Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/59105920F84711EA84572232F8AEA228.roa
File:                     59105920F84711EA84572232F8AEA228.roa (raw, json)
Hash identifier:          iILT2Dq+1nHMMI+bSq+8wLISd4PvfNetcoNqcmA4UDM=
Subject key identifier:   37:AA:18:74:62:CC:A2:D2:1C:E9:0D:E8:1D:DF:1F:C7:85:7D:14:05
Certificate issuer:       /CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
Certificate serial:       02B0
Authority key identifier: AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/59105920F84711EA84572232F8AEA228.roa
Signing time:             Wed 16 Sep 2020 18:06:31 +0000
ROA not before:           Wed 16 Sep 2020 18:06:26 +0000
ROA not after:            Tue 31 Dec 2030 18:06:26 +0000
asID:                     327687
IP address blocks:        196.43.128.0/18 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.mft
                          rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sun 24 Nov 2024 00:05:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 688 (0x2b0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F362B38EAF/serialNumber=AD4004D8518DEB99CED3FFFAB635AA174E700FD7
        Validity
            Not Before: Sep 16 18:06:26 2020 GMT
            Not After : Dec 31 18:06:26 2030 GMT
        Subject: CN=5f625427-49c7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:19:ff:04:cf:d4:14:e0:f5:a9:5f:80:4b:e0:
                    4f:3c:d0:57:27:88:60:46:65:71:02:e1:78:40:4f:
                    9b:b3:00:8e:11:92:28:0d:bd:5f:8c:6d:e2:04:61:
                    f6:ec:b5:54:3d:99:4e:ed:16:ac:8a:9e:cf:8a:5a:
                    ed:b2:5b:4a:cc:63:f5:7c:80:d1:90:cc:40:8b:f3:
                    33:4c:34:5c:7a:52:95:d2:33:45:10:25:14:2a:cd:
                    66:38:89:11:d6:d7:ad:9a:bf:0f:d4:5f:33:f9:b0:
                    ad:2a:77:c0:2e:d5:51:52:25:72:37:98:e3:08:4e:
                    48:f0:ba:0c:6a:12:91:84:c4:ba:96:4b:84:b7:1e:
                    12:a2:f5:34:7c:90:c0:8d:ef:25:14:f8:28:dd:96:
                    fa:db:50:15:6b:75:26:a5:08:d5:e3:20:31:3a:7d:
                    08:e5:d3:4c:cd:25:f2:2a:d9:66:56:48:21:d8:ef:
                    b9:8b:39:d5:b1:a1:9d:0a:87:66:87:e4:e0:58:59:
                    e5:69:96:b6:c6:b3:a7:6d:9b:3b:54:7d:32:f7:9a:
                    d9:bc:4d:04:b4:2c:94:25:d2:89:8a:41:47:0b:dc:
                    76:48:f8:b5:d4:9b:a9:b3:e5:6e:2c:eb:6e:4c:8b:
                    11:55:e5:71:f5:10:d8:8d:15:56:36:6e:7e:47:cd:
                    f7:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:AA:18:74:62:CC:A2:D2:1C:E9:0D:E8:1D:DF:1F:C7:85:7D:14:05
            X509v3 Authority Key Identifier:
                keyid:AD:40:04:D8:51:8D:EB:99:CE:D3:FF:FA:B6:35:AA:17:4E:70:0F:D7

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/rUAE2FGN65nO0__6tjWqF05wD9c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/rUAE2FGN65nO0__6tjWqF05wD9c.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F362B38E/73C193E2DF6111E9BE5A2C30F8AEA228/59105920F84711EA84572232F8AEA228.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  196.43.128.0/18

    Signature Algorithm: sha256WithRSAEncryption
         06:05:4d:b2:1e:c6:06:54:30:52:05:2d:5f:aa:f1:0a:fc:a9:
         35:38:db:1c:ae:6e:e5:28:83:73:ea:d2:40:ce:50:94:72:1a:
         2a:09:b8:9b:ca:70:e5:e4:fb:df:57:4e:52:15:10:78:e7:4c:
         8a:2a:e2:76:c9:16:62:68:44:e3:4b:cd:18:2b:50:2d:1e:22:
         61:06:22:33:fd:72:6a:f3:1f:1c:92:77:1b:e8:ef:80:72:80:
         e0:68:75:31:e6:50:3f:e9:ff:a8:21:5f:93:8e:c7:6e:81:aa:
         8e:a9:c9:20:2c:07:c8:57:d8:f6:8b:7f:fe:48:e7:32:2d:61:
         03:c1:71:fb:02:7e:2b:e6:5c:7c:ca:2e:63:8f:36:c9:07:da:
         2d:cf:9e:01:8f:c0:2b:ad:3c:39:44:be:57:24:f0:9c:29:97:
         b5:5d:2d:4c:d2:d3:16:fc:9e:c8:f2:7d:4b:a7:ee:45:8e:63:
         59:97:0f:70:ed:43:90:58:41:0f:c8:2d:d9:cf:9e:d3:de:8c:
         8b:9a:5a:e0:89:b1:fa:7d:98:f2:92:98:81:ea:92:e2:96:62:
         89:7a:72:24:ae:cc:33:aa:dd:32:9d:fb:45:3a:07:b3:42:36:
         93:42:cf:26:10:ef:0c:eb:b1:52:25:19:61:e1:43:91:09:f7:
         a1:5e:ca:49
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICArAwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
MkIzOEVBRjExMC8GA1UEBRMoQUQ0MDA0RDg1MThERUI5OUNFRDNGRkZBQjYzNUFB
MTc0RTcwMEZENzAeFw0yMDA5MTYxODA2MjZaFw0zMDEyMzExODA2MjZaMBgxFjAU
BgNVBAMTDTVmNjI1NDI3LTQ5YzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQC2Gf8Ez9QU4PWpX4BL4E880FcniGBGZXEC4XhAT5uzAI4RkigNvV+MbeIE
YfbstVQ9mU7tFqyKns+KWu2yW0rMY/V8gNGQzECL8zNMNFx6UpXSM0UQJRQqzWY4
iRHW162avw/UXzP5sK0qd8Au1VFSJXI3mOMITkjwugxqEpGExLqWS4S3HhKi9TR8
kMCN7yUU+CjdlvrbUBVrdSalCNXjIDE6fQjl00zNJfIq2WZWSCHY77mLOdWxoZ0K
h2aH5OBYWeVplrbGs6dtmztUfTL3mtm8TQS0LJQl0omKQUcL3HZI+LXUm6mz5W4s
625MixFV5XH1ENiNFVY2bn5HzfeVAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUN6oY
dGLMotIc6Q3oHd8fx4V9FAUwHwYDVR0jBBgwFoAUrUAE2FGN65nO0//6tjWqF05w
D9cwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjJCMzhFLzczQzE5M0UyREY2MTExRTlCRTVBMkMzMEY4QUVBMjI4L3JVQUUy
RkdONjVuTzBfXzZ0aldxRjA1d0Q5Yy5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL3JVQUUyRkdONjVuTzBfXzZ0aldxRjA1d0Q5Yy5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjJCMzhFLzczQzE5M0UyREY2MTExRTlCRTVBMkMzMEY4
QUVBMjI4LzU5MTA1OTIwRjg0NzExRUE4NDU3MjIzMkY4QUVBMjI4LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbEK4AwDQYJKoZIhvcNAQEL
BQADggEBAAYFTbIexgZUMFIFLV+q8Qr8qTU42xyubuUog3Pq0kDOUJRyGioJuJvK
cOXk+99XTlIVEHjnTIoq4nbJFmJoRONLzRgrUC0eImEGIjP9cmrzHxySdxvo74By
gOBodTHmUD/p/6ghX5OOx26Bqo6pySAsB8hX2PaLf/5I5zItYQPBcfsCfivmXHzK
LmOPNskH2i3PngGPwCutPDlEvlck8Jwpl7VdLUzS0xb8nsjyfUun7kWOY1mXD3Dt
Q5BYQQ/ILdnPntPejIuaWuCJsfp9mPKSmIHqkuKWYol6ciSuzDOq3TKd+0U6B7NC
NpNCzyYQ7wzrsVIlGWHhQ5EJ96Feykk=
-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:32 2024 by rpki-client on console-ams.rpki-client.org