Route Origin Authorization

$ cd rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/

$ rpki-client -vvf 5EB848B0C47E11ECB46C958DF1222468.roa
File:                     5EB848B0C47E11ECB46C958DF1222468.roa (download)
Hash identifier:          MxxBQ7rQjHesti/AD9JZzpGGVwX4kI2jigOCbZ4IkSY=
Subject key identifier:   77:FB:7B:62:22:1B:20:AA:1A:36:F6:87:63:94:89:01:27:97:30:0B
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       1394
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EB848B0C47E11ECB46C958DF1222468.roa
ROA valid until:          Jan 30 09:59:13 2023 GMT
asID:                     139057
IP address blocks:
    1: 156.251.77.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5012 (0x1394)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: Apr 25 09:59:13 2022 GMT
            Not After : Jan 30 09:59:13 2023 GMT
        Subject: CN=626670f5-194c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:03:6f:0b:c5:ec:0d:6b:1d:5b:0a:38:1c:63:
                    73:91:6c:78:9a:b8:40:84:84:ba:88:92:fb:8b:4f:
                    e1:06:e7:8c:0f:34:e5:9b:d0:50:de:e9:3e:e4:d1:
                    62:13:d9:64:0b:c8:79:e5:d8:0c:08:28:bb:3e:73:
                    41:35:ff:7a:fa:ad:10:dd:07:96:d3:89:a4:f4:8a:
                    5f:22:ce:bc:02:ff:be:e1:b4:2d:18:7a:30:0f:44:
                    2c:f0:ff:7a:c3:9b:3d:35:d0:b9:ee:82:f2:b0:72:
                    30:3d:3e:1f:4d:9b:f4:7b:35:c0:d8:19:46:dc:e0:
                    0e:0e:58:9b:c4:00:b6:1d:98:ae:5a:f5:56:ce:a5:
                    e4:9d:4e:9a:14:9c:7c:df:a1:0a:c7:72:56:88:30:
                    b5:c4:fe:d0:c7:c5:91:66:ba:bf:43:19:f0:6f:df:
                    97:5d:87:a8:a3:a1:8c:06:15:9a:81:e4:af:78:c4:
                    26:a8:1a:19:59:d8:3a:3e:48:d5:ea:ea:47:6f:76:
                    c5:84:48:27:ef:12:c1:bc:1e:d7:24:c0:a6:f3:47:
                    b8:5d:7b:1f:56:8b:ed:3b:65:16:43:98:fb:a0:46:
                    b8:8b:78:56:7b:2e:2b:3c:fa:8f:9d:97:d1:a1:24:
                    4e:ac:7b:7c:19:1d:77:a8:0a:aa:21:0d:a0:5a:9e:
                    35:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                77:FB:7B:62:22:1B:20:AA:1A:36:F6:87:63:94:89:01:27:97:30:0B
            X509v3 Authority Key Identifier: 
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/5EB848B0C47E11ECB46C958DF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  156.251.77.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4b:69:1e:47:7a:32:53:d7:89:94:57:64:13:56:29:b0:38:11:
         21:8d:f7:6d:56:f6:c3:ff:ae:21:35:3d:0d:3d:9b:10:da:d0:
         98:6b:fb:ff:9c:86:b5:18:c1:4d:97:67:5c:f2:fa:4e:35:51:
         e7:cd:10:ba:75:c0:1e:93:73:e6:43:98:1f:05:42:4a:97:3a:
         02:50:00:06:be:8c:0e:11:32:18:77:d2:95:3d:3e:11:d9:29:
         4f:af:f1:99:43:10:23:6c:a3:6b:9e:ae:34:cb:cd:9f:04:7d:
         49:bb:58:f2:70:f1:d8:61:18:48:09:c7:a2:71:51:c5:dd:a1:
         d3:92:6f:d5:d0:3b:19:20:f2:9f:f0:78:a6:a0:4c:c7:d8:1f:
         44:65:8f:d4:45:7e:a1:cb:25:53:30:70:5e:5f:10:38:03:18:
         b6:a7:9b:8c:62:f9:7b:47:15:6a:25:e6:d5:f1:cf:f9:e7:fa:
         e2:19:27:10:90:54:50:0c:15:0f:5a:bd:a4:4a:d1:8f:14:cd:
         14:4f:c8:cd:3b:26:f3:5e:76:19:95:db:48:67:2f:90:3d:6c:
         41:31:39:dd:d5:5d:d8:d9:70:74:0a:54:b2:31:1a:61:8f:11:
         1d:a1:2c:18:bd:8c:51:e9:c5:1b:25:d4:dd:0f:e2:2e:e4:13:
         5e:02:b0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 3 19:11:31 2022 by rpki-client.