Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/205C7900F91711EDBB10BD174AD9E6FC.roa
File: 205C7900F91711EDBB10BD174AD9E6FC.roa (raw, json)
Hash identifier: Y9H2/2sBdHXDeDjjmZEP31aCZwM93shleL6L7PYGK68=
Subject key identifier: 49:DB:38:A6:F7:64:2C:1D:8F:4B:E9:FD:26:E5:B0:50:30:C5:4F:5A
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 263C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/205C7900F91711EDBB10BD174AD9E6FC.roa
Signing time: Tue 23 May 2023 03:08:44 +0000
ROA not before: Tue 23 May 2023 03:08:41 +0000
ROA not after: Wed 15 May 2024 03:08:41 +0000
asID: 399674
IP address blocks: 154.94.252.0/23 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sun 05 May 2024 00:04:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9788 (0x263c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: May 23 03:08:41 2023 GMT
Not After : May 15 03:08:41 2024 GMT
Subject: CN=646c2e3c-f52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:41:a2:6f:89:b6:8d:8c:8f:c0:9a:96:ce:68:
c2:0a:83:fe:57:99:03:94:df:90:5f:88:89:0d:d9:
0a:8f:e1:fd:fc:5d:88:c9:f7:3d:20:12:df:3d:1b:
49:f7:9d:c6:d2:3c:62:c1:95:2a:2d:90:da:b6:e6:
7e:74:d0:a3:e2:9b:4a:be:05:e1:b8:67:68:9e:d9:
b7:57:ce:f2:cc:0d:66:d2:f3:8e:cf:96:16:41:29:
53:47:a3:8a:12:c1:be:a8:3a:30:a6:dc:e4:79:7d:
3e:ba:e3:91:18:64:72:cc:17:37:5a:61:bb:14:0c:
c4:94:88:5a:7d:54:73:e9:db:30:6b:86:11:22:5d:
7b:54:93:86:f6:e9:6e:38:e3:84:ac:aa:aa:af:69:
55:61:da:db:05:c2:07:72:0e:c9:49:82:eb:5f:84:
33:c1:cb:73:f1:be:c8:ff:a8:79:9c:e3:d1:20:f6:
fd:75:19:f0:fe:43:21:b6:46:b2:3c:51:4d:19:5a:
77:bc:79:be:f7:44:4c:3b:51:3d:c4:4d:0f:4a:55:
3d:f7:55:54:31:75:60:20:02:08:c6:e7:05:e9:da:
af:ca:76:0f:54:5c:93:f5:a1:24:87:ef:3d:e1:87:
97:99:d4:1f:5a:a9:e3:81:cd:cb:6c:c0:89:81:62:
a3:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DB:38:A6:F7:64:2C:1D:8F:4B:E9:FD:26:E5:B0:50:30:C5:4F:5A
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/205C7900F91711EDBB10BD174AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.94.252.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:67:d1:71:c0:75:7c:9d:7c:f5:0e:0a:c3:4c:e7:5a:72:9a:
b2:4b:24:08:cb:7a:82:41:1b:dd:bc:b0:7a:f8:c1:23:99:07:
6a:5b:5b:18:24:54:3f:79:ad:d3:67:8e:2c:88:27:b6:06:0e:
63:19:5a:60:9d:05:1a:c2:e3:16:d6:48:f7:0a:17:27:4e:81:
e4:45:52:99:d8:f0:8a:ba:0f:ff:a2:d4:cb:d8:db:68:bd:ec:
6d:ef:61:7f:34:4a:50:a4:8d:01:6a:e2:a8:aa:b1:80:36:0d:
c4:f1:cd:fb:d0:c7:f0:6d:76:ed:43:e8:07:e3:db:7c:93:93:
08:4c:6e:2b:82:78:b9:dc:a5:7c:4a:38:8e:57:bb:45:d4:09:
b8:fe:7f:6a:6a:8f:5a:30:62:f6:53:ca:d6:b6:ff:7a:9a:55:
36:d1:fe:c3:b6:d9:bd:cf:ac:1a:41:99:f7:c6:8e:fb:b7:c5:
a8:f7:30:29:9f:ec:c4:73:85:bc:58:5d:b0:9f:6c:19:07:6f:
6f:bc:0d:24:57:ae:4f:39:17:9b:84:3f:de:b8:f8:f0:87:da:
7a:fe:a2:38:e4:fc:eb:50:a6:3e:54:bb:e9:8b:49:31:30:26:
1d:3f:ff:c9:63:84:6b:20:53:04:54:bd:9a:53:86:2e:98:f0:
3c:7d:11:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 04:44:17 2024 by rpki-client on console-fra.rpki-client.org