Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/A0B01772C1D111EF8114B48B762E951A.roa
File: A0B01772C1D111EF8114B48B762E951A.roa (raw, json)
Hash identifier: HKYJQ/g2THGjbpr26F1DQD3uDlkl95uHPyy5HoliPZc=
Subject key identifier: D2:FD:BA:BC:7D:A2:55:BA:B8:91:2E:EE:70:36:55:BF:4C:6C:06:E1
Certificate issuer: /CN=F363BA19AF/serialNumber=6AEA24B099C32B22E4E48BB9F26CF578BEF6BFF3
Certificate serial: 0445
Authority key identifier: 6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/A0B01772C1D111EF8114B48B762E951A.roa
Signing time: Tue 24 Dec 2024 08:32:36 +0000
ROA not before: Tue 24 Dec 2024 08:32:32 +0000
ROA not after: Wed 24 Dec 2025 08:32:32 +0000
asID: 329007
IP address blocks: 196.251.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1093 (0x445)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F363BA19AF
Validity
Not Before: Dec 24 08:32:32 2024 GMT
Not After : Dec 24 08:32:32 2025 GMT
Subject: CN=676a71a4-5a1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:69:a6:2a:d6:05:93:34:dd:68:35:90:03:f1:
5b:aa:88:25:f8:42:7e:7d:4b:af:af:56:78:88:fd:
7f:12:71:f0:ca:09:47:16:31:af:33:5e:30:b9:4d:
84:0d:b5:45:10:62:a2:47:22:13:7e:56:92:d5:3c:
ab:04:c2:13:9b:29:ab:08:b5:c1:9f:c3:c3:e1:77:
5a:1a:be:ce:53:9a:e5:b2:ea:92:77:8a:66:5a:3e:
97:36:c2:98:ae:12:8c:7b:53:70:e2:67:3f:34:49:
f9:90:b2:a1:e3:ab:b2:f8:07:7e:08:c4:5a:dc:ef:
93:92:4d:47:e0:1e:8e:f6:7a:9b:60:ab:75:a7:ab:
92:e0:3b:7e:1f:11:25:db:49:f3:8a:71:9a:41:51:
6c:fa:20:24:d2:1c:0d:ef:ad:f9:b9:e6:10:8d:ce:
4e:20:34:db:84:24:67:2d:57:ed:ca:5d:06:79:01:
99:dc:c8:a5:a4:52:01:a4:96:b6:03:99:85:f0:5e:
86:19:30:7a:20:34:ad:8c:0a:38:c6:28:21:61:3f:
d9:04:ab:d3:40:ef:2a:df:f1:bc:8e:9e:5b:76:e7:
15:a8:dd:80:74:51:45:8f:09:ba:88:6c:af:b0:94:
ec:4a:05:65:7b:a8:28:da:c3:6c:1c:4e:1d:dc:4a:
db:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:FD:BA:BC:7D:A2:55:BA:B8:91:2E:EE:70:36:55:BF:4C:6C:06:E1
X509v3 Authority Key Identifier:
keyid:6A:EA:24:B0:99:C3:2B:22:E4:E4:8B:B9:F2:6C:F5:78:BE:F6:BF:F3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/auoksJnDKyLk5Iu58mz1eL72v_M.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/auoksJnDKyLk5Iu58mz1eL72v_M.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F363BA19/0E7F1DF6962A11EC8671E6E05A40D577/A0B01772C1D111EF8114B48B762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
196.251.112.0/21
Signature Algorithm: sha256WithRSAEncryption
1b:8b:59:35:0b:18:17:aa:4e:b4:b9:49:33:c3:7a:3c:3c:d9:
69:60:be:9e:79:0f:6e:44:bd:ac:da:45:f7:9f:e4:30:a0:d6:
a0:c7:40:86:5a:cd:a2:43:01:02:72:55:af:35:5c:6f:15:ee:
3c:ec:07:96:9a:53:31:7a:6d:0e:b1:e9:50:9a:09:0c:a6:a9:
7d:2d:d8:49:4c:64:12:ec:ff:b8:59:8a:1d:6c:05:23:06:0a:
69:c3:44:9f:aa:98:b0:06:4d:33:b9:64:50:46:19:45:60:8d:
3a:14:9f:e6:73:35:d9:05:85:77:2d:39:2f:ff:fa:67:6a:c2:
1a:ae:63:95:92:c8:61:84:84:39:07:12:4d:74:ee:c5:90:5c:
48:98:5d:2f:f8:61:ad:88:d6:9d:46:90:5f:b2:be:fa:1c:19:
27:58:85:74:c8:01:d7:f2:ea:87:6d:84:59:46:b6:51:2c:b0:
d8:e6:28:62:15:0e:09:d4:2d:77:36:5d:9c:3c:a6:32:23:cc:
83:4c:d5:39:11:10:65:9b:2d:43:b0:ec:0e:ee:c8:a9:b5:a6:
dc:2f:03:f8:85:aa:75:e4:4e:a9:e2:e5:14:87:72:ba:01:5c:
23:5e:a2:25:a7:66:bb:b8:49:38:6d:d7:97:ea:c2:9a:bc:d5:
c6:97:96:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:07 2025 by rpki-client