Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B3E3FF0EB61C11EFB635AB5F762E951A.roa
File: B3E3FF0EB61C11EFB635AB5F762E951A.roa (raw, json)
Hash identifier: cOpmbf1XD0LiC66LP5Il/4K4QBmE/22D0IVdiZ87QrQ=
Subject key identifier: CB:F5:7A:4C:E0:51:B1:B5:B3:AA:96:82:27:92:0C:03:37:C1:C4:9D
Certificate issuer: /CN=F36D0F50AF/serialNumber=AE98A5FDAD2DC9F4FC1BE47F66857A8C47988102
Certificate serial: 072D
Authority key identifier: AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B3E3FF0EB61C11EFB635AB5F762E951A.roa
Signing time: Mon 09 Dec 2024 10:59:46 +0000
ROA not before: Mon 09 Dec 2024 10:59:43 +0000
ROA not after: Sat 30 Jul 2033 10:59:43 +0000
asID: 37119
IP address blocks: 2c0f:f888:a110::/44 maxlen: 44
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1837 (0x72d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F36D0F50AF
Validity
Not Before: Dec 9 10:59:43 2024 GMT
Not After : Jul 30 10:59:43 2033 GMT
Subject: CN=6756cda2-c1ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b3:bc:59:41:2a:98:ed:bb:87:3d:3c:bf:70:
6e:95:14:50:78:45:9d:57:eb:0e:89:8e:c2:b1:ee:
f8:1e:de:9c:c6:ec:a7:9b:b6:27:bf:29:d0:0b:56:
49:64:b6:c2:2c:39:0d:a5:e9:d6:c0:b0:2f:bf:04:
bb:ff:ba:99:12:f6:0c:72:42:05:d9:99:28:52:ba:
a1:74:87:0a:d9:cc:5a:26:db:4a:41:d1:88:ee:a7:
13:7e:53:4b:45:ec:4d:46:66:18:61:11:92:d6:86:
04:28:c0:9d:f7:f0:82:bc:ff:ad:cd:15:61:58:1d:
54:80:c0:63:2b:c1:c6:65:9f:25:75:31:d3:06:8b:
1c:38:1e:61:fc:76:0a:e2:a4:27:fb:96:d2:a0:81:
38:f8:e5:30:d9:4d:c8:0f:9a:34:cb:0a:34:a8:21:
67:f8:9e:ce:d4:30:dc:2b:14:39:bc:86:79:cb:d9:
4b:20:7c:e2:a2:49:4b:76:c3:09:48:d7:4d:c6:d9:
d9:2b:bf:3f:e2:bb:bb:aa:f4:62:5c:56:4f:b6:7c:
e3:2a:84:0e:04:b2:e3:4f:be:d8:d9:08:61:a5:4c:
f7:c9:15:d0:31:6e:c5:1b:84:53:95:dd:91:4f:79:
9d:50:ab:37:fc:e2:5f:ee:ae:bd:4f:48:30:1f:ce:
55:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:F5:7A:4C:E0:51:B1:B5:B3:AA:96:82:27:92:0C:03:37:C1:C4:9D
X509v3 Authority Key Identifier:
keyid:AE:98:A5:FD:AD:2D:C9:F4:FC:1B:E4:7F:66:85:7A:8C:47:98:81:02
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/rpil_a0tyfT8G-R_ZoV6jEeYgQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rpil_a0tyfT8G-R_ZoV6jEeYgQI.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D0F50/5EAAA6B8258F11EBB70B7C19F8AEA228/B3E3FF0EB61C11EFB635AB5F762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2c0f:f888:a110::/44
Signature Algorithm: sha256WithRSAEncryption
a2:cb:27:d3:36:2b:0a:44:34:1d:38:26:6a:1d:ea:d2:e1:78:
38:52:16:47:44:a2:14:a9:e9:2d:c9:b7:65:81:e2:29:05:b5:
ac:ce:96:ac:55:7b:2f:4a:9e:b7:1d:43:12:b4:33:d2:19:61:
c5:4f:4b:46:3f:d4:84:97:2e:7b:ec:e7:5b:f2:6e:fe:02:1e:
ed:c6:94:87:4b:0c:a8:f1:df:1d:d5:a1:5e:4f:1b:fb:d6:b8:
9c:07:c9:0f:8c:9a:f6:33:60:7c:6a:e3:5e:88:dd:2f:91:41:
d8:29:a9:78:d0:21:91:c8:5d:ce:b4:e7:c1:de:9d:91:b8:01:
15:d5:8a:22:e5:9d:62:ca:f8:7e:6d:5a:41:1f:1c:da:5f:49:
d8:77:99:40:1c:b5:3a:66:f4:3f:4c:bf:91:21:76:4d:be:7f:
fc:0b:11:3d:2a:bb:20:fa:3d:c9:c4:e7:25:73:99:12:4b:c0:
ee:b0:19:53:ae:60:92:c5:e9:0e:1f:5f:52:5e:6c:54:23:07:
8e:9e:3f:00:c3:d5:ac:8c:e9:36:91:2d:b3:c1:e9:39:41:97:
2a:61:5f:d3:5b:1b:f1:d0:24:6d:da:73:be:01:cc:1b:0c:16:
c6:f0:42:3f:f6:d4:5d:ac:fe:83:48:cc:51:30:23:c0:b3:d1:
3c:97:85:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 03:04:53 2025 by rpki-client