Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/49D74A669A9411EEB517F64AD25BE465.roa
File: 49D74A669A9411EEB517F64AD25BE465.roa (raw, json)
Hash identifier: 1KQfxrIB31KKiT+f8sUEj2SL13VmuOT1eL9je75vA8U=
Subject key identifier: 1B:96:2F:99:D8:B8:81:0F:07:BB:A5:0A:77:DD:96:35:66:9A:A5:95
Certificate issuer: /CN=F3692D98AF/serialNumber=F98781E67D9EA96AF25806AC86D1006F821FAA36
Certificate serial: 09
Authority key identifier: F9:87:81:E6:7D:9E:A9:6A:F2:58:06:AC:86:D1:00:6F:82:1F:AA:36
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/-YeB5n2eqWryWAashtEAb4IfqjY.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/49D74A669A9411EEB517F64AD25BE465.roa
Signing time: Thu 14 Dec 2023 15:20:18 +0000
ROA not before: Thu 14 Dec 2023 15:20:15 +0000
ROA not after: Tue 31 Dec 2030 15:20:15 +0000
asID: 329370
IP address blocks: 102.210.169.0/24 maxlen: 24
2c0f:6540::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3692D98AF
Validity
Not Before: Dec 14 15:20:15 2023 GMT
Not After : Dec 31 15:20:15 2030 GMT
Subject: CN=657b1d32-d16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:af:93:db:9a:53:09:61:6d:d3:5d:1b:cc:9c:
22:71:77:88:b2:ae:11:e2:7e:19:5b:07:9e:d1:48:
d3:77:15:99:6d:f8:ae:17:4f:f7:61:47:12:3e:36:
7f:be:75:10:a7:31:c8:25:d5:61:73:aa:0c:1e:56:
e0:a0:af:5e:12:26:77:ff:60:99:d3:ac:c4:21:ee:
94:9e:d7:00:cd:9d:aa:91:0f:f8:2e:45:72:c2:52:
16:8e:ea:37:65:0c:db:16:18:78:74:ab:99:11:c4:
83:31:53:55:64:88:d4:8b:b6:9a:26:de:6b:73:1d:
22:58:0f:26:af:50:77:57:82:21:f5:68:fb:a9:4a:
fa:21:a3:15:1f:14:f8:1e:c3:12:b7:ab:9a:8d:18:
fd:ca:e8:1e:dd:92:d8:43:f1:7d:08:52:42:4d:81:
ac:ed:53:cf:e8:ac:2a:b8:bb:0d:24:11:01:11:79:
22:e0:94:50:02:e9:81:9c:21:a1:0e:d1:9d:0b:b1:
49:8c:66:47:b8:7b:43:44:ae:2a:b1:1c:2e:7d:c8:
9a:8e:66:32:3c:b1:c5:dc:d0:d2:9a:f1:aa:53:af:
b6:27:0a:9f:35:49:77:ee:96:4c:3a:6c:e8:cb:1f:
60:57:bc:52:64:f0:84:da:95:1a:fe:fe:99:84:d0:
60:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:96:2F:99:D8:B8:81:0F:07:BB:A5:0A:77:DD:96:35:66:9A:A5:95
X509v3 Authority Key Identifier:
keyid:F9:87:81:E6:7D:9E:A9:6A:F2:58:06:AC:86:D1:00:6F:82:1F:AA:36
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/-YeB5n2eqWryWAashtEAb4IfqjY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/-YeB5n2eqWryWAashtEAb4IfqjY.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3692D98/AFE95F7498F011EE8A47CA59D25BE465/49D74A669A9411EEB517F64AD25BE465.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.210.169.0/24
IPv6:
2c0f:6540::/32
Signature Algorithm: sha256WithRSAEncryption
33:dd:08:60:89:5d:b8:ae:1d:e3:48:1b:21:6c:d5:f6:3d:2d:
d0:0c:a7:5b:c8:a5:34:1e:ae:83:7e:96:76:22:15:31:1f:30:
66:45:d4:5e:1f:62:c0:fb:c3:55:86:2e:66:e7:10:d2:d5:55:
dd:70:65:fd:e0:e6:5a:21:18:6b:f1:96:73:df:2d:50:6c:e7:
5c:c2:0d:83:24:1d:56:d9:d8:f7:51:0b:60:56:d0:7e:5f:42:
3e:d7:5e:9a:b2:6d:89:4d:7d:22:f9:06:f3:ed:52:4f:15:2c:
10:73:11:82:65:08:f8:82:05:b6:d2:2f:c9:ce:c4:09:0f:bc:
bf:c6:2e:ea:0c:f8:e9:1f:b2:12:df:84:1e:f2:ee:1a:73:25:
74:da:ed:74:7b:de:14:ff:32:63:f8:88:b0:28:2e:5f:4a:3f:
69:f0:85:b9:44:ad:33:13:76:34:5f:38:f6:90:9b:00:19:1d:
b9:41:c1:7a:4a:4e:3e:f4:29:0f:2b:a0:66:a0:d6:2b:77:f4:
46:49:7f:12:12:73:ba:3c:55:cd:58:cb:02:a3:77:0b:28:74:
a6:c0:c9:96:16:89:01:3a:3c:f1:d6:c3:5a:39:40:d1:52:4c:
3d:16:a2:61:82:d1:67:db:91:17:01:bc:07:cd:7e:bd:99:93:
2c:c3:e4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:49:18 2025 by rpki-client