Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A13A88F274AD11EE8EE7744D4AD9E6FC.roa
File:                     A13A88F274AD11EE8EE7744D4AD9E6FC.roa (raw, json)
Hash identifier:          ualxCfC54B+UAuHyhMLVt9o6uKRDUBDJWNKkYcWzuW8=
Subject key identifier:   70:1E:D0:7A:23:D6:5C:E2:39:EE:54:1C:5D:8A:14:83:95:FD:CB:44
Certificate issuer:       /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial:       053A
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A13A88F274AD11EE8EE7744D4AD9E6FC.roa
Signing time:             Fri 27 Oct 2023 09:45:58 +0000
ROA not before:           Fri 27 Oct 2023 09:45:54 +0000
ROA not after:            Sat 31 Dec 2033 09:45:54 +0000
asID:                     3741
IP address blocks:        197.80.142.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
                          rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sun 24 Nov 2024 00:05:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1338 (0x53a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
        Validity
            Not Before: Oct 27 09:45:54 2023 GMT
            Not After : Dec 31 09:45:54 2033 GMT
        Subject: CN=653b86d6-522f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:e2:10:40:d7:b6:95:66:4b:9d:88:6e:ff:bb:
                    c2:2c:c9:36:8a:d7:93:4f:ed:39:a5:3f:5e:75:73:
                    63:a7:57:45:0e:5c:10:a2:cb:d4:93:c7:a7:b2:ca:
                    08:e5:1c:e2:82:26:f4:f3:87:7d:d7:9b:14:5e:2e:
                    e5:1c:c0:b2:89:0d:39:e0:18:3c:78:20:6e:4b:0c:
                    38:27:f0:8b:b4:ef:41:de:0b:f9:5c:29:b4:d9:5f:
                    03:bf:0f:76:a5:c8:64:38:5d:30:93:e2:49:82:36:
                    95:7e:3b:08:cd:5b:a3:6c:2c:07:95:d1:c4:a7:9e:
                    38:8e:b6:52:fe:c3:df:54:6c:c0:e6:e6:9a:3c:df:
                    64:9c:2b:06:2a:49:17:70:40:ae:3f:bf:8e:7e:e7:
                    b7:c6:80:97:b1:45:32:60:cb:d0:c3:15:34:83:7f:
                    03:b8:7f:98:0f:5a:50:1a:7e:3d:65:af:bb:3b:4b:
                    b3:67:ce:ba:ad:75:c7:7a:89:94:b8:1e:f5:89:e3:
                    d9:3c:83:2e:cf:d1:ab:e3:3b:2f:de:5b:d7:28:a7:
                    9e:68:af:ea:88:59:8b:f1:a6:6e:12:82:36:a8:d5:
                    78:54:b6:26:a1:d3:02:24:44:91:4b:c6:9b:16:8a:
                    21:d3:c4:1e:f7:13:1c:f5:04:f1:76:b5:05:a7:99:
                    6b:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                70:1E:D0:7A:23:D6:5C:E2:39:EE:54:1C:5D:8A:14:83:95:FD:CB:44
            X509v3 Authority Key Identifier:
                keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/A13A88F274AD11EE8EE7744D4AD9E6FC.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  197.80.142.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5c:05:1e:93:66:98:a3:ce:85:58:b8:6d:bc:d9:6b:17:01:f7:
         2f:5d:99:5b:e9:93:f9:f7:05:8b:51:37:21:83:9e:04:be:e9:
         73:cd:6b:00:85:5a:9a:46:9d:af:ea:a1:50:db:7d:7b:1e:42:
         14:84:ac:73:82:f4:a6:c8:a1:a0:fc:52:80:e8:95:bc:1e:4b:
         fa:02:90:83:a0:fc:33:5e:24:cd:61:1d:df:44:17:39:4b:76:
         dd:c8:05:0c:c1:78:b6:01:01:85:70:62:ad:51:b2:95:dd:99:
         8b:4a:b1:4a:da:fc:34:4f:32:4b:49:61:30:fe:1c:f3:a6:ce:
         42:76:19:66:b2:0b:22:76:da:4a:0f:c1:7f:e7:84:82:8a:75:
         9e:44:59:6b:61:fe:c3:dd:c1:53:26:5a:49:ee:c8:90:7f:b1:
         67:a4:58:60:cc:49:65:eb:d6:ae:34:9b:8a:84:59:bf:ea:a1:
         0c:33:d3:84:f2:04:6d:8a:12:20:57:40:75:39:e7:44:c7:0d:
         9b:90:28:72:4e:65:b8:8a:ad:0a:82:0b:11:4e:60:26:89:3b:
         26:2f:66:cc:7d:de:62:93:20:df:52:c6:c0:cd:7e:59:0e:84:
         39:bf:61:19:dd:0e:de:7c:0f:17:10:e8:67:a2:dc:03:a5:23:
         8e:09:70:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:08:54 2024 by rpki-client on console-fra.rpki-client.org