Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C760DB7248C811EF986940BB762E951A.roa
File:                     C760DB7248C811EF986940BB762E951A.roa (raw, json)
Hash identifier:          xJJxazFjVln7pHIrwP6U3puvs1LOUQI98AO/m7sOIs8=
Subject key identifier:   23:F5:16:94:C3:88:8D:61:A6:F8:B3:9F:DF:F4:DB:4D:8A:80:DD:40
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       1756
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C760DB7248C811EF986940BB762E951A.roa
Signing time:             Tue 23 Jul 2024 07:54:25 +0000
ROA not before:           Tue 23 Jul 2024 07:54:22 +0000
ROA not after:            Sat 25 Jul 2026 07:54:22 +0000
asID:                     32181
IP address blocks:        154.16.59.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
                          rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Tue 26 Nov 2024 00:05:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5974 (0x1756)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Jul 23 07:54:22 2024 GMT
            Not After : Jul 25 07:54:22 2026 GMT
        Subject: CN=669f61b1-fd78
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:54:2a:64:a6:4f:03:eb:1f:7e:a9:85:53:69:
                    64:87:54:45:bd:c7:60:2a:3b:29:aa:27:c2:94:10:
                    db:03:bf:19:db:9f:eb:42:6e:df:1f:26:47:28:cf:
                    2e:bf:6f:2a:f2:04:78:68:77:c8:78:fd:05:95:fd:
                    eb:70:bd:e8:d2:a6:d2:6a:a0:1f:8a:cf:ff:2a:ae:
                    f3:69:93:62:e2:cd:db:51:35:ba:06:6c:3f:f4:fe:
                    69:5d:cd:c6:1f:5b:84:85:26:e9:9b:43:db:6b:a0:
                    31:fa:f8:cf:4a:24:0c:00:20:6e:11:4d:d6:6f:45:
                    de:2d:d5:94:eb:08:3e:ef:e0:a6:4b:64:7f:51:a5:
                    d8:49:c3:50:a7:33:00:34:f7:c6:29:09:03:5d:5d:
                    e3:af:07:76:ad:b8:8c:5a:c8:5e:17:d0:a2:3c:1f:
                    79:89:86:f8:73:6e:55:88:ec:d7:a8:aa:a8:9c:4f:
                    43:72:2a:29:af:63:c7:fe:7e:fe:58:8c:07:29:d2:
                    f2:2f:75:4f:b0:bf:4b:0e:dc:73:18:8f:dc:64:4e:
                    85:8e:64:c9:cd:0e:18:fa:a7:65:19:75:00:82:06:
                    20:7e:49:b6:82:ea:db:c7:86:7d:b0:fc:1f:09:46:
                    26:d8:dc:ea:98:6e:d3:26:77:dd:f1:b4:15:08:c6:
                    b4:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                23:F5:16:94:C3:88:8D:61:A6:F8:B3:9F:DF:F4:DB:4D:8A:80:DD:40
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/C760DB7248C811EF986940BB762E951A.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.59.0/24

    Signature Algorithm: sha256WithRSAEncryption
         65:8a:41:bc:ce:63:0d:4b:71:e8:99:1b:91:e6:d9:3e:1a:6b:
         1f:27:dd:5a:2d:8a:2d:30:77:d3:32:d9:52:07:e9:73:d5:db:
         88:cd:0e:63:2c:e0:13:2d:8a:7f:df:2d:89:bf:61:36:31:12:
         4c:48:de:d9:76:4b:98:eb:c3:a9:5e:93:47:73:91:18:9e:8a:
         8e:f7:30:50:33:8e:04:2e:3c:a9:c0:fb:56:21:dc:c8:0a:b5:
         51:c8:f5:23:74:ae:b8:7e:c0:49:81:80:d2:cf:dc:15:26:42:
         2d:1b:bb:3b:ea:5f:e3:ea:ce:53:ea:6d:a7:4a:bd:b7:a7:e3:
         7c:f0:f0:be:5d:5b:10:30:bb:91:9e:48:10:04:04:e8:76:10:
         c5:f9:1c:cd:eb:1f:8b:9a:a1:b7:5a:9b:53:1d:58:6f:c9:cb:
         f5:f4:cc:50:19:f4:e0:71:ec:2f:fc:6d:06:f9:1a:bf:3f:0c:
         7d:5d:b0:01:02:30:6c:42:b5:5d:cd:5d:ba:ed:e8:bf:c9:3e:
         ab:28:0d:45:05:62:34:78:e3:41:1c:a8:2f:59:2b:fb:47:39:
         e8:af:89:e2:1a:b5:21:f1:4d:51:46:23:c5:fa:3a:58:d6:21:
         53:69:49:84:e0:4a:55:31:f1:38:6d:ee:f2:6b:07:5b:bf:48:
         25:0e:de:c7
-----BEGIN CERTIFICATE-----
MIIFgzCCBGugAwIBAgICF1YwDQYJKoZIhvcNAQELBQAwSDETMBEGA1UEAxMKRjM2
ODJCNjVBRjExMC8GA1UEBRMoMDk0MEU2MzgyODMzMzZERTVDOEM1QTQwQTRDMjNC
MzRGM0Y5Q0E1MzAeFw0yNDA3MjMwNzU0MjJaFw0yNjA3MjUwNzU0MjJaMBgxFjAU
BgNVBAMTDTY2OWY2MWIxLWZkNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQDXVCpkpk8D6x9+qYVTaWSHVEW9x2AqOymqJ8KUENsDvxnbn+tCbt8fJkco
zy6/byryBHhod8h4/QWV/etwvejSptJqoB+Kz/8qrvNpk2LizdtRNboGbD/0/mld
zcYfW4SFJumbQ9troDH6+M9KJAwAIG4RTdZvRd4t1ZTrCD7v4KZLZH9RpdhJw1Cn
MwA098YpCQNdXeOvB3atuIxayF4X0KI8H3mJhvhzblWI7NeoqqicT0NyKimvY8f+
fv5YjAcp0vIvdU+wv0sO3HMYj9xkToWOZMnNDhj6p2UZdQCCBiB+SbaC6tvHhn2w
/B8JRibY3OqYbtMmd93xtBUIxrRnAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUI/UW
lMOIjWGm+LOf3/TbTYqA3UAwHwYDVR0jBBgwFoAUCUDmOCgzNt5cjFpApMI7NPP5
ylMwDgYDVR0PAQH/BAQDAgeAMIGVBgNVHR8EgY0wgYowgYeggYSggYGGf3JzeW5j
Oi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJlcl9yZXBvc2l0b3J5
L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4QUVBMjI4L0NVRG1P
Q2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jcmwwZwYIKwYBBQUHAQEEWzBZMFcGCCsG
AQUFBzAChktyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9hZnJp
bmljL0NVRG1PQ2d6TnQ1Y2pGcEFwTUk3TlBQNXlsTS5jZXIwTwYDVR0gAQH/BEUw
QzBBBggrBgEFBQcOAjA1MDMGCCsGAQUFBwIBFidodHRwczovL3Jwa2kuYWZyaW5p
Yy5uZXQvcG9saWN5L0NQUy5wZGYwgdsGCCsGAQUFBwELBIHOMIHLMIGRBggrBgEF
BQcwC4aBhHJzeW5jOi8vcnBraS5hZnJpbmljLm5ldC9yZXBvc2l0b3J5L21lbWJl
cl9yZXBvc2l0b3J5L0YzNjgyQjY1LzRFODUxRTM0REI1NTExRTg4NUIyOTk1MUY4
QUVBMjI4L0M3NjBEQjcyNDhDODExRUY5ODY5NDBCQjc2MkU5NTFBLnJvYTA1Bggr
BgEFBQcwDYYpaHR0cHM6Ly9ycmRwLmFmcmluaWMubmV0L25vdGlmaWNhdGlvbi54
bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACaEDswDQYJKoZIhvcNAQEL
BQADggEBAGWKQbzOYw1LceiZG5Hm2T4aax8n3Votii0wd9My2VIH6XPV24jNDmMs
4BMtin/fLYm/YTYxEkxI3tl2S5jrw6lek0dzkRieio73MFAzjgQuPKnA+1Yh3MgK
tVHI9SN0rrh+wEmBgNLP3BUmQi0buzvqX+PqzlPqbadKvben43zw8L5dWxAwu5Ge
SBAEBOh2EMX5HM3rH4uaobdam1MdWG/Jy/X0zFAZ9OBx7C/8bQb5Gr8/DH1dsAEC
MGxCtV3NXbrt6L/JPqsoDUUFYjR440EcqC9ZK/tHOeivieIatSHxTVFGI8X6OljW
IVNpSYTgSlUx8Tht7vJrB1u/SCUO3sc=
-----END CERTIFICATE-----
Generated at Sun Nov 24 03:18:00 2024 by rpki-client on console-ams.rpki-client.org