Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B89DB2243E3211EDA5A31B8DF1222468.roa
File:                     B89DB2243E3211EDA5A31B8DF1222468.roa (download)
Hash identifier:          IU6HqHdS3oUrwegoE/VoFbHfhOezJBFGzrcWHWozmUE=
Subject key identifier:   54:01:8E:16:23:EB:B2:6A:D8:33:D7:DC:22:84:A7:37:DA:13:B4:EC
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       1895
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B89DB2243E3211EDA5A31B8DF1222468.roa
ROA valid until:          Mar 30 07:05:05 2023 GMT
asID:                     20473
IP address blocks:
    1: 156.236.78.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6293 (0x1895)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: Sep 27 07:05:05 2022 GMT
            Not After : Mar 30 07:05:05 2023 GMT
        Subject: CN=6332a0a4-4d06
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:31:cb:92:b4:f7:c0:d7:35:f9:4a:c7:98:6c:
                    30:05:c2:8e:11:8f:b3:fe:e0:a0:0e:40:84:7a:d3:
                    90:b3:f2:b1:4d:f0:e8:92:2c:6d:ee:e7:72:70:5f:
                    a1:2a:d7:25:6a:57:f8:6c:dc:5a:44:d0:43:6a:e9:
                    eb:e2:67:7e:c5:24:51:64:1f:c5:c4:3a:38:4e:7c:
                    e2:97:74:50:a4:83:59:d8:91:51:3a:40:ff:6b:18:
                    c3:e5:03:69:92:cf:bc:cb:79:95:bc:3f:aa:11:3d:
                    5c:75:cc:5d:de:5d:f5:9a:d2:17:ec:36:96:73:b1:
                    f1:2f:d0:b6:6b:15:6d:6c:ad:57:65:b8:ed:f0:3e:
                    77:53:16:a9:7f:d4:38:a3:94:d1:09:1b:bc:2a:40:
                    de:28:59:c1:09:0c:f6:5d:64:64:2b:3d:a7:8a:57:
                    8c:b4:3a:0d:bc:92:4c:b3:fc:d3:ee:f8:93:97:43:
                    5c:96:8b:bd:f0:2a:d3:0b:33:b3:31:8f:e6:a7:73:
                    c5:f0:17:3c:6d:6b:bd:51:d8:f7:5c:37:f4:c5:67:
                    5c:d5:d3:9b:11:ea:1e:a0:ef:56:e3:e4:b0:91:af:
                    37:09:90:e0:66:f0:9e:00:3a:8b:fa:13:12:5f:46:
                    4f:db:ef:32:19:68:58:41:fb:16:3b:ef:f6:9a:b9:
                    b7:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                54:01:8E:16:23:EB:B2:6A:D8:33:D7:DC:22:84:A7:37:DA:13:B4:EC
            X509v3 Authority Key Identifier: 
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/B89DB2243E3211EDA5A31B8DF1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  156.236.78.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a8:1f:16:92:56:00:14:b4:88:32:9e:a4:d0:f2:2b:5c:3b:34:
         06:83:b9:05:9d:9d:b1:4e:62:77:0a:bc:71:31:df:0c:23:89:
         2a:3c:cc:d6:2e:99:3b:ce:92:61:38:aa:5c:6c:43:e3:60:74:
         14:1a:97:d5:8b:70:86:f2:33:80:75:9f:cb:ec:af:66:1b:27:
         95:e7:18:04:8d:47:23:c9:81:1b:bd:56:ec:e2:49:3f:b9:72:
         ed:2c:4f:7b:f0:0f:c8:93:bb:27:f4:a9:8a:2f:38:f0:7f:91:
         6e:1a:22:93:70:7f:cb:0f:e3:c6:06:ff:1e:83:75:11:f8:29:
         ec:b7:f9:c1:da:84:64:aa:9d:e4:3b:65:11:6e:24:50:4e:a9:
         bc:d8:23:fb:2d:58:01:ff:39:f0:b5:11:c8:e6:ba:13:d4:56:
         df:d5:ec:8b:ec:70:8d:fd:12:b8:1e:56:a9:13:58:ce:32:b1:
         be:36:f9:91:2c:f0:85:46:50:77:c8:1e:68:9c:a8:e6:8a:d5:
         91:75:ca:da:3c:17:41:4e:16:27:7b:8b:87:74:2e:ad:bb:b8:
         a6:cc:9f:05:11:47:4f:03:2e:98:51:60:f3:a2:c8:f7:a5:48:
         a2:b5:95:20:4d:db:23:76:07:a4:ca:27:69:7d:c7:8a:b7:ec:
         e0:6b:67:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 9 01:28:33 2022 by rpki-client.