Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/17A12F76BBBB11ECBA4F7EBE5A40D577.roa
File:                     17A12F76BBBB11ECBA4F7EBE5A40D577.roa (download)
Hash identifier:          oMk+UL4ao+//GuxEYNIfkNj++L4uTvzcrgYx3Q+DPRI=
Subject key identifier:   9C:21:6E:78:A0:51:53:A0:B1:F9:3A:B0:35:46:2F:B5:7B:72:C1:11
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0825
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/17A12F76BBBB11ECBA4F7EBE5A40D577.roa
ROA valid until:          Apr 14 06:21:12 2027 GMT
asID:                     397373
IP address blocks:
    1: 154.16.247.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2085 (0x825)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Apr 14 06:21:12 2022 GMT
            Not After : Apr 14 06:21:12 2027 GMT
        Subject: CN=6257bd5d-8367
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:7a:2a:68:fe:70:3a:8d:72:5a:25:93:bb:54:
                    a9:2a:0c:5b:0e:90:06:82:7e:93:8b:fd:24:2e:0c:
                    a1:b2:7c:ce:95:6c:96:3f:de:98:2a:5e:87:e2:d7:
                    e8:ca:d0:d6:bb:d7:db:d5:a9:6c:65:1d:5f:fd:85:
                    eb:11:54:94:f2:5c:e3:bc:b6:74:e2:fc:c3:28:ea:
                    d0:8d:7a:08:71:f3:f9:a0:00:81:69:8c:9c:9c:e4:
                    89:47:04:74:b6:36:fc:a2:63:4f:ac:35:1d:55:70:
                    a1:fa:2d:e2:9a:ac:c8:64:82:d5:9d:09:9b:ba:95:
                    2e:6d:4e:4e:24:41:e6:e2:a4:b5:38:70:33:a6:a6:
                    40:d9:11:ba:9c:f8:ce:86:4e:c4:47:e8:c1:44:de:
                    c8:68:08:37:ad:e3:c7:ed:3c:a1:be:8d:27:91:44:
                    ee:bc:d7:a7:64:0d:97:aa:c9:61:8a:a0:e3:98:36:
                    29:8e:93:0d:0b:bc:a7:95:ab:df:6f:c0:b1:04:01:
                    22:0c:e2:d6:69:19:18:13:44:79:cf:28:db:d4:df:
                    83:29:a6:1e:b5:06:d5:ef:1e:20:c0:81:ae:81:9f:
                    eb:89:6f:81:5d:cc:cc:f8:b9:07:7b:5d:97:96:43:
                    60:d2:4e:b9:2d:27:3b:76:0c:ab:ba:20:d0:2c:51:
                    09:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                9C:21:6E:78:A0:51:53:A0:B1:F9:3A:B0:35:46:2F:B5:7B:72:C1:11
            X509v3 Authority Key Identifier: 
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/17A12F76BBBB11ECBA4F7EBE5A40D577.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.247.0/24

    Signature Algorithm: sha256WithRSAEncryption
         bf:62:41:7e:f4:42:cf:6d:0d:60:86:5a:11:05:aa:16:48:58:
         c9:e0:f6:e4:cf:d8:60:ab:32:54:5c:3e:90:55:ad:a5:f7:2e:
         1f:27:ee:71:98:39:51:e1:fc:4c:ef:c5:36:d6:18:87:1c:3b:
         7b:47:c0:7f:de:80:7b:c2:35:60:76:4d:12:91:7f:b5:31:d7:
         be:aa:8d:69:6b:59:0b:40:6f:43:e4:1c:10:90:08:25:b0:d7:
         93:35:18:a9:eb:c5:58:73:06:e3:dc:88:76:d3:bf:99:aa:08:
         0c:21:c2:26:ec:78:ce:d0:53:51:10:a2:7e:8b:67:96:3c:07:
         91:12:e3:5d:24:f1:15:9b:4a:da:36:a1:2d:4e:eb:7b:eb:12:
         a0:b4:44:21:47:92:0b:c4:82:10:76:48:7c:df:dc:d1:a9:f0:
         0d:8b:e7:45:a8:f4:11:8f:ae:87:c9:87:9c:b2:92:be:6a:fb:
         99:e2:95:c7:5b:3b:b4:1b:fd:08:90:c2:27:ae:ac:ff:1b:fd:
         99:63:73:79:c0:9d:64:16:86:c2:b0:ed:a8:59:39:62:7d:66:
         6f:c2:de:2a:ba:5b:f5:ef:49:a8:d9:88:61:8b:53:6a:1b:f2:
         71:e9:83:e2:59:de:ef:7d:3b:d0:93:09:9f:5b:82:e9:81:c0:
         a4:4e:23:fb
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAwwKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yMjA0MTQwNjIxMTJaFw0yNzA0MTQwNjIxMTJaMBgxFjAU
BgNVBAMMDTYyNTdiZDVkLTgzNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDFeipo/nA6jXJaJZO7VKkqDFsOkAaCfpOL/SQuDKGyfM6VbJY/3pgqXofi
1+jK0Na719vVqWxlHV/9hesRVJTyXOO8tnTi/MMo6tCNeghx8/mgAIFpjJyc5IlH
BHS2NvyiY0+sNR1VcKH6LeKarMhkgtWdCZu6lS5tTk4kQebipLU4cDOmpkDZEbqc
+M6GTsRH6MFE3shoCDet48ftPKG+jSeRRO6816dkDZeqyWGKoOOYNimOkw0LvKeV
q99vwLEEASIM4tZpGRgTRHnPKNvU34Mpph61BtXvHiDAga6Bn+uJb4FdzMz4uQd7
XZeWQ2DSTrktJzt2DKu6INAsUQkPAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUnCFu
eKBRU6Cx+TqwNUYvtXtywREwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4LzE3QTEyRjc2QkJCQjExRUNCQTRGN0VCRTVBNDBENTc3LnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEPcwDQYJKoZIhvcNAQEL
BQADggEBAL9iQX70Qs9tDWCGWhEFqhZIWMng9uTP2GCrMlRcPpBVraX3Lh8n7nGY
OVHh/EzvxTbWGIccO3tHwH/egHvCNWB2TRKRf7Ux176qjWlrWQtAb0PkHBCQCCWw
15M1GKnrxVhzBuPciHbTv5mqCAwhwibseM7QU1EQon6LZ5Y8B5ES410k8RWbSto2
oS1O63vrEqC0RCFHkgvEghB2SHzf3NGp8A2L50Wo9BGProfJh5yykr5q+5nilcdb
O7Qb/QiQwieurP8b/Zljc3nAnWQWhsKw7ahZOWJ9Zm/C3iq6W/XvSajZiGGLU2ob
8nHpg+JZ3u99O9CTCZ9bgumBwKROI/s=
-----END CERTIFICATE-----
Generated at Wed Dec 7 17:21:00 2022 by rpki-client.