Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E4D55C2ED54A11EEB370F290775412E6.roa
File:                     E4D55C2ED54A11EEB370F290775412E6.roa (raw, json)
Hash identifier:          nTaoqkr3fqUCytvcsY38FB49taiYwfD+Q6XFQU57wDs=
Subject key identifier:   1D:8A:D3:52:F5:60:85:B2:BC:50:E1:FB:16:FC:FB:17:68:DC:B8:64
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       14FA
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E4D55C2ED54A11EEB370F290775412E6.roa
Signing time:             Tue 27 Feb 2024 08:33:34 +0000
ROA not before:           Tue 27 Feb 2024 08:33:31 +0000
ROA not after:            Fri 27 Feb 2026 08:33:31 +0000
asID:                     201341
IP address blocks:        154.16.90.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
                          rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sat 20 Jul 2024 00:05:45 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5370 (0x14fa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Feb 27 08:33:31 2024 GMT
            Not After : Feb 27 08:33:31 2026 GMT
        Subject: CN=65dd9e5e-4c03
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:c0:33:96:44:e6:3a:5c:90:44:e9:aa:59:58:
                    74:22:b0:da:83:de:ec:a4:19:14:b1:fe:24:7c:aa:
                    dc:17:fc:58:fa:45:c0:e9:9d:b0:b1:d6:37:a5:8a:
                    43:dd:74:b0:af:c7:12:b5:67:d5:97:72:59:88:2a:
                    b9:fe:ca:b8:cb:83:61:d4:be:0f:7b:4f:c3:c9:e9:
                    79:3a:d5:61:10:f2:ac:80:8d:c2:03:e4:b4:5e:09:
                    df:01:f6:98:5c:98:d1:c8:08:20:4e:30:da:01:c2:
                    8a:22:9f:35:c2:97:d5:94:bf:b8:1d:bb:3d:f6:f8:
                    84:e7:64:ae:7f:8d:fa:94:9b:0c:1d:cd:d0:ae:bc:
                    77:8b:12:47:ac:a2:19:2f:5e:9d:53:72:4a:90:00:
                    cc:09:d9:d6:b3:47:41:5d:0e:27:2c:75:8b:28:92:
                    f1:1c:82:fa:9c:e4:4a:33:5b:d7:17:76:3b:77:b7:
                    92:6d:26:f5:fa:57:d1:24:cc:5e:71:2f:f1:d2:b7:
                    0c:cb:92:6a:62:89:d5:d1:4d:88:05:fd:f4:70:fd:
                    af:44:da:fc:1c:3a:f6:0c:33:69:d3:14:5d:d1:83:
                    5e:1a:4b:29:a0:dc:ed:2e:05:75:49:0d:79:8e:b1:
                    68:58:77:0f:99:ec:ff:a1:50:42:12:9a:cb:db:1c:
                    ba:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1D:8A:D3:52:F5:60:85:B2:BC:50:E1:FB:16:FC:FB:17:68:DC:B8:64
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/E4D55C2ED54A11EEB370F290775412E6.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.90.0/24

    Signature Algorithm: sha256WithRSAEncryption
         53:ad:a7:1a:35:15:ab:3c:f3:22:d3:f4:b5:f3:db:b9:c6:d3:
         bb:e1:38:97:8c:23:81:64:1b:7a:ac:6c:3b:aa:35:66:0e:46:
         69:53:93:3f:c2:ed:14:97:87:f0:7b:98:15:60:f8:75:78:89:
         e2:8d:3c:5a:0c:9b:60:9b:9c:ac:39:57:c2:f5:89:f3:ae:8e:
         46:f7:00:0f:35:c3:e8:3a:5f:56:06:bc:c5:e8:26:1f:19:7a:
         45:4f:87:79:d1:a0:6b:6b:a5:87:e5:75:0b:15:c1:34:cc:bd:
         53:b9:0a:f2:0b:61:15:2c:93:8a:b6:63:e4:b8:fe:db:81:4b:
         64:c2:01:3f:f0:56:8f:c0:b7:52:2e:5c:32:d7:12:7a:ae:2f:
         fe:21:f6:37:8b:2b:96:4d:5e:48:33:c8:44:40:5a:dd:2f:f7:
         62:fb:af:10:2e:43:04:87:05:39:ec:76:87:af:ef:91:c5:20:
         49:b1:d8:6d:b8:05:b7:7b:ed:21:30:b8:43:0e:e2:f4:e3:ce:
         6a:d9:a5:4f:b0:59:af:b2:25:75:1a:4d:2c:3e:9f:0b:07:b5:
         23:94:9d:e1:f1:da:f0:d8:ce:34:d4:02:bf:b2:25:81:e4:61:
         74:4d:35:8a:82:bf:50:de:9d:61:ab:66:21:e3:f7:48:72:18:
         6e:4b:b0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 18 01:58:03 2024 by rpki-client on console-ams.rpki-client.org