Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E47D955E754011EDB4C64EDEF1222468.roa
File:                     E47D955E754011EDB4C64EDEF1222468.roa (raw, json)
Hash identifier:          AeGR9Rj1oWMnv0gq3WhsjQBx+mccyMqBhT6VIh9WTFw=
Subject key identifier:   E0:BE:94:14:84:6F:48:84:74:BD:5D:B6:DB:BC:06:EC:B3:1E:92:7A
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       0AF5
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E47D955E754011EDB4C64EDEF1222468.roa
Signing time:             Tue 06 Dec 2022 08:35:09 +0000
ROA not before:           Tue 06 Dec 2022 08:35:05 +0000
ROA not after:            Fri 06 Dec 2024 08:35:05 +0000
asID:                     46562
IP address blocks:        154.16.196.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
                          rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sat 20 Jul 2024 00:05:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2805 (0xaf5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Dec  6 08:35:05 2022 GMT
            Not After : Dec  6 08:35:05 2024 GMT
        Subject: CN=638efebd-c8d7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:bc:f8:b3:9d:6b:24:85:26:b1:38:65:c6:f0:
                    c6:e7:1f:02:37:0e:6d:b2:eb:39:ed:01:c6:6a:5d:
                    71:92:bc:ee:12:47:3a:de:dd:c7:81:17:37:65:25:
                    c2:97:d2:54:1d:e1:24:09:16:3d:a2:a6:2f:02:7e:
                    8b:81:3f:1d:46:28:0c:eb:d6:44:58:71:bd:7c:3c:
                    a8:ef:d2:3c:fd:2b:ca:52:f2:04:eb:05:50:01:69:
                    2a:2b:b7:8a:a6:f8:dd:91:bb:58:fa:e7:e4:ed:74:
                    fc:24:02:df:6d:39:34:17:09:f1:88:f3:90:13:d7:
                    62:a2:c2:8c:8e:59:23:b2:06:56:03:d9:85:d7:e5:
                    97:64:cb:40:cc:d9:04:c4:f1:f4:9a:c6:4b:55:e6:
                    28:15:8f:22:e1:b1:b8:bd:4a:bf:d9:d8:7a:2d:a1:
                    53:12:e3:1e:cb:df:9c:08:f5:ce:53:30:00:7e:60:
                    d2:ba:46:be:7b:e4:f2:5b:b2:ce:bb:5c:83:cf:32:
                    b1:91:df:24:67:fc:4d:c2:d2:85:a2:75:08:6b:ab:
                    91:6a:77:dc:98:f9:35:79:d5:74:ba:b8:7e:a8:48:
                    cc:15:3c:8b:61:f7:d2:f9:d7:65:ab:fd:03:43:51:
                    48:d8:1f:6b:a7:2a:c0:6f:1f:d3:2d:20:58:63:c8:
                    b9:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E0:BE:94:14:84:6F:48:84:74:BD:5D:B6:DB:BC:06:EC:B3:1E:92:7A
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E47D955E754011EDB4C64EDEF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.196.0/24

    Signature Algorithm: sha256WithRSAEncryption
         26:c0:2b:53:e7:ea:6e:23:7f:1b:64:e5:f6:46:90:8f:e7:15:
         74:c5:79:3e:bf:c8:1b:37:f6:af:86:99:76:f2:67:18:2f:9e:
         7c:e2:a3:7e:77:59:99:f5:71:bb:0b:c9:d9:eb:6f:0a:c1:65:
         b3:a3:46:6e:4d:e0:5e:98:0a:c0:1e:9a:c4:cd:50:dc:b3:cf:
         7a:8f:91:b0:da:90:6b:09:86:33:57:b1:78:9a:dc:46:cf:be:
         8a:f2:e1:60:b2:3e:06:e7:69:11:42:ed:c3:a2:0b:32:a6:82:
         f5:ad:86:77:49:88:80:47:e0:9c:6c:55:67:87:f1:44:c0:fa:
         e7:1d:62:ab:9c:bd:ae:f9:1a:6a:e3:6b:ab:8f:19:03:2b:01:
         e8:73:61:b5:3f:aa:1d:b5:d5:b3:39:ad:93:5b:ed:53:d2:bd:
         57:43:37:0b:c9:d1:e6:53:48:21:b3:3b:eb:3d:49:ff:40:14:
         08:23:93:49:dd:6f:d4:98:19:00:93:d0:84:02:53:a9:fd:48:
         cf:f1:e4:05:79:7f:ec:b0:c4:0e:3b:92:7d:e3:39:37:59:e3:
         2c:96:d0:f2:30:58:87:4a:ca:45:d3:5a:d7:84:04:c1:aa:b1:
         4b:10:04:cf:81:97:ff:e2:ea:5c:5d:0e:d9:65:50:2b:44:dc:
         ba:a3:3a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 01:58:03 2024 by rpki-client on console-ams.rpki-client.org