82:68:c8:d4:f5:36:09:a5:f0:28:ec:1b:e1:2d:
2c:6a:f2:b0:29:32:0e:15:e9:77:40:da:cd:91:44:8d:f1:70:
41:f7:80:31:22:01:cb:bd:45:cc:73:99:83:90:27:f2:b2:a1:
e4:00:34:cd:9f:13:e2:7e:5c:96:8d:07:5d:73:0c:09:e9:0c:
a2:b4:51:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 00:07:28 2025 by rpki-client