Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/DC26891C56E811EEB69202594AD9E6FC.roa
File:                     DC26891C56E811EEB69202594AD9E6FC.roa (raw, json)
Hash identifier:          DKTr71srYK5Zpn3W8I7fy0zbcW1tm9BkZmr+ciJFnZs=
Subject key identifier:   C9:7F:4D:FF:DF:52:3F:D6:7B:3C:2A:A1:CD:7F:15:12:39:F2:AA:54
Certificate issuer:       /CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
Certificate serial:       050C
Authority key identifier: 2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/DC26891C56E811EEB69202594AD9E6FC.roa
Signing time:             Tue 19 Sep 2023 12:34:22 +0000
ROA not before:           Tue 19 Sep 2023 12:34:18 +0000
ROA not after:            Fri 30 Sep 2033 12:34:18 +0000
asID:                     3741
IP address blocks:        196.1.76.0/22 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.mft
                          rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sun 24 Nov 2024 00:05:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1292 (0x50c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F367B216AF/serialNumber=2F407FECD8B7DDDCA5D5B90A5E19589D06C101DC
        Validity
            Not Before: Sep 19 12:34:18 2023 GMT
            Not After : Sep 30 12:34:18 2033 GMT
        Subject: CN=6509954e-e9ac
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:30:a7:13:94:15:2f:88:04:46:44:af:b6:38:
                    4d:ae:22:85:e0:72:1d:99:b3:68:f7:5c:73:3c:30:
                    22:0d:67:cd:10:49:8e:fc:6c:21:85:00:c7:91:ee:
                    30:eb:ce:97:40:ed:44:ad:5c:12:69:57:ea:7a:96:
                    53:e8:38:38:10:01:46:46:57:3e:e7:d2:01:50:67:
                    27:20:b8:3f:21:7d:82:e0:bc:5f:7e:c4:60:7f:d3:
                    07:36:2c:80:cb:66:bd:c2:a1:4e:e7:87:41:9d:1f:
                    03:b4:05:5e:87:5c:d1:41:69:1c:a1:e8:0a:ff:23:
                    a7:21:9e:f3:47:08:8b:e1:7c:a2:f9:41:4d:ea:4d:
                    47:68:b1:9f:8a:32:29:fe:32:2f:0b:33:00:26:4a:
                    cf:fc:89:66:39:37:77:d1:14:8b:db:87:5e:73:8f:
                    17:f6:fb:2b:80:95:ed:26:df:86:44:13:0f:4e:b6:
                    cc:54:9f:76:a8:01:ac:49:a1:12:59:5a:a4:64:2e:
                    68:47:69:ae:60:90:17:8a:86:ab:68:85:9a:3d:d1:
                    0b:86:7b:51:bd:6b:52:f2:51:4c:2f:c3:c9:fb:fb:
                    03:d3:b8:b3:ec:23:64:1a:05:fc:4e:f1:88:15:63:
                    38:5c:34:b8:a6:fc:97:ce:cf:e1:b9:2c:f9:af:42:
                    ec:5d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:7F:4D:FF:DF:52:3F:D6:7B:3C:2A:A1:CD:7F:15:12:39:F2:AA:54
            X509v3 Authority Key Identifier:
                keyid:2F:40:7F:EC:D8:B7:DD:DC:A5:D5:B9:0A:5E:19:58:9D:06:C1:01:DC

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/L0B_7Ni33dyl1bkKXhlYnQbBAdw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/L0B_7Ni33dyl1bkKXhlYnQbBAdw.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F367B216/36AC0F9687D511EBAAFF3447F8AEA228/DC26891C56E811EEB69202594AD9E6FC.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  196.1.76.0/22

    Signature Algorithm: sha256WithRSAEncryption
         61:6e:28:7b:b0:5a:b0:fe:e3:17:9a:6d:c3:cb:5b:b9:ab:ec:
         c3:84:d2:89:9c:bb:b9:15:39:36:21:26:9a:8f:7c:5b:7e:3d:
         16:4a:79:b9:f3:0e:bd:6e:12:f4:dd:2f:8b:d6:01:b7:28:29:
         82:6d:c6:81:05:c3:30:ab:0e:aa:f6:a7:a4:db:9c:f7:c9:07:
         de:1c:18:f2:ce:23:df:d2:6a:7f:f0:11:bb:0c:bd:65:ab:51:
         b8:eb:92:5b:53:39:53:d3:60:49:32:71:3c:17:4e:ec:fe:99:
         d1:95:41:90:b9:2c:ff:54:21:bf:62:7a:f8:76:cd:17:73:18:
         b1:48:a5:79:ab:ed:34:0f:a8:42:52:fd:50:5f:4e:b3:12:c3:
         6b:62:34:47:b6:d8:ec:21:3d:21:5a:ab:52:7c:0d:f3:03:71:
         01:5b:d1:91:5a:3c:1a:7c:e4:b8:c2:0c:f5:8b:cf:51:6c:ba:
         dd:41:bf:cc:d2:10:8c:59:62:38:1d:85:34:53:e0:30:a5:f7:
         a4:ee:03:96:c3:50:17:76:09:89:f6:da:af:68:c0:58:76:bd:
         18:3b:aa:14:b3:e4:31:04:b0:2f:1e:45:c0:96:f3:2f:fe:0f:
         84:7d:d6:9a:ad:8c:42:0e:9d:0e:64:88:7e:7a:54:80:62:6d:
         62:88:af:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 04:03:44 2024 by rpki-client on console-ams.rpki-client.org