Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57C1348CC52911EF9C297B57762E951A.roa
File: 57C1348CC52911EF9C297B57762E951A.roa (raw, json)
Hash identifier: qHd6nTLUl5EaHIdhXXep2+6sikgG8u5uTF/Gy9RKHzY=
Subject key identifier: 2F:18:32:CE:B3:DE:34:C9:1F:05:D5:49:B7:5A:97:1D:C9:E7:29:B3
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 012BA5
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57C1348CC52911EF9C297B57762E951A.roa
Signing time: Sat 28 Dec 2024 14:38:03 +0000
ROA not before: Sat 28 Dec 2024 14:37:59 +0000
ROA not after: Fri 12 Dec 2025 14:37:59 +0000
asID: 984
IP address blocks: 154.204.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76709 (0x12ba5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Dec 28 14:37:59 2024 GMT
Not After : Dec 12 14:37:59 2025 GMT
Subject: CN=67700d4b-eb76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0a:93:05:5a:a9:e3:54:a6:b2:92:bc:04:a5:
b6:6b:eb:89:e6:f5:e7:4f:12:86:8b:ce:5e:cb:f8:
f9:f8:5d:59:19:c4:f3:de:c1:b6:47:81:4d:20:c0:
76:47:98:cc:0b:a6:d7:e1:9e:a7:56:36:5c:f3:c2:
72:06:df:e3:55:90:bf:e4:45:5d:2f:37:aa:8e:3f:
66:53:23:e0:b1:d1:c8:85:c4:a6:64:f7:b7:42:94:
56:89:ff:84:a9:de:ba:1e:e2:eb:9f:ed:95:75:70:
92:4b:d0:44:36:4b:69:0f:47:ee:e4:c7:c1:cc:d9:
76:bd:b2:b1:8c:6a:28:26:00:5a:7a:c5:44:f6:dd:
51:80:06:91:03:2d:e8:31:a3:5c:5d:d4:70:be:6f:
be:d6:fc:97:59:55:21:51:bd:ca:43:ff:13:f9:db:
0b:4b:3b:89:b7:67:a1:cb:df:d1:0b:eb:9f:9a:53:
38:e6:4f:93:34:76:4a:a0:05:cc:9d:c4:45:dd:60:
0a:2b:35:11:75:49:d4:e2:85:3f:e5:d6:93:cf:1a:
af:63:72:d5:1f:5f:ba:0c:15:1a:44:e3:77:31:24:
50:63:61:82:a9:ec:7d:3e:37:10:da:04:8b:c9:9e:
f4:0d:e1:62:77:b7:83:5a:05:dd:1a:b0:10:35:64:
cb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:18:32:CE:B3:DE:34:C9:1F:05:D5:49:B7:5A:97:1D:C9:E7:29:B3
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/57C1348CC52911EF9C297B57762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.204.29.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:25:ab:75:09:64:53:20:9e:4b:10:d3:33:53:99:2f:7e:20:
ee:eb:27:17:9d:64:8c:86:37:6c:b3:b4:92:e1:eb:dd:29:69:
6a:14:f7:31:2c:6f:1e:87:72:c3:0f:92:f0:e6:ff:15:ab:77:
66:b5:eb:b4:aa:b7:fa:86:a5:c3:96:6f:f2:b7:ca:5b:72:6a:
f4:2f:9e:87:cc:6f:6a:f8:df:96:ab:c1:14:dc:87:3b:a2:d3:
15:a9:34:f5:d8:85:01:90:1b:c2:4d:8e:b5:3d:2a:46:6f:56:
77:9b:a7:d8:a8:2c:e0:03:b2:9e:34:6a:be:26:0f:bd:9d:22:
42:38:6d:6e:9b:44:77:10:d8:ff:fc:7b:7e:87:54:00:b7:74:
ee:8d:5c:44:ee:dd:d3:fc:a5:9c:94:2c:d3:1b:d3:d7:03:ac:
0a:df:92:29:e4:8a:f5:42:05:e0:89:95:ab:39:f0:38:1e:55:
63:58:c1:32:97:89:f3:a6:0e:59:df:34:0d:70:38:3a:fe:4b:
00:39:7c:de:73:b6:f0:1c:fc:04:78:4a:1b:cc:7f:77:9d:69:
c0:3a:16:6f:54:89:c3:21:84:52:63:85:fd:3b:ab:a5:c9:59:
fc:60:2b:45:fa:18:58:e3:45:6a:f4:65:3d:e8:7f:28:c7:f4:
1e:d3:90:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:50:48 2025 by rpki-client