Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/23D3EB78D5BA11EF86DD9F74762E951A.roa
File: 23D3EB78D5BA11EF86DD9F74762E951A.roa (raw, json)
Hash identifier: G4Ai8yoQfjwUNFDDrcLjtsPrrCfGiIRKwRB24pEHxY8=
Subject key identifier: EB:C9:3F:A9:97:E9:69:75:5F:A7:D1:BA:AF:40:DA:92:22:05:1F:64
Certificate issuer: /CN=F36877BBAF/serialNumber=0DC6A4C82109FF2CB39C1D1A58C38E3033C5A0FE
Certificate serial: 012D
Authority key identifier: 0D:C6:A4:C8:21:09:FF:2C:B3:9C:1D:1A:58:C3:8E:30:33:C5:A0:FE
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/23D3EB78D5BA11EF86DD9F74762E951A.roa
Signing time: Sat 18 Jan 2025 16:34:51 +0000
ROA not before: Sat 18 Jan 2025 16:34:48 +0000
ROA not after: Tue 18 Jan 2028 16:34:48 +0000
asID: 328721
IP address blocks: 2c0f:7840::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 301 (0x12d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36877BBAF
Validity
Not Before: Jan 18 16:34:48 2025 GMT
Not After : Jan 18 16:34:48 2028 GMT
Subject: CN=678bd82b-7795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:75:6c:e6:7e:38:f9:9d:28:49:19:e0:06:f6:
50:ac:a4:14:c3:cb:70:21:44:06:6e:d0:0d:56:e8:
57:27:65:11:65:6b:a1:37:b0:83:d7:aa:1a:6b:68:
5b:d2:e4:b3:e5:6c:87:d6:c7:f4:0f:c4:14:b0:b6:
26:fb:68:ca:83:91:7f:d0:36:cf:00:bf:3e:e2:3f:
cc:0d:ce:84:fb:e3:25:9b:e5:1c:ff:25:38:4c:ba:
d8:67:94:62:56:64:0f:af:e2:4d:4f:5e:39:e4:2b:
bd:95:a8:95:ff:e6:d8:7c:58:cd:e7:c5:2f:d4:3b:
d9:f5:20:d0:2a:aa:5d:8e:27:f5:cb:c9:b7:94:82:
f4:e4:63:52:e1:65:b6:4f:8f:9d:64:57:38:97:d9:
fc:e9:2b:a8:bd:75:5d:63:81:20:2a:24:f7:99:c4:
9d:47:34:2d:4e:55:54:97:c8:02:fe:9a:23:5f:cc:
1b:8c:78:cc:e3:0a:b1:b2:39:f1:cf:94:01:fb:91:
25:84:ee:69:87:29:31:8a:52:96:5e:d3:71:85:2a:
99:0d:36:49:fb:89:74:e4:4c:33:7a:9f:0f:aa:6a:
f9:da:ed:eb:a1:9b:a5:d9:08:9e:c1:b3:0e:7a:9d:
e5:97:b3:d8:ab:12:d7:51:7f:2f:3a:9d:0b:6a:16:
b5:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:C9:3F:A9:97:E9:69:75:5F:A7:D1:BA:AF:40:DA:92:22:05:1F:64
X509v3 Authority Key Identifier:
keyid:0D:C6:A4:C8:21:09:FF:2C:B3:9C:1D:1A:58:C3:8E:30:33:C5:A0:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/DcakyCEJ_yyznB0aWMOOMDPFoP4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/DcakyCEJ_yyznB0aWMOOMDPFoP4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36877BB/3887CD041CF711EFAEF87C1E7DDC24C2/23D3EB78D5BA11EF86DD9F74762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:7840::/40
Signature Algorithm: sha256WithRSAEncryption
03:f6:d6:70:9a:a6:f2:a3:20:cb:f5:cc:fa:26:8f:5c:b8:c6:
29:28:1d:57:91:92:0d:70:da:45:a2:fb:d4:02:43:b9:12:7a:
2b:53:a9:4b:19:60:fe:90:23:98:b4:1e:ce:ee:51:f7:6a:4e:
11:35:30:43:cc:f5:bd:54:10:e2:ff:8d:23:25:d2:df:a3:8f:
70:d7:70:7c:55:14:c7:da:be:a6:96:ab:84:cb:bb:7d:ed:e0:
a2:16:05:fc:ad:8a:33:75:18:dc:ee:48:d5:95:2b:06:b2:35:
19:ec:f3:94:c8:7f:69:7f:f3:8a:8f:c4:a2:c9:2e:d7:1c:18:
0c:fa:a6:4b:38:25:e6:72:5b:25:72:5e:49:3c:8e:b1:46:64:
2b:fa:3a:70:09:d4:c8:0b:c2:61:b5:24:81:0d:3b:50:50:d7:
be:9c:01:f3:0c:64:b5:20:9c:05:e7:a9:b1:65:88:46:30:0b:
77:58:5c:79:be:98:2a:cc:0a:70:ca:3b:ac:a0:91:dc:86:be:
9e:55:55:52:e1:6c:c5:9d:e4:23:b5:da:10:28:d9:8b:23:36:
85:d7:23:e1:b6:6a:1e:2e:84:da:28:54:3b:1c:af:5e:ec:04:
b7:9b:6a:13:a8:f3:a2:a6:60:4d:be:e9:38:62:4e:ef:55:7d:
61:c6:e1:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 16:41:19 2025 by rpki-client