Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5890A00DD6D11EFA61FC662762E951A.roa
File: D5890A00DD6D11EFA61FC662762E951A.roa (raw, json)
Hash identifier: wKLh90FfK0Ayv+A8F0uhhZceeeTL8cHHigST5Tin2p0=
Subject key identifier: 2F:A3:8F:68:56:CE:61:96:85:50:EB:12:27:62:96:0A:93:0D:F3:60
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 014CF0
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5890A00DD6D11EFA61FC662762E951A.roa
Signing time: Tue 28 Jan 2025 11:48:48 +0000
ROA not before: Tue 28 Jan 2025 11:48:44 +0000
ROA not after: Wed 12 Feb 2025 11:48:44 +0000
asID: 39600
IP address blocks: 154.94.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85232 (0x14cf0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Jan 28 11:48:44 2025 GMT
Not After : Feb 12 11:48:44 2025 GMT
Subject: CN=6798c41f-02e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b0:6e:fc:61:0d:20:d4:b7:ec:be:7c:80:77:
c7:45:20:d5:82:f6:95:ce:ef:13:5f:59:52:5e:62:
d2:c4:ee:bc:3c:8b:36:97:89:6c:43:25:ee:c6:f1:
d2:96:87:1a:e5:ba:47:fe:30:ce:e1:58:21:27:11:
e6:1a:6d:48:c5:1b:fc:1f:c5:d3:d3:3c:08:39:99:
80:79:8a:0d:83:ac:b9:d7:a0:3a:c3:5f:0d:e1:86:
0e:a8:b8:78:cb:cc:7d:c8:0f:55:da:b3:bf:64:78:
ca:75:0a:6e:79:97:e7:fb:91:b3:d1:2d:89:e2:b4:
4a:db:96:fa:7e:d7:27:97:c9:b4:11:bc:ab:4c:4a:
4f:ce:81:44:40:5b:4f:c8:b3:2a:30:5d:6b:70:ce:
58:e2:6d:bc:a0:76:03:4c:fe:06:60:ea:19:6f:c4:
99:8b:bf:73:df:12:ec:1e:df:16:ac:66:27:5b:62:
01:22:52:e6:31:60:26:0f:84:f8:f8:e3:0b:60:89:
c6:4d:09:9d:aa:10:ed:a8:f6:e9:95:df:41:a1:70:
93:bc:9a:21:21:77:b1:09:8a:15:89:7d:48:43:47:
ad:9e:fe:cd:0b:2e:af:c4:f7:d4:ff:3a:04:ba:88:
97:21:c5:98:cc:51:ba:0a:d3:54:ce:5d:87:65:70:
a7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:A3:8F:68:56:CE:61:96:85:50:EB:12:27:62:96:0A:93:0D:F3:60
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/D5890A00DD6D11EFA61FC662762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.33.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:6c:a7:50:16:77:cc:6c:5b:71:39:68:99:b9:13:c2:12:c7:
cc:24:86:63:4b:34:97:1c:d3:48:fa:66:99:83:fb:04:72:77:
02:72:60:e0:c5:f3:9c:ef:43:be:41:dc:3f:f7:27:33:89:50:
6f:44:50:1b:71:4a:9c:bd:ef:6f:a4:6c:0f:4e:0e:1d:3d:3a:
7c:b2:e9:4e:4e:7d:15:6d:76:c0:68:7d:e7:ad:6a:e4:30:28:
c2:2b:e0:d8:b7:80:15:87:f0:6e:e2:af:dd:47:ab:75:6e:c2:
46:a7:00:46:5f:c1:a3:27:1e:e3:b7:e8:f3:5b:0d:99:ea:5e:
42:30:ac:74:fd:0e:9c:ed:ec:22:7c:ff:99:6f:01:3a:10:03:
2f:aa:5a:c7:6d:95:1b:a1:bb:aa:52:0c:23:f4:c6:ba:af:9f:
ab:1e:34:0a:86:72:4b:2c:53:00:58:3a:13:1b:f5:44:c4:59:
af:bf:61:cc:e1:9f:1b:a2:4f:9c:a9:b4:df:91:90:b0:87:be:
cb:fb:46:8d:08:c4:c0:54:64:e1:5c:ee:d0:1b:ba:d3:96:76:
b6:2a:95:bd:01:2d:bc:26:69:ad:ee:b1:6c:ef:75:c1:2b:76:
f0:a4:8e:c3:82:f5:69:83:6a:4d:65:1c:dc:b5:d4:a0:94:f4:
e3:ce:a6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 06:24:18 2025 by rpki-client