Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54CF411CDCA611EF8E03DE99762E951A.roa
File: 54CF411CDCA611EF8E03DE99762E951A.roa (raw, json)
Hash identifier: xkjYBjr6VDwLlZNZOXkjYwaMRu+v4EGkP8VYMWlS0sk=
Subject key identifier: 47:CE:E2:61:00:79:51:AC:3F:39:3F:EF:70:21:65:67:5F:C6:12:EF
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014BEF
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54CF411CDCA611EF8E03DE99762E951A.roa
Signing time: Mon 27 Jan 2025 12:00:42 +0000
ROA not before: Mon 27 Jan 2025 12:00:38 +0000
ROA not after: Sat 08 Feb 2025 12:00:38 +0000
asID: 212238
IP address blocks: 154.202.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84975 (0x14bef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 27 12:00:38 2025 GMT
Not After : Feb 8 12:00:38 2025 GMT
Subject: CN=6797756a-7dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:23:d5:ef:ef:cb:c8:95:aa:35:45:c5:f3:
3a:34:a2:45:7b:02:01:95:60:20:d8:c2:ed:fc:b5:
4a:f3:f4:ed:20:73:65:32:f5:b4:d3:34:7c:b9:24:
d7:14:36:8e:4e:e7:4e:b1:30:ff:d0:aa:d8:e3:37:
11:d4:2d:ea:64:64:50:57:6b:47:78:0f:fa:a5:11:
0b:51:da:f1:33:2e:a4:10:9d:6d:ac:6e:08:d0:fd:
6d:d2:c1:97:3c:35:04:46:48:3b:ce:5a:28:31:b3:
ef:fe:87:0f:1e:4b:05:55:7c:3b:6e:bc:60:5b:ab:
e9:fb:c2:45:a7:15:b8:eb:2b:25:bb:9c:2e:cb:5e:
0c:39:2f:73:51:23:d3:48:ab:92:ac:16:ca:20:3f:
be:e4:21:a7:9b:68:26:b2:43:23:74:0b:e4:63:6c:
19:d8:0b:69:49:73:ca:ef:82:64:29:cc:7e:bc:b5:
cf:02:18:c9:a9:8d:48:ce:31:8c:f9:ba:64:a0:a8:
a0:0f:ef:54:58:f5:61:e6:f0:c5:47:69:1d:07:e5:
3e:86:37:54:69:ac:9b:9b:43:19:55:46:4d:b6:9f:
55:2f:4b:8c:13:a0:b4:30:3f:29:a5:27:ee:ed:99:
d6:94:50:d1:22:e8:41:42:bd:47:36:97:b3:c5:c2:
30:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:CE:E2:61:00:79:51:AC:3F:39:3F:EF:70:21:65:67:5F:C6:12:EF
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/54CF411CDCA611EF8E03DE99762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.202.29.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:d6:90:5a:fd:58:2b:9f:a9:fb:f6:35:9e:c8:f5:5f:84:3f:
56:d1:ee:e5:ee:80:d4:b5:de:c6:f4:47:8b:1e:01:d5:ea:ff:
71:41:ab:83:67:0c:bc:c7:79:f4:c0:18:50:24:36:ed:33:a2:
36:6e:ac:86:e3:4a:6a:d5:c4:05:77:69:82:fb:4d:ac:5c:9d:
53:e6:5d:60:f2:07:84:f5:d7:ea:f8:e5:6e:d9:5a:4a:99:62:
8d:4b:36:55:c5:3a:9e:b3:53:ad:55:ff:66:e1:ab:ad:1d:39:
a6:2f:6e:ce:c6:0a:f6:f9:ab:0e:69:77:76:4b:2f:4a:06:4d:
cf:d3:ef:9e:9d:29:a5:87:1b:44:d8:75:10:93:fa:96:4e:85:
b2:d8:bd:74:8b:d2:69:e3:59:d9:29:22:72:0d:09:7b:fc:a9:
ac:fc:01:c8:39:ff:4e:6d:13:08:f3:a6:8b:65:04:06:fe:c6:
fe:a7:b6:e5:20:c9:01:ee:95:4e:b5:fb:62:61:c4:1c:f1:d3:
8b:67:ae:e9:37:74:9b:ab:86:e0:72:8a:04:6c:b5:7a:5d:1a:
3f:58:61:4d:f3:f8:f9:19:0c:b3:7b:1a:ad:8e:45:ea:a2:b5:
6f:be:a8:c8:af:03:b3:e8:e0:a6:12:c7:31:c3:54:a8:07:df:
ea:d7:2f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 00:05:06 2025 by rpki-client