Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/8EF61D1EEEB411EF889964AD762E951A.roa
File: 8EF61D1EEEB411EF889964AD762E951A.roa (raw, json)
Hash identifier: Ne2Y7htsHQWeEx55PF22lb5wSy2Y5F0WsPUkbTe6Xao=
Subject key identifier: D7:96:B4:4A:55:3C:DA:25:15:70:84:FB:42:0A:C7:D8:DB:70:D0:31
Certificate issuer: /CN=F3687CF2AF/serialNumber=A05F84ABF0669EE0D07FC8DA367D816FAFF06704
Certificate serial: 04
Authority key identifier: A0:5F:84:AB:F0:66:9E:E0:D0:7F:C8:DA:36:7D:81:6F:AF:F0:67:04
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/8EF61D1EEEB411EF889964AD762E951A.roa
Signing time: Wed 19 Feb 2025 11:27:54 +0000
ROA not before: Wed 19 Feb 2025 11:27:46 +0000
ROA not after: Mon 31 Dec 2035 11:27:46 +0000
asID: 37649
IP address blocks: 102.164.128.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3687CF2AF
Validity
Not Before: Feb 19 11:27:46 2025 GMT
Not After : Dec 31 11:27:46 2035 GMT
Subject: CN=67b5c03a-85f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:13:33:74:9e:3c:00:b8:63:0e:52:c3:93:4d:
9f:47:fb:04:ca:92:d7:44:09:6f:57:67:2f:a6:73:
39:5f:74:1c:7d:e8:4b:c9:81:8c:54:df:dc:3f:a6:
c8:1d:59:32:21:62:6d:6f:5b:ea:72:3e:68:a4:71:
76:e0:78:6e:3a:c3:06:c8:ea:26:14:80:15:23:b3:
a9:fb:22:f7:de:5e:db:ed:ad:6d:85:19:00:ea:29:
ea:f5:9c:21:44:e7:77:11:46:fa:58:00:82:79:ac:
47:01:b0:60:2b:d1:ef:87:e9:4e:19:cd:53:bd:94:
36:f8:27:e4:bb:b6:86:f6:82:e0:de:8d:ca:f7:bd:
04:b1:d0:d1:97:72:49:a1:e9:02:66:a0:b4:3b:1e:
6c:51:88:75:7c:ae:59:9a:cb:2f:0b:01:a0:d9:6f:
6b:7f:93:b9:dc:dc:0f:fd:3e:74:ce:53:dc:1c:ab:
2e:05:99:2b:05:a7:38:a6:82:61:bd:67:42:a3:b8:
5d:20:24:28:82:a2:37:3a:00:ec:40:26:e0:e4:ec:
5d:7f:1c:61:b3:bf:69:8b:85:43:6c:a0:be:41:12:
53:12:3e:07:e7:58:57:47:c8:a3:02:3f:8c:1a:39:
bf:26:81:1e:22:ed:85:b0:8f:77:34:45:14:a0:51:
c6:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:96:B4:4A:55:3C:DA:25:15:70:84:FB:42:0A:C7:D8:DB:70:D0:31
X509v3 Authority Key Identifier:
keyid:A0:5F:84:AB:F0:66:9E:E0:D0:7F:C8:DA:36:7D:81:6F:AF:F0:67:04
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/oF-Eq_BmnuDQf8jaNn2Bb6_wZwQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3687CF2/43F7457EEEB211EFB8B6489E762E951A/8EF61D1EEEB411EF889964AD762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.164.128.0/18
Signature Algorithm: sha256WithRSAEncryption
12:34:50:07:81:3b:d7:92:97:ee:17:c8:52:9f:47:b6:fa:cd:
41:28:ac:52:0b:97:a6:93:65:60:39:6e:aa:95:5a:15:36:19:
76:35:7c:69:18:06:da:b1:5f:1f:73:58:1a:32:1e:9f:0b:92:
de:1a:e3:1e:77:55:b5:9f:b9:56:03:23:b2:f3:87:26:9d:26:
5e:c2:fc:9f:70:d6:e7:cb:1f:64:b5:39:71:d3:60:08:c4:4f:
e2:ae:d9:5e:0e:aa:28:24:5d:5d:5b:36:9f:e5:20:3b:c3:ba:
d4:b4:e2:51:fc:6b:1e:8d:16:d3:8d:d1:74:36:9b:e8:75:fa:
72:31:d3:fb:4c:c1:55:b7:f0:43:0b:f5:ef:e6:a5:97:73:b9:
b3:e4:1e:30:af:b7:80:c8:35:7a:a5:6c:96:e0:15:b3:ee:76:
08:61:ed:2a:37:43:f8:80:6f:a2:37:63:14:14:05:ee:85:e2:
c7:a6:dc:da:2c:8a:b9:03:32:d6:5b:3d:22:6e:ef:01:6d:14:
5e:67:bc:d3:11:f8:f3:d3:7d:99:61:9e:5c:a3:fd:7b:e0:3b:
7d:2b:2d:ab:1c:67:85:fa:ef:da:f0:aa:f1:83:8b:b4:d6:87:
ad:c0:0d:59:7c:9b:97:a2:5c:8e:40:52:bc:08:8a:40:6e:24:
74:68:e4:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:43:57 2025 by rpki-client