Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/278D35A402D811EFA674E717017001B1.roa
File: 278D35A402D811EFA674E717017001B1.roa (raw, json)
Hash identifier: n6v9Qnp1rGV74U5Qd0Fb3zvfeI5UMhxcef31NI67sDE=
Subject key identifier: 7A:AF:B7:9E:FD:14:BF:D4:63:D1:DF:AD:19:6A:F4:64:8E:81:3A:D8
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: B031
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/278D35A402D811EFA674E717017001B1.roa
Signing time: Thu 25 Apr 2024 07:48:07 +0000
ROA not before: Thu 25 Apr 2024 07:48:04 +0000
ROA not after: Mon 20 May 2024 07:48:04 +0000
asID: 135883
IP address blocks: 154.86.116.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Mon 20 May 2024 07:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45105 (0xb031)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 25 07:48:04 2024 GMT
Not After : May 20 07:48:04 2024 GMT
Subject: CN=662a0ab7-a28e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:cb:73:26:8d:37:2c:d8:83:83:38:00:ca:0c:
e1:03:48:60:1a:4f:34:ae:f5:e0:ee:bd:de:e2:2c:
69:31:90:65:90:95:3b:47:53:c9:31:4b:1e:ff:c1:
54:34:b5:75:cd:68:4f:09:5f:44:7a:f0:26:5d:00:
2d:6f:bc:4e:9c:07:58:08:c2:27:ca:6c:7a:ba:08:
c5:10:04:2e:f3:1c:68:cb:cb:87:30:df:3d:f6:bf:
1c:66:21:8f:80:8f:f0:e7:70:31:eb:04:52:b9:9d:
ea:60:34:26:5b:34:8d:58:8c:0f:54:6f:5f:7b:0d:
a0:bd:ba:c3:03:af:77:f1:91:af:99:7a:4c:64:f1:
94:99:b8:2e:0c:fd:de:28:e5:35:d2:30:a6:0c:4b:
be:4a:31:04:5d:b2:58:44:aa:2b:18:e6:a1:96:47:
a8:19:63:d2:fa:72:e1:ea:c6:00:23:ba:90:5b:51:
09:d7:a7:98:05:93:95:a0:e9:36:e9:39:0a:5d:da:
24:82:f5:02:74:cc:32:96:ff:1f:25:97:ec:67:a3:
73:e2:9e:87:d8:6a:27:55:cf:09:80:87:b2:e2:53:
f0:a3:d8:3a:14:36:aa:2c:f8:8b:a7:34:62:c3:5d:
95:b4:c2:21:77:39:80:2a:08:6c:d9:74:67:84:b3:
29:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:AF:B7:9E:FD:14:BF:D4:63:D1:DF:AD:19:6A:F4:64:8E:81:3A:D8
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/278D35A402D811EFA674E717017001B1.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.86.116.0/24
Signature Algorithm: sha256WithRSAEncryption
76:df:d5:b2:2b:c2:27:fd:a7:5f:71:de:38:ab:44:26:ed:e1:
86:d2:3f:34:72:33:82:8d:3f:ce:7b:24:e5:42:64:10:38:c3:
9a:2d:e3:7f:fa:f5:20:8d:b9:e3:b2:73:ae:d5:a4:1a:d5:5f:
4c:7e:25:05:36:bc:54:9b:2d:33:63:00:1b:cc:dd:16:fb:b1:
5b:35:0d:87:ff:34:ed:89:93:9e:67:f8:c6:c2:15:9f:34:cb:
15:3d:40:d5:d7:a3:90:f6:af:56:10:5e:f1:4a:7c:a0:ac:38:
52:82:90:29:f8:db:93:77:5b:f4:fe:16:44:48:e3:37:bf:93:
c0:8d:6f:0d:e6:82:71:53:9f:2a:ad:57:fd:20:ff:5a:b8:ee:
ed:6d:16:fb:95:7c:92:20:b4:aa:43:6b:2f:dc:46:b6:f7:ea:
2c:6a:c5:99:ff:ff:c3:34:0a:90:77:77:08:ce:55:bc:b0:e6:
85:3d:12:a8:f7:dc:37:b1:dc:7b:ca:f7:7e:fb:c8:a9:7c:4d:
b2:be:53:6d:af:84:35:c8:b3:7d:fa:8a:c5:a1:2f:13:10:49:
dd:fb:f1:5b:58:8a:5b:b4:35:58:d6:ae:ab:bd:2a:50:0c:fe:
cd:c9:3a:5b:73:ea:a2:2b:0b:25:a8:41:cf:b1:cc:b0:95:82:
f4:74:70:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 20 03:18:12 2024 by rpki-client on console-fra.rpki-client.org