Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/4C38C3B8724A11EB93361A5BF8AEA228.roa
File: 4C38C3B8724A11EB93361A5BF8AEA228.roa (raw, json)
Hash identifier: DuQWuWJi3KFd5fB5p3s1yo9uDk1oPAgwLilgKK6pBsc=
Subject key identifier: 36:30:72:2D:74:01:DB:1F:F2:1E:5A:47:BE:61:13:A1:E1:EF:41:52
Certificate issuer: /CN=F36493E2AF/serialNumber=A8A1AF02F96C1BA92D93A522CABE9ED8E5295153
Certificate serial: 0C
Authority key identifier: A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/4C38C3B8724A11EB93361A5BF8AEA228.roa
Signing time: Fri 19 Feb 2021 00:35:00 +0000
ROA not before: Fri 19 Feb 2021 00:00:54 +0000
ROA not after: Wed 19 Feb 2025 00:00:54 +0000
asID: 328799
IP address blocks: 2c0f:5400:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12 (0xc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36493E2AF
Validity
Not Before: Feb 19 00:00:54 2021 GMT
Not After : Feb 19 00:00:54 2025 GMT
Subject: CN=602f07b4-24cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6c:6e:ef:83:d3:35:03:7a:4a:66:ce:76:7c:
78:1b:9e:3a:41:75:40:67:71:fb:d7:fa:d4:9e:71:
4a:94:e4:27:13:2a:e3:09:a1:6d:b3:ef:b5:f0:86:
4b:d6:00:17:d3:4a:34:d0:ee:f7:6e:25:97:78:50:
9a:f5:b4:25:8e:02:36:69:81:74:d3:e1:dc:a4:3d:
fb:f1:d3:c4:d3:d9:b9:52:4e:44:a8:61:77:0c:40:
8d:50:19:20:e5:82:84:fc:a1:e0:25:08:94:eb:f2:
7d:27:6c:ac:d3:da:96:67:1e:08:a2:1a:1d:a5:37:
0c:ba:ce:20:e0:29:6c:f7:50:dd:43:c2:3a:20:96:
44:6a:cc:3c:48:6c:10:0f:ec:f9:f8:5d:a4:d0:e3:
20:c4:78:03:e4:3f:90:73:04:aa:83:b2:1f:37:a9:
77:36:e6:83:de:bf:f6:60:05:37:c2:0e:06:15:d1:
c5:04:25:ff:3c:45:b1:b6:6e:9c:c3:4c:a6:84:b1:
c1:cc:5b:d7:0e:fa:59:42:d7:b8:77:47:c4:fd:46:
a5:c1:b1:3a:5f:56:73:ae:04:6f:e8:cc:d5:f9:0c:
b8:d0:7a:b6:50:3b:2a:d5:dc:ec:f1:e2:a9:d4:e5:
2a:60:5e:00:ee:e8:8e:73:82:d4:b3:5e:11:42:a0:
af:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:30:72:2D:74:01:DB:1F:F2:1E:5A:47:BE:61:13:A1:E1:EF:41:52
X509v3 Authority Key Identifier:
keyid:A8:A1:AF:02:F9:6C:1B:A9:2D:93:A5:22:CA:BE:9E:D8:E5:29:51:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/qKGvAvlsG6ktk6Uiyr6e2OUpUVM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36493E2/CD0DCC106FDC11EB9FF77B58F8AEA228/4C38C3B8724A11EB93361A5BF8AEA228.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:5400:1::/48
Signature Algorithm: sha256WithRSAEncryption
56:95:0e:a3:d1:61:35:03:3c:a6:98:39:80:b8:22:05:91:bb:
a2:25:ca:33:d3:dc:68:a4:ed:13:f4:82:5f:3e:34:be:6a:5d:
d0:0b:86:9e:57:d7:dd:2d:00:37:71:f5:56:32:e4:c7:69:2a:
66:da:7c:5a:46:47:83:0f:69:fb:7d:b9:0c:82:cb:34:b3:63:
00:13:21:a5:5b:a3:83:90:ec:66:ab:b5:46:38:3b:77:c5:24:
42:34:a6:cc:f5:a4:ac:4b:c5:62:93:77:92:8f:7d:cf:b0:2f:
c0:5e:89:c4:ff:f4:66:59:25:e2:36:6e:f1:e9:ef:bb:66:b6:
86:2a:e8:c5:53:7a:4a:41:6e:d4:b5:73:4b:3d:2f:96:e0:18:
4c:df:8c:3d:69:6e:5b:6a:7d:fb:84:a0:20:72:a7:a8:21:3d:
b6:5b:d9:18:79:90:46:41:aa:72:c6:ee:08:87:25:e5:da:4a:
5c:30:45:66:20:4e:3f:c6:91:25:d0:ee:72:1e:7e:39:c1:b0:
88:01:7b:5e:3a:d3:2f:45:e2:e2:9a:2e:44:f7:83:7c:54:0e:
ad:53:5a:65:42:2d:45:84:4e:fa:00:14:7b:3e:58:b5:04:28:
16:d8:92:a9:54:e7:17:ce:64:5a:26:9b:18:5c:5a:1b:87:36:
58:9e:c6:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:46:06 2025 by rpki-client