Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/0689A4DCF37D11EA9A9F6279F8AEA228.roa
File: 0689A4DCF37D11EA9A9F6279F8AEA228.roa (raw, json)
Hash identifier: 3S074gV1009GxCH0AiUSZXk89CtSyxMZR+2DablNRaE=
Subject key identifier: 5B:EB:30:2B:2A:ED:1D:F5:39:8C:AF:1D:00:6A:9A:65:47:BB:A3:0A
Certificate issuer: /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial: 0251
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/0689A4DCF37D11EA9A9F6279F8AEA228.roa
Signing time: Thu 10 Sep 2020 15:48:10 +0000
ROA not before: Thu 10 Sep 2020 15:48:05 +0000
ROA not after: Tue 10 Sep 2024 15:48:05 +0000
asID: 327687
IP address blocks: 196.43.144.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 593 (0x251)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362B38EAF
Validity
Not Before: Sep 10 15:48:05 2020 GMT
Not After : Sep 10 15:48:05 2024 GMT
Subject: CN=5f5a4aba-4ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2d:31:93:04:28:54:ae:15:85:1b:02:43:f5:
d2:c5:d4:e7:5b:87:42:3e:96:91:fa:f5:ec:fd:83:
1b:93:e1:b2:7f:1b:5d:fd:d5:f8:da:15:e0:ce:3b:
17:9a:62:fa:ec:88:2c:16:ef:16:88:17:e7:38:55:
61:42:e7:9b:62:4c:50:72:34:2f:1f:61:eb:b0:2b:
ee:e0:8f:c8:67:14:8c:c4:0c:77:54:59:f4:92:43:
51:65:e8:ef:bc:e7:d4:65:df:a4:1c:1e:b7:47:2a:
a9:b2:ce:36:bf:7f:dc:49:e8:4f:b9:0b:6f:92:8d:
44:ae:9f:e4:4b:76:3a:ff:46:38:45:4b:f6:90:2b:
8c:a9:33:a9:23:76:f5:4c:8c:4f:71:17:0a:97:32:
ba:26:99:c4:31:ba:6f:ba:49:1f:9f:5d:e4:9c:e2:
ea:7e:36:3e:77:9c:4e:29:8d:2b:1d:bf:57:4f:6c:
b9:e9:16:59:0e:ba:12:5a:19:e0:90:50:02:8b:62:
ef:3c:1b:cb:ba:f2:a5:58:94:dc:34:2f:92:bd:16:
77:47:6e:49:0a:e9:e5:e5:0b:3a:e2:1d:52:f7:86:
d3:80:2b:ba:bf:1b:c4:52:ef:eb:bd:8b:46:9e:9e:
20:a1:7b:7f:2d:46:d1:58:97:d4:d9:30:f1:b2:54:
d3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:EB:30:2B:2A:ED:1D:F5:39:8C:AF:1D:00:6A:9A:65:47:BB:A3:0A
X509v3 Authority Key Identifier:
keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/0689A4DCF37D11EA9A9F6279F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.43.144.0/23
Signature Algorithm: sha256WithRSAEncryption
1d:6b:1c:fa:4f:97:5d:0a:f7:33:e2:75:ca:f6:18:5e:a1:ed:
41:98:94:6f:74:a6:69:7e:ca:2a:03:f6:4d:74:dc:c8:d6:c2:
88:83:a7:2b:32:ba:b4:d7:d8:17:9b:1f:e9:20:81:23:a5:96:
22:13:23:2b:57:19:99:04:48:d7:8c:d6:17:a1:f9:e5:e6:de:
5e:16:74:a9:2d:5f:d1:0d:86:4d:9c:d6:c9:5d:e3:24:88:c3:
52:16:9c:5b:44:84:88:06:1c:73:ec:83:8c:8a:c1:47:72:25:
16:51:d8:16:12:a5:41:1f:42:f1:d0:66:2d:4a:27:a9:0a:11:
42:db:98:40:27:95:79:49:8b:7f:aa:2f:a2:73:f9:71:47:a4:
50:86:ee:15:d6:7e:ee:01:8d:db:c3:6e:c0:c0:bf:8b:f7:ea:
51:9d:e2:c9:09:e0:b9:ac:54:3c:86:e5:2d:1b:c6:8e:56:62:
2d:bc:ec:f3:e4:db:93:75:9d:17:0a:71:c9:fd:b9:45:22:34:
5e:67:ad:e0:aa:28:01:78:39:71:6f:18:6e:e8:48:20:11:62:
78:56:c4:06:c3:7f:2d:20:59:d3:02:37:10:e8:75:f3:25:dd:
4c:58:65:61:50:f1:fc:d7:8a:4d:fa:0d:dc:dd:20:d4:5f:60:
ee:f9:ff:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:45:23 2025 by rpki-client