Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/DC07DCFC75A311EBA15FBF16F8AEA228.roa
File: DC07DCFC75A311EBA15FBF16F8AEA228.roa (raw, json)
Hash identifier: HzSupgDeIXHg7YvZFZX2CGPofAxurmulFBlW5Eaf4z0=
Subject key identifier: 07:E2:A6:AC:57:77:64:27:49:CE:96:45:72:83:A5:96:33:B9:A4:D4
Certificate issuer: /CN=F3664674AF/serialNumber=E617D34F54EC2DB9BA58405CDA09431FD381F316
Certificate serial: 32
Authority key identifier: E6:17:D3:4F:54:EC:2D:B9:BA:58:40:5C:DA:09:43:1F:D3:81:F3:16
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/5hfTT1TsLbm6WEBc2glDH9OB8xY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/DC07DCFC75A311EBA15FBF16F8AEA228.roa
Signing time: Tue 23 Feb 2021 06:53:40 +0000
ROA not before: Tue 23 Feb 2021 06:53:35 +0000
ROA not after: Sat 31 Jan 2026 06:53:35 +0000
asID: 328386
IP address blocks: 102.130.72.0/21 maxlen: 24
102.130.72.0/23 maxlen: 24
102.130.74.0/23 maxlen: 24
102.130.76.0/23 maxlen: 24
102.130.78.0/23 maxlen: 24
2c0f:ece8::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50 (0x32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3664674AF
Validity
Not Before: Feb 23 06:53:35 2021 GMT
Not After : Jan 31 06:53:35 2026 GMT
Subject: CN=6034a674-e20a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8a:fd:cf:99:8c:0c:83:9c:fb:10:a2:50:f4:
35:e6:7e:8b:80:c1:a5:0f:2d:ce:65:a1:00:04:96:
16:0b:43:cc:50:41:63:06:40:8e:4d:ff:67:4b:48:
d7:71:04:b3:53:46:a8:18:da:c5:32:fb:b7:ee:c9:
f3:3c:54:ab:07:90:19:c5:c5:88:06:76:9a:0c:11:
0e:99:5c:29:f3:8e:89:ea:be:77:41:df:16:82:ec:
5a:7f:44:b0:a5:81:67:b6:e5:cc:e6:56:2c:6a:5a:
cb:6c:50:39:9c:77:98:5c:34:1a:48:28:68:59:af:
7b:46:8b:89:3f:a2:cd:31:20:71:b1:ef:fc:15:f0:
00:66:7f:ae:f3:8e:a5:11:4a:ce:6d:3b:c6:b7:42:
e4:15:d1:87:66:49:49:bb:94:cc:41:f6:76:7d:6a:
6e:4d:60:63:73:9f:3f:5a:cf:2f:f6:69:ae:bc:ab:
a3:7e:af:fa:57:d7:38:a8:74:87:77:d4:02:ba:92:
e7:38:65:b3:44:0b:a9:27:db:b2:08:06:c8:8b:03:
3c:3e:f8:30:05:ac:52:06:f8:61:3f:6e:32:08:23:
1d:ca:f9:d8:ef:1a:58:ea:12:b0:b8:8c:14:0e:18:
41:07:93:6e:38:06:6d:47:e0:d9:3f:a7:a8:a4:4b:
70:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E2:A6:AC:57:77:64:27:49:CE:96:45:72:83:A5:96:33:B9:A4:D4
X509v3 Authority Key Identifier:
keyid:E6:17:D3:4F:54:EC:2D:B9:BA:58:40:5C:DA:09:43:1F:D3:81:F3:16
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/5hfTT1TsLbm6WEBc2glDH9OB8xY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/5hfTT1TsLbm6WEBc2glDH9OB8xY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3664674/657AADAE501D11EB849EAF47F8AEA228/DC07DCFC75A311EBA15FBF16F8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.130.72.0/21
IPv6:
2c0f:ece8::/32
Signature Algorithm: sha256WithRSAEncryption
9b:8b:19:96:12:77:72:e7:4f:a7:f1:72:c5:73:fa:03:01:cc:
a8:1e:18:c0:51:f0:5d:a4:29:d2:43:7b:6c:ab:70:db:27:de:
63:87:01:c1:8c:88:8f:1c:f2:6f:8f:07:9a:a2:06:cc:9c:cf:
73:9b:7a:d7:ae:2a:bc:3d:7c:60:5f:2f:c5:0b:51:6a:fa:79:
55:30:6a:f3:8d:60:2f:e2:ed:94:6e:f7:7e:4a:e7:04:a4:49:
e7:69:b5:57:0f:a2:84:f9:40:2f:54:52:e0:f0:fd:6c:50:b0:
1a:2a:dc:c2:2c:ae:2a:69:65:9a:f6:98:1c:4e:16:66:b0:a3:
02:d9:c2:34:06:33:a1:4e:47:5e:0a:bb:68:68:9b:70:a5:91:
e6:c9:bd:65:a6:53:f0:28:32:1a:a0:fd:59:d3:45:2c:38:3b:
f5:48:fb:b5:4a:4e:39:d4:aa:ed:96:43:3c:cd:b5:dd:8b:e4:
b7:10:dd:0c:4e:ee:ea:c8:0e:4d:86:2c:dd:de:41:5d:b1:35:
4e:61:14:9b:ce:64:26:ad:b1:12:9d:6e:2f:8f:07:f6:13:6d:
af:4c:09:4e:c6:c6:1f:17:ef:e6:bb:1d:cc:62:81:ce:d4:8e:
77:ca:fa:9b:bc:0e:02:47:64:24:c7:38:5e:26:b5:0b:fa:ed:
0d:09:83:9c
-----BEGIN CERTIFICATE-----
MIIFkTCCBHmgAwIBAgIBMjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDEwpGMzY2
NDY3NEFGMTEwLwYDVQQFEyhFNjE3RDM0RjU0RUMyREI5QkE1ODQwNUNEQTA5NDMx
RkQzODFGMzE2MB4XDTIxMDIyMzA2NTMzNVoXDTI2MDEzMTA2NTMzNVowGDEWMBQG
A1UEAxMNNjAzNGE2NzQtZTIwYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKKK/c+ZjAyDnPsQolD0NeZ+i4DBpQ8tzmWhAASWFgtDzFBBYwZAjk3/Z0tI
13EEs1NGqBjaxTL7t+7J8zxUqweQGcXFiAZ2mgwRDplcKfOOieq+d0HfFoLsWn9E
sKWBZ7blzOZWLGpay2xQOZx3mFw0GkgoaFmve0aLiT+izTEgcbHv/BXwAGZ/rvOO
pRFKzm07xrdC5BXRh2ZJSbuUzEH2dn1qbk1gY3OfP1rPL/Zprryro36v+lfXOKh0
h3fUArqS5zhls0QLqSfbsggGyIsDPD74MAWsUgb4YT9uMggjHcr52O8aWOoSsLiM
FA4YQQeTbjgGbUfg2T+nqKRLcKMCAwEAAaOCArQwggKwMB0GA1UdDgQWBBQH4qas
V3dkJ0nOlkVyg6WWM7mk1DAfBgNVHSMEGDAWgBTmF9NPVOwtubpYQFzaCUMf04Hz
FjAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2NjQ2NzQvNjU3QUFEQUU1MDFEMTFFQjg0OUVBRjQ3RjhBRUEyMjgvNWhmVFQx
VHNMYm02V0VCYzJnbERIOU9COHhZLmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvNWhmVFQxVHNMYm02V0VCYzJnbERIOU9COHhZLmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2NjQ2NzQvNjU3QUFEQUU1MDFEMTFFQjg0OUVBRjQ3RjhB
RUEyMjgvREMwN0RDRkM3NUEzMTFFQkExNUZCRjE2RjhBRUEyMjgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDAuBggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEA2aCSDANBAIAAjAHAwUALA/s
6DANBgkqhkiG9w0BAQsFAAOCAQEAm4sZlhJ3cudPp/FyxXP6AwHMqB4YwFHwXaQp
0kN7bKtw2yfeY4cBwYyIjxzyb48HmqIGzJzPc5t6164qvD18YF8vxQtRavp5VTBq
841gL+LtlG73fkrnBKRJ52m1Vw+ihPlAL1RS4PD9bFCwGircwiyuKmllmvaYHE4W
ZrCjAtnCNAYzoU5HXgq7aGibcKWR5sm9ZaZT8CgyGqD9WdNFLDg79Uj7tUpOOdSq
7ZZDPM213YvktxDdDE7u6sgOTYYs3d5BXbE1TmEUm85kJq2xEp1uL48H9hNtr0wJ
TsbGHxfv5rsdzGKBztSOd8r6m7wOAkdkJMc4Xia1C/rtDQmDnA==
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:33:37 2025 by rpki-client