Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/398C8B64B7BF11EF86BCF3AA762E951A.roa
File: 398C8B64B7BF11EF86BCF3AA762E951A.roa (raw, json)
Hash identifier: XSEwUrCfNAUJ64t2z/806KnwffnShujnxoi2FkSzaig=
Subject key identifier: D3:B0:A2:DF:0F:D1:2D:B0:94:86:16:6E:49:23:85:BA:5A:18:F1:04
Certificate issuer: /CN=F362793FAF/serialNumber=DAA872FF9A04446B718A8D9F47554BFA581B3A0E
Certificate serial: 25
Authority key identifier: DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/398C8B64B7BF11EF86BCF3AA762E951A.roa
Signing time: Wed 11 Dec 2024 12:55:41 +0000
ROA not before: Wed 11 Dec 2024 12:55:36 +0000
ROA not after: Fri 01 Dec 2034 12:55:36 +0000
asID: 328467
IP address blocks: 102.67.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37 (0x25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362793FAF
Validity
Not Before: Dec 11 12:55:36 2024 GMT
Not After : Dec 1 12:55:36 2034 GMT
Subject: CN=67598bcd-8815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:44:a1:64:67:ba:84:80:db:b9:a0:af:27:e1:
4b:86:e0:37:be:67:f2:06:19:ce:c6:7d:36:08:b0:
d2:1a:75:ec:29:94:69:a5:d8:9d:05:c2:8e:37:d0:
ac:b6:99:df:9b:b5:be:3a:20:0a:2c:dc:f5:31:81:
1d:55:94:98:10:40:0b:7d:42:f4:ec:8c:44:5b:6d:
41:be:69:e4:63:1b:6f:0b:2e:71:4d:c6:a2:a7:59:
34:46:f6:98:db:64:6d:31:d3:d1:cb:fb:03:89:77:
cb:0b:14:f4:ed:0e:dd:32:c0:6d:71:dd:62:44:c1:
5a:e3:25:cb:bb:93:1a:ee:e0:4f:7a:1b:33:32:a1:
53:84:2f:da:94:cf:0a:e7:70:99:a6:1a:b1:1f:77:
8a:7f:98:82:b0:0e:0a:96:b8:72:a4:bc:13:db:dd:
83:c0:79:e2:15:50:b2:9e:58:db:a1:06:09:ba:a7:
c1:1b:e6:2a:2f:b0:05:09:28:8d:d7:4b:37:ce:f8:
aa:98:eb:e6:29:3e:45:f1:cd:c6:6c:48:ce:4e:90:
1b:8d:a5:f7:22:4d:67:02:20:bb:3b:5a:9f:d3:60:
df:99:5a:e4:cf:27:b4:d4:26:54:df:45:7b:2a:d2:
0f:e9:b3:5c:c4:4f:be:db:66:ee:91:72:2d:0d:06:
3e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B0:A2:DF:0F:D1:2D:B0:94:86:16:6E:49:23:85:BA:5A:18:F1:04
X509v3 Authority Key Identifier:
keyid:DA:A8:72:FF:9A:04:44:6B:71:8A:8D:9F:47:55:4B:FA:58:1B:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/2qhy_5oERGtxio2fR1VL-lgbOg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/2qhy_5oERGtxio2fR1VL-lgbOg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362793F/065D4DBAA64311EF8B4D3E8B762E951A/398C8B64B7BF11EF86BCF3AA762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.67.132.0/24
Signature Algorithm: sha256WithRSAEncryption
52:6b:78:fa:2b:92:40:c8:d7:14:75:db:f4:e8:d0:92:13:99:
64:ff:44:d6:3c:0f:65:0a:9b:a9:21:b9:89:9a:8e:02:6a:da:
d8:4d:14:5b:87:b6:b5:e2:17:f8:a7:14:43:b7:a3:93:56:08:
1b:11:ca:15:23:d2:17:9b:6d:29:d1:91:a3:1f:75:0c:13:a6:
4e:16:9c:3a:3d:2e:dd:51:47:ef:f2:ea:e4:4a:1d:e2:5b:bb:
24:c7:1d:b4:27:52:e1:7d:d7:ec:13:3e:d5:f3:dc:3c:51:a2:
f4:c9:22:32:c8:1a:ae:06:5d:c7:3a:1c:71:53:59:82:49:4e:
f9:91:24:4b:35:04:2f:96:85:9b:3e:55:93:68:b4:67:46:85:
d0:3d:07:1b:1b:98:2c:8f:0a:7d:a6:56:ba:db:4f:e5:22:a8:
7e:a6:81:a3:29:3e:be:12:65:43:f3:a9:f9:2f:09:7e:0f:ef:
bb:78:fc:6f:f5:df:01:ba:55:1c:90:7b:b4:66:5a:db:be:e2:
49:a1:30:64:08:7e:24:4e:b9:10:0e:de:33:c9:a6:10:2f:85:
9e:aa:13:59:a9:61:9c:78:71:fb:c0:04:03:5a:fe:a2:5a:ea:
a4:15:8f:35:46:a5:46:4e:43:a8:73:e4:8f:ab:f1:d0:33:b0:
14:49:48:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 10:58:45 2025 by rpki-client