Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/17DD2FE81C4311EC9AD16510D8A014CE.roa
File: 17DD2FE81C4311EC9AD16510D8A014CE.roa (raw, json)
Hash identifier: pzJU/wsgmIEa7wR3b5CYfZlPx5zYmjEYDsnSkrevNeg=
Subject key identifier: 66:C6:AC:30:59:CC:A9:D0:51:7D:82:B5:45:AA:8F:70:B8:BC:02:DA
Certificate issuer: /CN=F36E8561AF/serialNumber=BDF6F99CD082C13BEDA5DA0E89888DD532C86307
Certificate serial: 02
Authority key identifier: BD:F6:F9:9C:D0:82:C1:3B:ED:A5:DA:0E:89:88:8D:D5:32:C8:63:07
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/vfb5nNCCwTvtpdoOiYiN1TLIYwc.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/17DD2FE81C4311EC9AD16510D8A014CE.roa
Signing time: Thu 23 Sep 2021 07:51:43 +0000
ROA not before: Thu 23 Sep 2021 07:51:39 +0000
ROA not after: Fri 31 Dec 2049 07:51:39 +0000
asID: 37254
IP address blocks: 102.222.196.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36E8561AF
Validity
Not Before: Sep 23 07:51:39 2021 GMT
Not After : Dec 31 07:51:39 2049 GMT
Subject: CN=614c320f-61a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:5a:10:e4:89:3c:72:f5:57:9b:db:f7:8d:93:
f6:a0:29:c2:a6:46:47:9e:7e:ea:87:bf:06:b5:50:
7d:3c:2b:84:cb:05:23:0b:8a:f5:a7:3c:c1:9e:e9:
db:3e:f7:f7:ca:b4:0c:79:e1:1d:10:c5:ff:13:c3:
51:53:08:d8:31:b1:3d:71:01:9f:08:7b:c6:db:66:
32:f3:86:67:ff:3c:ce:89:89:dd:21:43:b8:14:c8:
6b:00:ac:71:c9:06:31:d0:51:43:c1:1d:d4:c6:21:
81:6a:ab:ff:3f:38:12:e5:6d:13:6a:ae:4d:d1:a1:
ff:d9:d9:cf:ca:cb:7d:be:c6:a4:31:91:02:db:a1:
98:c4:3f:bb:78:fa:6f:ca:e3:1d:26:97:5f:86:1b:
bf:78:45:35:4c:18:86:11:eb:55:8a:73:a5:fd:5c:
14:03:3a:56:dc:31:08:88:0a:9f:ab:1b:8b:80:f9:
a8:10:23:43:70:97:a1:f8:d2:ab:d1:16:51:ed:06:
7c:85:25:c3:1a:47:26:7b:10:55:e6:75:83:5c:6e:
66:03:9c:dc:1d:d5:6a:a0:3f:8f:bc:d4:bd:01:0d:
12:c4:8c:95:c2:fc:39:2a:37:30:f4:99:6d:33:91:
e7:74:44:2f:11:c2:86:c4:7c:bb:c4:d5:67:18:31:
5d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C6:AC:30:59:CC:A9:D0:51:7D:82:B5:45:AA:8F:70:B8:BC:02:DA
X509v3 Authority Key Identifier:
keyid:BD:F6:F9:9C:D0:82:C1:3B:ED:A5:DA:0E:89:88:8D:D5:32:C8:63:07
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/vfb5nNCCwTvtpdoOiYiN1TLIYwc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/vfb5nNCCwTvtpdoOiYiN1TLIYwc.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36E8561/B0D720E01C3F11ECBA220D0BD8A014CE/17DD2FE81C4311EC9AD16510D8A014CE.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
102.222.196.0/22
Signature Algorithm: sha256WithRSAEncryption
77:e8:2f:c7:cc:32:43:0a:c4:78:d7:b7:a8:54:66:5c:5d:94:
4f:59:dd:9e:64:e5:be:00:a0:e8:e3:ad:72:7b:7b:f9:99:d4:
b1:ca:49:8c:0a:81:69:4a:10:76:4d:7e:a2:8b:a1:65:8d:2f:
d4:81:91:a5:cb:4c:0c:e5:ed:12:75:31:45:3c:b3:4a:c0:63:
b2:6c:55:71:df:be:3a:4b:4b:5d:62:03:a5:06:18:de:19:42:
20:2e:77:e7:3a:9f:fb:3e:bd:82:c2:fe:fb:bb:bb:c1:6e:78:
28:76:2c:a6:74:22:df:b2:94:85:3b:9e:bd:d8:75:30:c9:52:
af:f9:cc:e1:da:8c:98:2d:8f:cc:0f:6e:b9:c6:3d:52:ca:a7:
1c:00:8c:0c:61:8a:2a:a6:cd:1a:c4:01:99:71:a8:6d:5d:b4:
92:9b:d2:25:70:eb:ed:94:41:21:31:16:08:b6:95:ca:b7:ba:
1b:a2:28:05:84:9c:2b:75:bf:7f:a1:cd:e3:59:85:c4:8a:e1:
1c:bd:0a:62:35:e8:5d:53:69:f7:98:ff:0d:32:cb:3e:c2:01:
91:99:c5:11:9f:c3:2a:ee:f8:14:f9:b6:1c:b0:73:da:63:92:
2e:83:04:b8:28:f4:3c:29:0c:81:59:30:a5:bf:95:11:81:49:
db:a3:33:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:37:54 2025 by rpki-client