Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/23AA8E9204C711EE9A70FA134AD9E6FC.roa
File: 23AA8E9204C711EE9A70FA134AD9E6FC.roa (raw, json)
Hash identifier: TJLu5F5ii21vzy5VYtbQkqmjauWE/p8n6ay9nQP8fqs=
Subject key identifier: 0C:35:00:E5:ED:7A:FB:F2:1F:5B:6F:BC:EC:C7:AF:EF:36:50:6E:E0
Certificate issuer: /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial: 0EE7
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/23AA8E9204C711EE9A70FA134AD9E6FC.roa
Signing time: Wed 07 Jun 2023 00:06:24 +0000
ROA not before: Wed 07 Jun 2023 00:00:20 +0000
ROA not after: Sat 07 Jun 2025 00:00:20 +0000
asID: 61317
IP address blocks: 154.16.80.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3815 (0xee7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F3682B65AF
Validity
Not Before: Jun 7 00:00:20 2023 GMT
Not After : Jun 7 00:00:20 2025 GMT
Subject: CN=647fca00-7716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:93:9f:66:01:14:1d:72:fb:eb:8f:f8:58:dc:
1f:16:4d:d8:fd:77:4d:52:5a:e0:81:d9:a2:74:c5:
cf:2f:ab:8e:90:c3:f9:91:31:1e:d5:16:f1:dc:4a:
a7:71:0b:44:2d:89:67:68:0f:15:3a:40:cc:a9:85:
71:05:05:ed:39:8d:87:73:af:82:bf:31:b0:6d:19:
0d:b5:bf:84:6b:43:be:a4:97:ce:f6:0f:32:f7:c0:
47:55:d3:c3:d2:25:48:2b:52:1c:ea:5a:3e:8f:2e:
cd:e7:28:76:b3:33:9f:16:e8:57:3a:b6:d4:7f:a7:
5d:b3:e7:a2:ba:da:7f:29:7a:d2:46:b9:65:16:cf:
b1:59:5c:b2:74:05:05:ce:89:a5:70:76:b7:fa:43:
2b:34:75:d2:21:15:89:c7:ef:57:bf:31:3c:fe:5d:
f6:55:c2:fb:1c:b8:18:fe:90:8b:f7:d6:25:ad:26:
43:d6:66:eb:d9:d8:f4:83:1e:ce:2c:08:81:2d:55:
58:2f:a4:09:ab:2a:1a:c9:c8:ea:44:0e:40:0e:a1:
71:cf:2d:80:b4:bb:28:de:9d:a5:d9:07:16:48:09:
1a:61:d7:75:95:21:e8:58:a0:67:77:a4:c3:8d:40:
90:4a:3f:54:9d:85:82:c9:20:79:23:45:82:43:7c:
7b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:35:00:E5:ED:7A:FB:F2:1F:5B:6F:BC:EC:C7:AF:EF:36:50:6E:E0
X509v3 Authority Key Identifier:
keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/23AA8E9204C711EE9A70FA134AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.16.80.0/24
Signature Algorithm: sha256WithRSAEncryption
93:88:f4:bd:8f:49:aa:24:15:2c:8b:18:45:a6:e4:09:49:05:
a8:2b:06:f1:aa:d4:5d:52:42:9f:e1:d1:12:53:14:08:75:eb:
0c:f5:8c:eb:88:13:10:bf:aa:64:98:f2:ae:80:08:14:cd:f9:
2f:9b:7d:e4:aa:21:10:3c:21:1a:4d:5e:11:6b:2a:f6:bb:6b:
c5:3f:9b:87:cc:da:d6:b7:dc:a1:ff:1e:91:43:b6:da:18:b2:
a4:b7:3a:99:c2:2d:80:68:8f:75:a4:b0:27:89:9d:95:9a:04:
d1:b2:5b:fc:21:59:9d:32:ea:8d:1e:ee:53:19:29:d7:0c:1d:
f5:59:ef:bc:03:45:aa:60:42:a4:5a:a6:8d:e7:6e:ec:82:50:
b3:ec:fe:29:e7:06:22:db:17:ca:96:d2:d2:0c:d6:7e:4b:fa:
40:0c:92:d4:f7:90:8f:97:af:0a:36:6b:02:a5:31:97:48:ca:
fb:26:2b:1e:38:69:c2:9f:71:d0:31:9c:3c:4b:53:01:dc:c9:
96:70:0f:ec:52:6b:1e:3e:98:d6:14:ee:8a:4f:ac:a5:54:43:
a0:d5:77:dc:01:cc:aa:18:f0:45:31:5d:9f:73:14:6a:47:99:
40:b0:f7:dc:8f:f9:3e:0a:15:e6:b3:38:4b:e4:78:96:90:90:
cf:c4:bb:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:55:13 2025 by rpki-client