Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/978F1128F57811EE956D5365775412E6.roa
File: 978F1128F57811EE956D5365775412E6.roa (raw, json)
Hash identifier: te722ZtDRdxsm+bEEJ5vu+Vd2kvsMve1JEoT0DPru1Y=
Subject key identifier: 80:D0:98:1B:C8:B4:56:6E:08:EE:74:50:45:AB:56:B5:83:AB:5F:07
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: AA57
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/978F1128F57811EE956D5365775412E6.roa
Signing time: Mon 08 Apr 2024 07:21:18 +0000
ROA not before: Mon 08 Apr 2024 07:21:15 +0000
ROA not after: Mon 13 May 2024 07:21:15 +0000
asID: 328608
IP address blocks: 154.208.136.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.mft
rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Fri 03 May 2024 00:04:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43607 (0xaa57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Validity
Not Before: Apr 8 07:21:15 2024 GMT
Not After : May 13 07:21:15 2024 GMT
Subject: CN=66139aee-0303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e2:7a:9c:cf:e9:ea:6f:48:7e:bb:31:32:c2:
f5:96:b3:3b:d8:49:84:5e:8a:06:07:00:38:d0:21:
d7:75:80:0b:c1:c2:b5:e1:29:8b:64:83:7f:b9:f6:
69:56:07:ac:13:ce:cb:d1:1d:52:4e:9b:b3:af:f6:
2c:8d:e1:ea:bc:16:f6:14:9b:27:81:ec:e6:bb:b7:
94:5e:25:97:1b:6e:fc:12:63:b2:37:81:a0:67:ab:
6c:41:90:29:ad:b9:48:39:27:34:c1:f0:01:d9:b9:
f4:97:1a:db:e1:d3:7b:43:ba:f4:de:9d:80:68:3f:
cb:8e:7f:b2:fb:a9:4e:7d:20:e7:77:12:b1:b4:23:
dc:fc:c0:55:7f:22:9b:40:1a:02:12:e5:f2:e5:ff:
3c:88:34:0b:87:a8:b0:3b:61:c6:81:4f:e7:f6:31:
66:90:fd:cd:88:90:72:d8:ac:6e:55:47:21:c4:1c:
9e:85:82:1e:af:fc:70:25:df:1c:88:06:43:e9:06:
44:94:ba:7a:11:d6:5e:94:96:5e:f0:5e:ba:68:5f:
a4:3a:6c:51:23:ed:54:a8:21:a9:b7:2f:16:89:c1:
c1:f5:aa:f6:97:0b:9f:d9:6a:bc:8d:2e:d1:17:78:
5d:29:03:4a:ce:ba:3e:34:dc:7d:ad:b5:18:96:b0:
82:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D0:98:1B:C8:B4:56:6E:08:EE:74:50:45:AB:56:B5:83:AB:5F:07
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/978F1128F57811EE956D5365775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.208.136.0/24
Signature Algorithm: sha256WithRSAEncryption
73:4e:d1:df:72:9d:a1:82:49:0b:40:b8:a0:07:12:05:20:fe:
18:5a:64:f6:0b:98:23:3f:8d:1c:55:45:b2:35:9e:ee:4b:fe:
96:75:40:14:8e:65:b7:b5:1e:e9:a0:d9:a8:11:be:ba:08:03:
9c:37:f2:bf:e4:24:77:ad:8a:4a:ab:42:1c:32:a4:ea:0f:34:
ad:e6:d2:46:79:23:09:0c:1a:d2:84:eb:db:a0:8a:ef:19:11:
15:7a:ec:6e:1d:d0:2d:80:88:73:5b:3e:d3:bf:14:4b:04:ea:
79:94:33:f1:c7:9c:e6:5d:ca:bb:af:62:46:19:c8:be:fd:b4:
b2:ab:9a:0c:37:6f:08:ff:d7:f4:ec:02:68:a8:b1:cb:7f:61:
0f:31:72:53:91:a5:55:ab:0e:b5:74:f7:e6:6b:71:9d:93:12:
8d:2e:ff:ae:4e:b8:a9:13:ce:19:fa:60:c1:4b:46:c5:18:98:
90:9b:50:9b:d4:b2:7c:48:a0:7a:7e:7c:b1:8d:11:5e:1e:8b:
60:ac:72:5c:ae:3d:a0:91:64:cc:33:07:88:b2:a7:ab:cd:98:
15:f5:59:23:23:7c:07:ad:d2:d6:03:17:0e:86:c8:5b:99:e1:
a2:0c:ac:0a:ee:12:88:1b:4e:86:f5:d2:6a:88:6d:8d:a8:8d:
73:a7:ad:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 13:29:44 2024 by rpki-client on console-fra.rpki-client.org