Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8B76B110CD5B11E982F62408F8AEA228.roa
File:                     8B76B110CD5B11E982F62408F8AEA228.roa (raw, json)
Hash identifier:          /cWu2nL6HSrRP3knTHp+eSDgxNpMwgwnD7k3nWXKasE=
Subject key identifier:   77:39:80:2D:1B:91:64:43:9A:52:C0:99:F0:70:8C:F3:E2:5A:00:D8
Certificate issuer:       /CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
Certificate serial:       05DC
Authority key identifier: 86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8B76B110CD5B11E982F62408F8AEA228.roa
Signing time:             Mon 02 Sep 2019 08:27:48 +0000
ROA not before:           Mon 02 Sep 2019 08:27:40 +0000
ROA not after:            Fri 29 Aug 2025 08:27:40 +0000
asID:                     36874
IP address blocks:        41.177.0.0/16 maxlen: 18

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.mft
                          rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sat 30 Mar 2024 00:04:21 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1500 (0x5dc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36472E5AF/serialNumber=86FED2ED19C2067A482221B645D60C45A4D56A9D
        Validity
            Not Before: Sep  2 08:27:40 2019 GMT
            Not After : Aug 29 08:27:40 2025 GMT
        Subject: CN=5d6cd284-3b27
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:d4:09:5d:48:4a:b4:bc:47:a0:7f:ac:5f:7e:
                    93:52:73:3f:45:36:48:01:27:fb:64:ca:6e:89:14:
                    30:50:09:da:3e:40:58:29:b1:bf:37:22:99:21:a2:
                    5a:35:10:dd:71:22:e8:b6:5a:a6:86:df:9e:ed:93:
                    ed:da:4d:ea:92:9f:3a:54:57:cc:66:48:4d:09:5f:
                    0d:04:8e:32:11:1c:36:4a:a4:df:c9:72:6a:5d:e3:
                    68:e5:d6:df:cc:bb:56:61:67:73:92:e6:bc:4e:30:
                    6b:55:f7:60:5f:25:d2:3a:c6:a8:23:cd:2b:37:be:
                    ba:50:9e:f7:f9:8a:1b:54:f1:82:8c:f0:1a:87:40:
                    e6:26:c5:b7:23:44:e1:31:59:49:58:fb:d7:95:72:
                    8f:63:6c:ff:cf:ee:8b:20:66:50:4c:76:e9:35:28:
                    48:39:fb:f7:9f:be:92:42:f4:eb:7c:22:29:42:81:
                    37:04:5f:7d:1e:35:88:3a:a4:f8:0b:1b:47:3d:52:
                    62:d0:e5:30:10:4f:4c:fa:58:2b:37:68:09:76:36:
                    d9:18:e9:a3:2f:c5:db:53:a6:48:76:18:41:24:2c:
                    a0:a8:c2:55:28:2b:a1:56:7f:94:4d:df:65:00:db:
                    26:08:40:1e:3f:7f:45:fe:41:c8:ee:e1:61:ae:05:
                    9c:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:39:80:2D:1B:91:64:43:9A:52:C0:99:F0:70:8C:F3:E2:5A:00:D8
            X509v3 Authority Key Identifier:
                keyid:86:FE:D2:ED:19:C2:06:7A:48:22:21:B6:45:D6:0C:45:A4:D5:6A:9D

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/hv7S7RnCBnpIIiG2RdYMRaTVap0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/hv7S7RnCBnpIIiG2RdYMRaTVap0.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36472E5/8DB6547A56D711E585356D60F8AEA228/8B76B110CD5B11E982F62408F8AEA228.roa

            sbgp-ipAddrBlock: critical
                IPv4:
                  41.177.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         8e:9b:35:83:50:df:f6:49:bf:5b:1f:74:06:ed:c2:de:82:c1:
         c7:74:40:fb:24:e1:70:93:c4:ed:33:85:c5:a3:0b:c2:64:86:
         e3:6c:cf:b1:d1:26:cb:7d:eb:dd:51:4a:c1:eb:fd:7c:fa:8b:
         96:05:5b:57:92:c0:1d:ed:ce:38:f7:9c:22:92:0e:8d:3b:a9:
         e7:60:59:5b:9c:32:0f:cd:f8:a3:46:1d:bf:86:9b:67:ee:ec:
         57:7d:99:5c:3c:76:4c:00:a2:3d:83:fd:0d:c7:5a:59:9f:52:
         2f:d7:60:f8:8a:8c:ba:8f:01:ef:a3:b3:90:00:6e:7d:c9:ed:
         5c:c5:51:db:fa:9d:74:4d:21:0b:dc:52:40:c0:1e:84:4e:1a:
         8c:5d:ac:72:50:b8:26:ad:38:7e:26:67:ab:98:1c:a9:bc:b9:
         d0:53:f6:11:4a:cd:fc:0b:b4:a7:c9:28:01:c8:f9:88:7e:24:
         86:59:f2:91:22:d1:14:45:87:58:a3:40:13:9f:10:4a:e3:4d:
         8d:e5:d0:b8:c4:f4:9f:c6:29:e9:bd:74:89:de:72:66:63:5b:
         18:ab:5d:9b:c1:58:61:34:4b:9e:b1:f6:8e:46:2c:08:59:eb:
         b1:cf:48:0a:49:8c:4c:78:fd:21:02:1a:38:16:cc:54:ce:10:
         99:22:2c:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 28 02:07:00 2024 by rpki-client on console-ams.rpki-client.org