Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36B89F3/36920906BA9211ED8D542ACBF1222468/AC0984D8BA9311ED9BCF4ACFF1222468.roa
File: AC0984D8BA9311ED9BCF4ACFF1222468.roa (raw, json)
Hash identifier: IEMeqiGHXY1JJZ4sPhVu1cpRCGtihcKwuG83yd18QTE=
Subject key identifier: 38:7A:00:8B:21:30:E7:D1:3F:EB:2F:73:3F:86:54:59:33:0C:F4:53
Certificate issuer: /CN=F36B89F3AF/serialNumber=D10D52E95ECDFFA0B139469258803D4A62FB13EF
Certificate serial: 02
Authority key identifier: D1:0D:52:E9:5E:CD:FF:A0:B1:39:46:92:58:80:3D:4A:62:FB:13:EF
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/0Q1S6V7N_6CxOUaSWIA9SmL7E-8.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36B89F3/36920906BA9211ED8D542ACBF1222468/AC0984D8BA9311ED9BCF4ACFF1222468.roa
Signing time: Sat 04 Mar 2023 13:51:33 +0000
ROA not before: Sat 04 Mar 2023 13:51:28 +0000
ROA not after: Sun 03 Mar 2024 13:51:28 +0000
asID: 37018
IP address blocks: 41.78.80.0/22 maxlen: 24
41.222.208.0/22 maxlen: 24
197.159.64.0/20 maxlen: 24
2c0f:6e80::/28 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36B89F3AF
Validity
Not Before: Mar 4 13:51:28 2023 GMT
Not After : Mar 3 13:51:28 2024 GMT
Subject: CN=64034ce5-bf47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c0:ee:93:21:b0:32:d6:bd:af:7c:27:3e:44:
ff:e9:70:58:c0:73:77:d8:64:8d:36:a3:a5:a5:e9:
f4:62:49:b9:45:ca:6d:48:74:36:87:54:6e:d1:27:
ef:f0:a4:3b:fb:17:95:36:37:c2:2f:f9:e4:39:13:
37:ea:1a:e5:b3:0c:8f:aa:6d:cf:06:15:55:ec:73:
6a:c5:b8:94:e3:90:18:15:e0:eb:f3:4b:0f:ff:f6:
cb:f7:37:6f:9f:b3:2b:44:af:13:87:f9:0d:4a:73:
a9:cc:7a:96:be:9a:d2:6d:e2:83:d7:52:fd:36:64:
a8:aa:16:a8:8c:ea:a7:47:e7:65:b3:1c:9d:be:3b:
d6:07:53:b2:e0:0a:05:e1:d9:e7:53:05:c9:08:e5:
0a:ff:35:59:ed:f2:bd:f5:1e:ed:51:c6:52:73:90:
28:99:22:cb:e0:fa:32:2e:42:ba:2d:32:f0:b8:8c:
24:45:67:43:cf:6a:8f:2b:64:20:3f:d2:97:49:f9:
26:d5:5e:ca:ea:ae:db:29:c5:23:46:9a:3a:13:31:
a2:1f:e4:7d:e1:c5:a2:a4:67:12:0b:f2:ad:e6:a2:
69:5c:05:64:fc:46:ca:4d:73:43:de:5b:36:dd:03:
2f:3c:3b:4f:37:13:77:c5:92:65:8b:26:01:30:8a:
3c:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7A:00:8B:21:30:E7:D1:3F:EB:2F:73:3F:86:54:59:33:0C:F4:53
X509v3 Authority Key Identifier:
keyid:D1:0D:52:E9:5E:CD:FF:A0:B1:39:46:92:58:80:3D:4A:62:FB:13:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36B89F3/36920906BA9211ED8D542ACBF1222468/0Q1S6V7N_6CxOUaSWIA9SmL7E-8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/0Q1S6V7N_6CxOUaSWIA9SmL7E-8.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36B89F3/36920906BA9211ED8D542ACBF1222468/AC0984D8BA9311ED9BCF4ACFF1222468.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.78.80.0/22
41.222.208.0/22
197.159.64.0/20
IPv6:
2c0f:6e80::/28
Signature Algorithm: sha256WithRSAEncryption
18:58:d7:38:63:1c:a5:82:d4:1b:8e:fc:36:cc:8e:5f:59:ce:
6e:5e:ce:b4:0d:c1:9a:0d:93:a8:b7:3a:6c:57:db:72:2f:51:
7e:42:45:64:d9:eb:9f:59:b5:60:d4:22:9c:e9:0f:04:e2:11:
43:b6:95:82:d7:1b:16:f2:74:75:2a:22:c2:0d:91:12:6e:45:
de:31:73:b8:71:fc:81:59:8c:5e:91:3b:fa:10:d4:e2:9d:dc:
c8:dc:1c:ef:0c:d7:79:de:94:08:f7:6f:11:b3:38:d6:fe:b7:
4b:93:36:19:6d:78:32:7a:82:11:f0:2b:e5:c2:7b:51:72:78:
9f:a2:db:f2:8f:8f:93:bc:f9:08:73:93:22:d7:25:a1:90:e7:
81:f3:ad:7e:31:a4:f7:d0:40:ca:04:39:f9:a5:ee:7a:6b:9c:
c4:50:6b:e5:40:d3:62:93:fc:fb:96:76:0b:5b:6c:0f:3e:c4:
82:96:bd:72:80:44:2b:35:5a:e1:be:df:43:c9:c3:c4:1e:fe:
ed:81:24:69:dd:52:e4:c4:e1:0c:92:11:f8:e1:83:fe:78:27:
f7:af:1f:a2:bb:58:2d:b5:c3:16:2e:b4:9f:77:2b:22:87:e9:
d0:ed:13:ec:d3:75:7e:db:13:f9:bc:67:84:a0:6e:50:3b:e4:
50:7e:7b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:43:58 2025 by rpki-client