Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95B4DFFAF65311EEABCA6096775412E6.roa
File: 95B4DFFAF65311EEABCA6096775412E6.roa (raw, json)
Hash identifier: +GE6sJg3CajaM2gJF6IT3uZNxkW/vCdJBKFJrU+Ewuo=
Subject key identifier: E6:DE:B0:8C:5C:F2:51:02:4D:EB:98:56:E8:DF:07:47:2E:19:6C:D8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 81CC
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95B4DFFAF65311EEABCA6096775412E6.roa
Signing time: Tue 09 Apr 2024 09:28:55 +0000
ROA not before: Tue 09 Apr 2024 09:28:51 +0000
ROA not after: Mon 13 May 2024 09:28:51 +0000
asID: 64267
IP address blocks: 156.248.99.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Wed 08 May 2024 00:16:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33228 (0x81cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Apr 9 09:28:51 2024 GMT
Not After : May 13 09:28:51 2024 GMT
Subject: CN=66150a57-dd12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c3:76:71:57:14:b4:72:93:46:cf:67:b2:ad:
8d:08:e8:87:bd:42:50:78:89:a6:c6:2d:61:61:cb:
96:3b:88:7e:00:c1:9f:d4:03:a5:a7:45:3d:82:5e:
0c:97:7e:ed:6e:50:75:2a:1f:be:56:ac:e4:f6:fc:
6f:5e:77:d9:df:11:0b:87:fe:95:11:15:d4:48:63:
6c:c7:95:1b:3e:cd:71:19:d7:4e:9f:71:1e:28:51:
4b:a1:00:93:63:d8:a4:7a:67:df:53:9c:e8:d7:66:
e9:dc:54:07:f8:ac:7f:ac:4b:2b:72:05:e8:71:51:
65:c9:af:45:5c:c5:64:3e:b0:63:78:8f:6b:7b:70:
3f:6e:45:83:ff:47:1c:e0:72:97:03:a6:63:74:96:
8f:30:17:31:39:96:7d:37:ae:4b:d5:69:22:91:8d:
e8:e8:20:18:4b:bf:d1:c3:97:20:e1:6d:11:71:eb:
9a:db:cf:35:a1:bf:4f:de:fb:6d:ee:34:3f:13:a0:
84:e0:06:fd:fc:85:dd:38:85:a3:c3:f6:4a:ac:a1:
d2:a6:4c:48:61:09:e0:20:4c:21:ac:fd:3a:76:0b:
44:c8:d1:d4:e8:29:88:b2:1c:17:a6:c5:14:a3:21:
cb:05:09:c7:3d:86:cb:63:84:82:7b:ab:d7:dd:94:
a0:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DE:B0:8C:5C:F2:51:02:4D:EB:98:56:E8:DF:07:47:2E:19:6C:D8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/95B4DFFAF65311EEABCA6096775412E6.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
156.248.99.0/24
Signature Algorithm: sha256WithRSAEncryption
96:1f:db:ac:79:e3:84:8a:41:8a:56:e6:c0:f9:fe:05:29:5f:
51:d5:38:a3:12:eb:66:a3:00:a3:66:0d:28:bf:7f:f2:58:e4:
18:16:e0:9c:2f:56:c7:f9:05:b8:bf:8e:69:19:5d:98:f8:83:
d2:9d:f7:bc:cb:93:5b:f0:8b:75:b6:1f:00:c7:7c:2f:ec:b9:
af:a0:fd:8e:fe:6f:32:a0:e0:92:06:58:5e:1f:f2:3e:fc:df:
7f:77:74:4f:04:71:ba:1d:4c:38:e8:25:6f:dc:5d:a4:fb:06:
f2:ae:a6:f9:1f:ca:91:4d:ea:2e:10:d9:97:a9:02:03:61:eb:
48:2b:e3:27:ef:5e:a7:c7:06:6f:92:29:16:a7:cf:51:f5:38:
b2:73:2e:ff:ce:11:62:1d:60:d5:ab:7e:02:41:77:9e:46:1b:
b5:d6:0f:99:d1:d6:9e:7a:43:84:e4:ab:d7:52:ee:5e:7a:48:
43:41:35:1c:15:d0:4c:c6:e8:e1:64:c6:56:3b:08:a9:27:27:
c5:6c:39:75:0b:2e:59:9a:25:5e:98:5e:0e:33:7f:25:7e:44:
d3:81:59:9b:2b:47:26:79:0c:ff:76:62:2e:c0:2c:a0:d7:9a:
48:d6:56:2c:5c:c4:1d:c5:5e:cd:d9:19:43:88:4e:80:ce:b6:
ef:23:35:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 6 09:08:13 2024 by rpki-client on console-fra.rpki-client.org