Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/632FD7FAC78F11ECAF0968B7F1222468.roa
File:                     632FD7FAC78F11ECAF0968B7F1222468.roa (raw, json)
Hash identifier:          ncmo6vZ2JU0lpNwyE2Xs9iuV7o3ziJ2Uz936QeStknM=
Subject key identifier:   06:D8:F2:F3:20:DE:4D:5A:EE:3A:77:EA:FA:65:6B:8B:66:8B:B9:6B
Certificate issuer:       /CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
Certificate serial:       04
Authority key identifier: E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/632FD7FAC78F11ECAF0968B7F1222468.roa
Signing time:             Fri 29 Apr 2022 07:38:40 +0000
ROA not before:           Fri 29 Apr 2022 07:38:36 +0000
ROA not after:            Tue 29 Apr 2025 07:38:36 +0000
asID:                     6453
IP address blocks:        196.43.118.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.mft
                          rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sun 24 Nov 2024 00:05:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4 (0x4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36663C2AF/serialNumber=E0219D5A4CD8582C4F37E2D0DDD706B77EBD9F6C
        Validity
            Not Before: Apr 29 07:38:36 2022 GMT
            Not After : Apr 29 07:38:36 2025 GMT
        Subject: CN=626b9600-a2ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:c8:35:4e:a4:b7:75:8a:02:dd:d5:c7:88:a1:
                    d5:b8:2e:f5:67:78:3d:5b:7d:7a:fa:99:88:63:d1:
                    0b:d2:f0:0b:50:f4:e1:76:74:45:a8:50:e1:62:22:
                    51:fc:b0:a5:fd:30:1c:a6:58:41:11:6f:73:ce:f4:
                    35:53:73:f9:ac:40:81:1a:c1:e7:bb:43:c6:f0:fd:
                    26:7c:75:6a:19:f2:d0:3d:8a:10:e8:3e:a0:f3:1a:
                    d7:ac:4a:d1:80:31:3c:9c:46:8a:66:b0:e8:ab:1d:
                    e0:ef:42:ad:d0:6a:01:03:58:00:c5:00:ee:5d:24:
                    d8:fb:c5:34:a5:d6:d2:e3:f7:01:91:6a:0d:98:00:
                    b5:1c:70:33:e8:9a:03:13:44:db:de:24:c7:eb:f3:
                    96:2d:b7:c1:54:24:4c:9c:68:39:b6:ba:72:a9:91:
                    54:b6:93:5a:3f:72:9a:7d:10:ad:3a:7e:e4:bb:50:
                    44:61:fc:a0:09:c1:07:00:96:29:ae:46:00:e4:82:
                    6b:4b:46:a6:af:c5:37:3d:a4:73:85:58:40:e9:d7:
                    a8:96:da:4a:5f:a9:18:7a:51:d1:36:b3:ad:6e:6a:
                    2e:cb:84:93:fd:de:09:76:f3:81:6e:7d:b5:c2:c8:
                    72:f5:10:4d:95:fb:37:77:6f:59:0a:15:aa:2b:45:
                    a1:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:D8:F2:F3:20:DE:4D:5A:EE:3A:77:EA:FA:65:6B:8B:66:8B:B9:6B
            X509v3 Authority Key Identifier:
                keyid:E0:21:9D:5A:4C:D8:58:2C:4F:37:E2:D0:DD:D7:06:B7:7E:BD:9F:6C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/4CGdWkzYWCxPN-LQ3dcGt369n2w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/4CGdWkzYWCxPN-LQ3dcGt369n2w.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36663C2/B390E9E8C78311ECB1982894F1222468/632FD7FAC78F11ECAF0968B7F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  196.43.118.0/24

    Signature Algorithm: sha256WithRSAEncryption
         d5:10:3f:2b:68:81:74:25:8a:8d:a8:45:38:60:54:da:bc:90:
         3a:54:b8:87:30:ec:35:fb:62:e4:55:8b:37:c5:f6:5c:9a:ae:
         78:59:5e:c8:43:5a:3c:2c:15:2e:51:9c:35:11:7a:5e:c1:18:
         7d:3e:b2:22:14:be:2b:ce:99:32:22:cd:75:a8:98:0a:aa:b7:
         ab:2b:36:9d:ba:b2:c4:1b:42:ac:3e:ee:74:43:6e:a0:76:2e:
         6c:ab:bc:3a:9f:2d:f1:8e:82:72:1a:8c:4b:cf:24:02:de:78:
         54:a3:2d:ba:3f:61:79:fe:12:10:4c:2f:e3:d1:08:b8:15:11:
         3a:67:02:c9:21:f7:ea:35:e6:7c:db:9b:51:c8:62:21:ab:a9:
         45:0e:15:e1:2a:c7:16:a3:96:95:55:64:62:5f:3f:d8:d6:82:
         98:b1:a9:a0:68:31:c9:6a:17:35:c3:36:cd:af:e8:16:ec:7b:
         a3:5e:93:7f:dd:1b:7e:74:c1:b1:d1:9f:67:71:dc:5e:39:74:
         fe:58:07:63:d4:1f:d9:e2:6c:9a:c4:e3:66:99:e0:dc:4e:e4:
         2f:04:d0:3e:f8:43:26:58:e4:58:43:b1:69:7d:e4:87:9e:78:
         72:02:32:9f:95:36:90:29:20:2c:61:36:94:b5:d1:07:2e:d0:
         ef:59:dc:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 03:52:55 2024 by rpki-client on console-fra.rpki-client.org