Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362CE41/A31F43E6D79711ED9219CAD9F1222468/9AE55BCED79811EDB7FA86DCF1222468.roa
File: 9AE55BCED79811EDB7FA86DCF1222468.roa (raw, json)
Hash identifier: b2Uc4SsW6xNUT8+sNquHlKvPz1RbwamGt4eFfKGbr0E=
Subject key identifier: 6E:44:B5:91:9E:9C:B7:8A:77:CC:C3:1D:D6:AC:90:B5:B4:83:0C:15
Certificate issuer: /CN=F362CE41AF/serialNumber=6CFD0875438CBE20C3202A4C53CDAC23C4E1373F
Certificate serial: 02
Authority key identifier: 6C:FD:08:75:43:8C:BE:20:C3:20:2A:4C:53:CD:AC:23:C4:E1:37:3F
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/bP0IdUOMviDDICpMU82sI8ThNz8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F362CE41/A31F43E6D79711ED9219CAD9F1222468/9AE55BCED79811EDB7FA86DCF1222468.roa
Signing time: Mon 10 Apr 2023 12:09:55 +0000
ROA not before: Mon 10 Apr 2023 12:09:52 +0000
ROA not after: Wed 10 Apr 2024 12:09:52 +0000
asID: 17400
IP address blocks: 41.221.240.0/20 maxlen: 20
196.29.192.0/20 maxlen: 20
196.249.192.0/18 maxlen: 18
2001:4250::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F362CE41AF
Validity
Not Before: Apr 10 12:09:52 2023 GMT
Not After : Apr 10 12:09:52 2024 GMT
Subject: CN=6433fc93-ad21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:13:b2:5b:23:b5:26:1a:1b:57:93:cc:68:2f:
17:a3:f8:15:ac:c5:4e:55:5d:9e:9b:9e:73:0f:5d:
3a:d6:49:cc:61:27:d3:b3:94:b1:a8:19:01:6f:ab:
23:95:86:2e:62:53:88:06:8b:3f:d7:5b:06:df:27:
01:ed:03:1b:ab:5e:74:01:dd:63:f3:bc:d1:d4:96:
dc:5c:1b:94:42:98:c6:2f:e9:ea:b9:14:3d:a1:80:
80:06:9f:26:79:25:9a:8f:15:16:ce:d0:b6:14:60:
1b:7b:cb:7d:4e:f7:73:df:7b:e8:ea:de:53:2f:1e:
93:bd:1b:f9:10:2a:e7:c7:d3:5d:0f:ea:b8:6e:19:
33:fe:d9:7e:04:8d:42:92:22:a1:45:f3:3b:a5:d3:
1b:29:b2:38:04:0c:70:9e:06:98:5f:4c:c1:57:6e:
e5:53:95:68:50:a1:73:de:42:24:33:85:ed:45:99:
e8:67:d1:00:2e:62:f7:ba:f5:a6:b8:91:aa:4c:ba:
4f:90:5c:19:f8:67:56:52:7c:83:8b:b4:71:41:65:
68:14:0c:be:17:76:d0:5d:ab:c9:ce:6c:8d:72:29:
51:93:00:e7:8c:32:73:99:25:b5:3b:b9:86:c8:fb:
57:19:6e:e6:3f:da:ee:79:4a:9b:f6:d4:48:aa:f3:
56:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:44:B5:91:9E:9C:B7:8A:77:CC:C3:1D:D6:AC:90:B5:B4:83:0C:15
X509v3 Authority Key Identifier:
keyid:6C:FD:08:75:43:8C:BE:20:C3:20:2A:4C:53:CD:AC:23:C4:E1:37:3F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F362CE41/A31F43E6D79711ED9219CAD9F1222468/bP0IdUOMviDDICpMU82sI8ThNz8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/bP0IdUOMviDDICpMU82sI8ThNz8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362CE41/A31F43E6D79711ED9219CAD9F1222468/9AE55BCED79811EDB7FA86DCF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.221.240.0/20
196.29.192.0/20
196.249.192.0/18
IPv6:
2001:4250::/32
Signature Algorithm: sha256WithRSAEncryption
70:25:6e:6c:04:b9:f5:c8:37:f9:39:59:12:37:f2:5a:3a:c6:
44:5f:b1:98:f6:37:b2:26:5c:bb:69:66:3f:9e:00:1e:8d:bd:
d7:54:5c:b6:d8:b2:80:a0:27:5e:ad:0f:c0:d7:99:15:bd:1a:
24:8e:13:8e:9f:56:72:aa:b8:bc:8c:c8:60:ba:88:6b:4d:ad:
ff:94:e4:7c:52:70:34:90:2e:4b:62:e4:bd:55:fd:38:8d:f0:
f3:e6:43:ef:94:80:9c:1c:63:1f:72:12:c9:1b:3b:86:72:b8:
2d:eb:3d:7d:27:2e:58:3c:13:5b:5b:4b:44:5b:77:d0:36:e5:
2b:0e:58:8f:88:05:95:0c:aa:2c:ab:00:df:b2:0b:80:5d:7c:
b8:ca:45:fd:74:ba:fa:b5:7c:cd:1d:88:70:78:a9:cb:6a:65:
b6:67:cd:b6:23:f2:0f:be:c9:f7:91:7a:45:09:fd:6a:b5:a5:
e5:ae:c8:30:73:aa:4a:e2:bb:18:04:63:68:7b:ea:a8:d6:62:
3b:61:70:77:5d:b2:6b:e7:35:7f:5b:fc:ba:e5:4c:ea:24:73:
6f:8b:0a:9e:a7:ed:58:f7:e1:a8:35:34:7d:65:e8:54:34:22:
13:6d:97:24:4a:2b:df:cb:1c:46:14:f1:db:fa:05:25:e0:f8:
f2:52:81:c0
-----BEGIN CERTIFICATE-----
MIIFnTCCBIWgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBIMRMwEQYDVQQDDApGMzYy
Q0U0MUFGMTEwLwYDVQQFEyg2Q0ZEMDg3NTQzOENCRTIwQzMyMDJBNEM1M0NEQUMy
M0M0RTEzNzNGMB4XDTIzMDQxMDEyMDk1MloXDTI0MDQxMDEyMDk1MlowGDEWMBQG
A1UEAwwNNjQzM2ZjOTMtYWQyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC
ggEBAKkTslsjtSYaG1eTzGgvF6P4FazFTlVdnpuecw9dOtZJzGEn07OUsagZAW+r
I5WGLmJTiAaLP9dbBt8nAe0DG6tedAHdY/O80dSW3FwblEKYxi/p6rkUPaGAgAaf
Jnklmo8VFs7QthRgG3vLfU73c9976OreUy8ek70b+RAq58fTXQ/quG4ZM/7ZfgSN
QpIioUXzO6XTGymyOAQMcJ4GmF9MwVdu5VOVaFChc95CJDOF7UWZ6GfRAC5i97r1
priRqky6T5BcGfhnVlJ8g4u0cUFlaBQMvhd20F2ryc5sjXIpUZMA54wyc5kltTu5
hsj7Vxlu5j/a7nlKm/bUSKrzVg8CAwEAAaOCAsAwggK8MB0GA1UdDgQWBBRuRLWR
npy3infMwx3WrJC1tIMMFTAfBgNVHSMEGDAWgBRs/Qh1Q4y+IMMgKkxTzawjxOE3
PzAOBgNVHQ8BAf8EBAMCB4AwgZUGA1UdHwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6
Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVyX3JlcG9zaXRvcnkv
RjM2MkNFNDEvQTMxRjQzRTZENzk3MTFFRDkyMTlDQUQ5RjEyMjI0NjgvYlAwSWRV
T012aURESUNwTVU4MnNJOFRoTno4LmNybDBnBggrBgEFBQcBAQRbMFkwVwYIKwYB
BQUHMAKGS3JzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L2Fmcmlu
aWMvYlAwSWRVT012aURESUNwTVU4MnNJOFRoTno4LmNlcjBPBgNVHSABAf8ERTBD
MEEGCCsGAQUFBw4CMDUwMwYIKwYBBQUHAgEWJ2h0dHBzOi8vcnBraS5hZnJpbmlj
Lm5ldC9wb2xpY3kvQ1BTLnBkZjCB2wYIKwYBBQUHAQsEgc4wgcswgZEGCCsGAQUF
BzALhoGEcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvbWVtYmVy
X3JlcG9zaXRvcnkvRjM2MkNFNDEvQTMxRjQzRTZENzk3MTFFRDkyMTlDQUQ5RjEy
MjI0NjgvOUFFNTVCQ0VENzk4MTFFREI3RkE4NkRDRjEyMjI0Njgucm9hMDUGCCsG
AQUFBzANhilodHRwczovL3JyZHAuYWZyaW5pYy5uZXQvbm90aWZpY2F0aW9uLnht
bDA6BggrBgEFBQcBBwEB/wQrMCkwGAQCAAEwEgMEBCnd8AMEBMQdwAMEBsT5wDAN
BAIAAjAHAwUAIAFCUDANBgkqhkiG9w0BAQsFAAOCAQEAcCVubAS59cg3+TlZEjfy
WjrGRF+xmPY3siZcu2lmP54AHo2911RcttiygKAnXq0PwNeZFb0aJI4Tjp9Wcqq4
vIzIYLqIa02t/5TkfFJwNJAuS2LkvVX9OI3w8+ZD75SAnBxjH3ISyRs7hnK4Les9
fScuWDwTW1tLRFt30DblKw5Yj4gFlQyqLKsA37ILgF18uMpF/XS6+rV8zR2IcHip
y2pltmfNtiPyD77J95F6RQn9arWl5a7IMHOqSuK7GARjaHvqqNZiO2Fwd12ya+c1
f1v8uuVM6iRzb4sKnqftWPfhqDU0fWXoVDQiE22XJEor38scRhTx2/oFJeD48lKB
wA==
-----END CERTIFICATE-----
Generated at Wed Feb 19 20:33:48 2025 by rpki-client