Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/6C4F7098FFA911EF80A256B8762E951A.roa
File: 6C4F7098FFA911EF80A256B8762E951A.roa (raw, json)
Hash identifier: nLVSz/e6y8EyahDhz46G+ddHGy6xFQEmZ+lSlLJOj1k=
Subject key identifier: 0D:D5:3C:F6:0E:FD:4F:A3:7C:3E:B9:BA:0B:33:40:E2:17:81:28:04
Certificate issuer: /CN=F36BC80AAF/serialNumber=8C8F8CE2AD55B9366BEC6EDF492CD9C1498E0664
Certificate serial: 045A
Authority key identifier: 8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/6C4F7098FFA911EF80A256B8762E951A.roa
Signing time: Thu 13 Mar 2025 01:21:00 +0000
ROA not before: Thu 13 Mar 2025 01:20:56 +0000
ROA not after: Sat 31 Mar 2035 01:20:56 +0000
asID: 59895
IP address blocks: 41.223.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114 (0x45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36BC80AAF
Validity
Not Before: Mar 13 01:20:56 2025 GMT
Not After : Mar 31 01:20:56 2035 GMT
Subject: CN=67d232fc-8626
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:c3:c5:2e:c0:74:63:a4:bc:55:6d:e7:dc:d9:
dc:d3:4e:98:71:bf:e9:29:10:a0:d5:25:dc:d1:db:
dc:12:e3:12:49:ad:09:af:4c:7c:ce:ea:99:01:c8:
9f:b9:31:ae:2c:6f:25:48:14:73:7f:09:c1:f1:bf:
d4:75:a4:fb:48:dd:2e:a4:82:10:92:10:e8:78:1a:
36:96:38:3c:15:f3:f5:de:69:32:11:3a:0e:12:ef:
da:b4:bc:d0:92:1c:57:83:eb:e4:49:68:d6:a4:3b:
ee:c2:b6:72:9b:f1:0f:65:e6:22:07:f8:3b:17:c4:
f4:c9:1f:02:40:c3:83:52:25:2b:b0:f2:78:94:3c:
e6:c1:6b:8b:a8:1e:7e:02:0f:b2:e8:bf:6f:84:17:
e1:91:47:d9:a8:3c:ab:a9:c4:b7:de:0f:e5:61:07:
51:fe:9d:a1:07:5d:e7:4a:1e:77:19:ed:ac:20:d2:
39:5f:60:a6:e8:a2:ec:28:f3:b9:79:59:78:19:e5:
24:63:9c:27:12:1b:eb:11:ea:e0:24:d6:88:aa:6d:
2c:76:50:e2:24:b5:ab:6b:c9:f5:a8:67:c8:ca:83:
6b:b5:af:67:28:9e:9d:a2:ea:1e:c9:f7:af:bf:b5:
69:ed:b5:48:66:c7:a5:26:ca:d5:d1:bb:60:27:af:
be:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:D5:3C:F6:0E:FD:4F:A3:7C:3E:B9:BA:0B:33:40:E2:17:81:28:04
X509v3 Authority Key Identifier:
keyid:8C:8F:8C:E2:AD:55:B9:36:6B:EC:6E:DF:49:2C:D9:C1:49:8E:06:64
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/jI-M4q1VuTZr7G7fSSzZwUmOBmQ.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36BC80A/472EF5B2E75C11EC9D7F90D8F1222468/6C4F7098FFA911EF80A256B8762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
41.223.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:00:6c:8b:a1:82:f6:57:34:09:d5:0b:7c:61:73:29:ee:a2:
3d:57:ce:11:d7:b7:62:81:b1:94:db:ff:46:c7:a3:f7:d1:e8:
63:29:14:1b:d8:a3:aa:ab:55:c5:8c:fc:80:30:9b:94:b2:c0:
8d:ef:03:1e:96:de:3d:74:bb:0a:ec:a7:bc:20:ab:5b:cb:ef:
72:1b:f5:29:19:c8:21:8c:72:be:e4:f2:bf:9b:23:52:ab:f3:
b3:3a:c9:eb:65:9e:5c:a9:6f:46:f4:ae:f5:b7:7b:5d:e8:37:
c9:7e:89:93:2e:ff:a6:a0:e4:17:f6:23:fa:3f:48:f4:dd:90:
6d:5b:d3:94:d8:7f:ac:16:d2:12:88:e6:70:65:ff:6f:35:7e:
86:51:45:b2:dc:f0:55:b5:de:c1:9f:dd:66:1e:6a:64:72:2e:
50:d7:a3:b9:c0:e2:87:cc:91:0f:59:89:e3:4d:af:e6:cd:62:
a3:3e:7a:a3:a0:51:01:e2:dd:63:c4:da:c7:96:41:e9:aa:35:
27:f9:72:70:04:c5:ea:b3:5e:28:4e:57:2d:e7:1b:4f:32:cf:
06:be:dc:b1:65:b0:91:4c:75:ae:fb:d0:e3:59:b7:4d:b1:45:
09:fd:b9:a0:5c:2c:5c:5d:31:4a:69:6f:35:db:7c:27:7c:a4:
b4:3c:20:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:06:14 2025 by rpki-client