Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EB58F4DE3E8811ED935BEADDF1222468.roa
File:                     EB58F4DE3E8811ED935BEADDF1222468.roa (raw, json)
Hash identifier:          weSTEB8IWtINS22uesWBGc1Fcr6m760JxdC6SIgtAqo=
Subject key identifier:   FC:3D:4E:07:3E:7B:5B:C5:EB:5A:34:A3:27:42:48:E2:BE:6A:14:B6
Certificate issuer:       /CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
Certificate serial:       09C6
Authority key identifier: 09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EB58F4DE3E8811ED935BEADDF1222468.roa
Signing time:             Tue 27 Sep 2022 17:22:10 +0000
ROA not before:           Tue 27 Sep 2022 17:22:05 +0000
ROA not after:            Mon 30 Sep 2024 17:22:05 +0000
asID:                     212238
IP address blocks:        154.16.77.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.mft
                          rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Fri 19 Jul 2024 00:06:32 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2502 (0x9c6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F3682B65AF/serialNumber=0940E638283336DE5C8C5A40A4C23B34F3F9CA53
        Validity
            Not Before: Sep 27 17:22:05 2022 GMT
            Not After : Sep 30 17:22:05 2024 GMT
        Subject: CN=63333142-578d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:d1:a6:29:a6:7e:9f:17:09:c0:55:ef:f7:59:
                    0e:33:b0:05:f3:9a:7c:d3:fd:e0:33:f0:15:58:8b:
                    47:91:6d:fc:b6:9f:8c:82:8d:4b:5a:3d:72:b9:93:
                    78:6c:96:96:b5:8b:5c:77:90:ea:9e:4d:12:82:8a:
                    fc:f3:5d:0e:d4:a3:4d:2a:c2:15:55:0e:b9:68:9a:
                    3c:e4:54:25:ec:34:1d:b1:20:e1:a7:03:b4:61:be:
                    54:74:d3:0f:ba:cd:b3:04:99:4a:5f:75:e7:e6:72:
                    f5:2c:0e:30:57:15:cc:40:c5:34:0f:ac:ed:8a:d4:
                    04:8e:d9:9d:d8:29:2a:5e:37:f3:05:fa:ad:b2:4b:
                    c7:83:e2:ba:a6:c9:74:dc:a0:0d:72:49:a3:83:b1:
                    31:35:0a:c1:35:10:b5:80:10:29:0c:c3:67:6f:cc:
                    a9:a5:fb:02:78:a5:3c:58:ab:39:6e:73:66:32:a6:
                    d9:2b:07:5b:e9:0c:9b:9d:7c:3e:51:00:f0:4d:f2:
                    70:39:c3:4c:58:78:d7:31:bf:7e:ce:5f:15:88:01:
                    e6:07:c8:fe:ec:b5:13:9b:bb:cb:d1:3d:b2:a4:f9:
                    06:ff:d5:79:44:28:dd:7a:70:b8:7b:02:8b:91:40:
                    b7:85:06:4f:db:21:c8:47:e2:ca:1e:e1:9c:21:fc:
                    21:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FC:3D:4E:07:3E:7B:5B:C5:EB:5A:34:A3:27:42:48:E2:BE:6A:14:B6
            X509v3 Authority Key Identifier:
                keyid:09:40:E6:38:28:33:36:DE:5C:8C:5A:40:A4:C2:3B:34:F3:F9:CA:53

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/CUDmOCgzNt5cjFpApMI7NPP5ylM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/CUDmOCgzNt5cjFpApMI7NPP5ylM.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F3682B65/4E851E34DB5511E885B29951F8AEA228/EB58F4DE3E8811ED935BEADDF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  154.16.77.0/24

    Signature Algorithm: sha256WithRSAEncryption
         30:c8:d1:33:31:44:50:5e:fe:8a:2b:4c:b7:52:f0:c6:b0:72:
         5f:52:a9:d7:c0:7d:d4:b9:90:c4:e7:37:70:7b:43:18:a2:6b:
         ae:a1:2f:0f:f9:e5:79:23:7f:9c:7b:d3:12:d4:e0:45:45:b7:
         25:6f:98:88:1b:10:42:4d:89:e4:08:3b:f2:8f:d9:74:7a:2e:
         c3:0f:72:ac:22:82:c4:62:08:8b:14:5d:58:63:a8:4f:1d:a8:
         2a:bd:12:6d:30:c7:57:9c:e8:63:4c:fb:6a:26:1a:af:9e:51:
         2a:5e:b4:4e:8a:b4:b1:51:1c:9c:d4:71:5e:58:b1:e7:5f:d5:
         7f:fa:d6:ac:ea:96:79:c0:17:35:47:9b:0c:a0:52:7b:56:5d:
         b8:0b:0c:aa:bb:e4:c4:f1:4a:e4:f9:24:ae:3a:1f:3b:d9:6f:
         e8:ec:5b:3d:ce:33:98:10:e3:0b:2b:20:03:71:8f:4f:e7:60:
         1d:2d:ee:04:d5:c1:0c:17:eb:15:ae:2c:da:45:cf:4c:f9:ad:
         a5:16:88:0d:95:95:a9:bc:e8:7a:fe:7d:28:45:2f:e4:1b:36:
         8b:ed:31:83:58:8b:81:7d:45:b4:0b:38:11:63:2b:ca:21:5b:
         a5:a0:c3:dc:b0:2d:c8:fa:74:b8:ae:27:b5:58:54:11:4d:e8:
         3b:81:72:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 17 03:32:55 2024 by rpki-client on console-fra.rpki-client.org