Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52C9751E0CE911EFB674B01A017001B1.roa
File: 52C9751E0CE911EFB674B01A017001B1.roa (raw, json)
Hash identifier: w0XuIQa2cxcWo1FL4Vl33coIlUtep81MQNzIvOQEW6c=
Subject key identifier: D2:08:74:54:31:A2:D6:83:68:4C:8E:54:6A:95:3F:C9:89:05:67:41
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B578
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52C9751E0CE911EFB674B01A017001B1.roa
Signing time: Wed 08 May 2024 03:16:13 +0000
ROA not before: Wed 08 May 2024 03:16:09 +0000
ROA not after: Fri 14 Jun 2024 03:16:09 +0000
asID: 135983
IP address blocks: 154.200.30.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 03 Jun 2024 00:05:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46456 (0xb578)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 8 03:16:09 2024 GMT
Not After : Jun 14 03:16:09 2024 GMT
Subject: CN=663aee7d-080f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:f1:f2:9a:4a:0f:1a:c2:e5:31:f9:61:55:
b6:72:ff:be:a2:88:e9:99:c1:31:48:61:d0:57:d3:
50:16:1b:5b:2e:24:73:18:27:56:4e:fd:60:fd:01:
68:0b:91:81:c1:3f:51:ee:53:98:ec:84:68:1f:8d:
a0:f6:2c:77:ab:d9:1b:9b:a9:5d:e0:46:fc:ad:df:
87:b9:bf:61:6d:d4:2e:ad:aa:d7:a7:1b:77:9f:a1:
7c:10:44:28:c8:83:f6:e2:df:81:0c:61:28:65:c5:
58:01:21:eb:f8:3f:a5:da:77:2d:04:11:1a:7c:b8:
a5:a3:86:41:c0:52:ac:21:b8:df:06:76:77:6d:9e:
76:32:6a:48:ed:7a:9e:4d:0f:c8:8a:9b:b5:47:04:
99:d4:e2:c0:27:53:07:34:6c:6d:d9:4f:1c:52:a4:
01:db:ca:58:09:b8:0b:20:da:c5:39:44:96:a0:b5:
8e:27:64:84:e7:9f:4b:56:c0:7d:b1:6f:01:29:f1:
a7:bb:f4:97:11:e4:40:04:3f:bd:ee:da:a1:35:8d:
15:51:67:15:a8:f1:20:ef:11:d4:82:71:fc:ef:51:
ad:08:86:c2:4f:aa:b7:a0:17:96:3f:ba:c1:a9:1a:
34:61:d3:fe:82:77:21:2a:f9:b2:27:ec:36:b1:bf:
d0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:08:74:54:31:A2:D6:83:68:4C:8E:54:6A:95:3F:C9:89:05:67:41
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/52C9751E0CE911EFB674B01A017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.200.30.0/23
Signature Algorithm: sha256WithRSAEncryption
c8:33:0d:8e:c5:4b:bb:60:18:d5:73:2d:f6:42:09:10:e4:f7:
69:39:1a:c9:5a:89:5f:41:df:1d:30:5d:9e:69:14:5a:ef:25:
81:36:ff:3e:9f:4f:a5:35:66:78:27:da:5a:ce:f0:fd:21:a2:
cd:0a:66:c1:72:b0:3b:f4:42:3b:e9:d1:00:34:b0:73:a2:ba:
70:0f:ca:87:4b:2c:06:91:a9:4f:9a:2d:6b:0d:f2:46:c6:ce:
e1:48:c9:30:28:0f:c6:20:24:83:9b:01:51:91:10:25:93:a5:
af:7d:a3:08:e5:b5:90:66:85:7e:c3:3a:6d:33:7c:0d:32:03:
0c:b0:ea:a0:e4:71:56:1b:9c:f5:22:63:00:63:67:53:87:95:
fe:26:13:f1:bc:d5:d2:b6:51:8f:8d:a8:c4:30:41:22:25:1e:
31:63:b2:e4:00:e1:99:b8:36:d4:61:02:34:3e:38:cb:d8:be:
b7:cf:52:84:29:ae:53:4d:37:cd:0b:4f:a4:5b:b9:ed:d8:a3:
20:72:2a:bb:4e:5b:f6:e6:8a:1f:a7:40:4d:81:79:d5:19:fe:
93:9c:45:48:91:9b:92:cf:6f:e1:7e:4a:c0:03:2e:8d:15:1e:
9b:b8:3d:d0:56:eb:72:f9:19:fb:2c:3a:54:5c:17:10:bb:78:
29:a6:dd:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 08:15:19 2024 by rpki-client on console-ams.rpki-client.org