Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/1DBE3DD635D611EE839A51454AD9E6FC.roa
File: 1DBE3DD635D611EE839A51454AD9E6FC.roa (raw, json)
Hash identifier: aemYVHRSZIgXuMBDlXAxERXg3CRBDNWkYwmjWzGZPw8=
Subject key identifier: 24:49:39:6C:7C:6F:2C:6C:B0:7E:6B:58:F4:EE:2B:06:94:5D:FE:80
Certificate issuer: /CN=F3683B5BAF/serialNumber=1835072A22EF9D9C7CB8B5A36C69E7C398133C61
Certificate serial: 02
Authority key identifier: 18:35:07:2A:22:EF:9D:9C:7C:B8:B5:A3:6C:69:E7:C3:98:13:3C:61
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/GDUHKiLvnZx8uLWjbGnnw5gTPGE.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/1DBE3DD635D611EE839A51454AD9E6FC.roa
Signing time: Tue 08 Aug 2023 10:27:03 +0000
ROA not before: Tue 08 Aug 2023 10:26:59 +0000
ROA not after: Thu 31 Aug 2028 10:26:59 +0000
asID: 8075
IP address blocks: 102.211.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3683B5BAF
Validity
Not Before: Aug 8 10:26:59 2023 GMT
Not After : Aug 31 10:26:59 2028 GMT
Subject: CN=64d21877-de7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e6:ea:c4:02:a0:1e:69:4e:93:81:3f:cd:ce:
53:1a:aa:13:07:c9:c0:ee:2e:d0:2c:b1:ff:af:7f:
2e:49:88:35:69:f9:60:bc:73:46:16:4c:12:88:5e:
69:18:32:99:43:17:9f:c6:73:0a:a3:09:08:1a:5f:
a0:9c:18:3c:07:e9:3f:9c:20:8f:bf:ba:8f:a9:4b:
f0:db:18:77:b5:bf:95:e5:31:b5:b3:6d:ad:3e:69:
2e:29:32:62:a9:ea:1e:92:12:be:ef:ad:fb:cf:38:
6c:a7:95:a6:30:2e:5a:85:19:e8:70:e6:d2:2b:da:
5a:b7:5f:ba:42:49:fd:ce:61:16:b5:09:0f:6d:ae:
fa:d9:8f:ce:9f:c7:3d:96:40:e6:b7:a6:35:62:3c:
f8:f9:6b:bf:91:96:1a:82:78:03:e6:0e:26:22:b8:
c0:9a:91:ed:c3:c5:11:88:10:69:f8:60:16:3b:e8:
f0:2b:93:c2:55:ea:2c:7a:6a:62:5c:58:0f:f8:28:
ed:b0:c4:1c:24:c2:94:73:e0:5d:33:5c:f9:3c:2a:
d5:6e:5c:73:2e:bd:cc:ac:d1:70:ae:df:ac:f6:d5:
a5:f2:2d:6b:05:fd:0f:ea:24:09:64:ab:46:9c:20:
3f:7b:65:9f:3b:97:c1:a8:3e:f3:6f:29:49:78:d4:
6f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:49:39:6C:7C:6F:2C:6C:B0:7E:6B:58:F4:EE:2B:06:94:5D:FE:80
X509v3 Authority Key Identifier:
keyid:18:35:07:2A:22:EF:9D:9C:7C:B8:B5:A3:6C:69:E7:C3:98:13:3C:61
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/GDUHKiLvnZx8uLWjbGnnw5gTPGE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/GDUHKiLvnZx8uLWjbGnnw5gTPGE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3683B5B/7C3BEF0835D511EE9C89C3434AD9E6FC/1DBE3DD635D611EE839A51454AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.211.187.0/24
Signature Algorithm: sha256WithRSAEncryption
14:a9:a9:00:9b:32:1a:31:e5:a4:71:c5:6a:5a:14:de:a0:93:
0f:ac:7f:9e:42:41:c6:8f:e0:7b:58:ca:60:60:54:f4:39:14:
83:a8:85:ca:b0:7c:b7:fe:fb:51:29:0a:2f:83:8c:87:30:88:
05:e0:e4:12:33:dd:af:5f:b0:73:cd:2b:9e:96:18:f5:4e:c9:
97:e1:8c:f4:39:c0:c2:29:ec:5c:d6:0a:00:8d:bf:5a:dd:81:
65:a1:41:e8:04:af:5e:5e:4e:f5:1c:af:0d:22:37:1a:0e:15:
76:5a:87:c5:3a:4e:1c:59:5f:a1:23:95:94:bb:91:9a:56:cd:
9b:ce:2b:f9:40:b4:09:87:98:07:ab:84:fb:79:a8:c7:0d:d8:
2f:5c:a7:ad:7e:ee:83:39:9f:00:51:12:7b:3d:67:74:f3:f9:
74:31:0f:a8:49:30:46:71:20:9f:f0:30:e6:21:28:71:c7:5e:
0c:03:b1:f8:c6:97:f5:ce:3b:f8:d8:92:ca:04:25:0e:a2:c5:
29:eb:54:fd:07:15:95:c3:a5:61:8e:7e:22:27:32:cc:dc:4d:
cf:00:df:0b:b3:57:d5:50:db:43:4a:91:82:f7:d2:46:64:c7:
f4:99:90:fc:67:ad:c4:f4:65:de:f2:13:9b:63:5d:43:90:0e:
84:8b:04:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 14:01:47 2025 by rpki-client