Route Origin Authorization

$ cd rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/

$ rpki-client -vvf ED157710C47C11ECB04FC288F1222468.roa
File:                     ED157710C47C11ECB04FC288F1222468.roa (download)
Hash identifier:          KyhjnHB3GfnQ6H7+BruzTYNU8vOwhyooRLEENSmp088=
Subject key identifier:   E6:0E:31:47:BC:C7:5D:FB:90:FE:1D:70:74:58:95:F4:10:F2:28:43
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       1368
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED157710C47C11ECB04FC288F1222468.roa
ROA valid until:          Jan 30 09:48:54 2023 GMT
asID:                     139057
IP address blocks:
    1: 156.251.67.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4968 (0x1368)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: Apr 25 09:48:54 2022 GMT
            Not After : Jan 30 09:48:54 2023 GMT
        Subject: CN=62666e89-462e
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:55:24:7b:86:20:33:67:64:83:06:ab:34:48:
                    a4:44:9c:03:6e:86:90:c7:89:eb:65:72:61:a7:3c:
                    2f:ef:40:97:40:7e:bf:1e:f5:ed:90:b4:c1:a7:74:
                    34:16:75:46:18:1f:54:c7:ff:8c:58:f2:c3:b8:4e:
                    24:80:41:a1:31:ef:0d:aa:ce:6e:a0:fa:d3:34:98:
                    34:97:95:b6:8e:57:d2:32:03:70:cf:fe:59:0b:44:
                    ba:9d:ad:01:a9:3f:1f:d7:b4:79:4c:bc:f3:68:74:
                    ff:35:07:fb:9b:0e:e3:d3:ea:bd:a2:37:a8:74:06:
                    69:2a:15:17:89:ce:eb:ef:21:6a:66:05:e7:6b:29:
                    d4:c2:ea:a4:48:02:b1:ec:1e:b1:c2:4a:71:ea:c0:
                    ef:0c:51:e0:95:a3:8f:93:c8:76:38:3d:a9:89:08:
                    81:24:7f:5f:8d:f0:4e:02:f9:e6:44:0b:d2:ae:43:
                    3f:34:7d:1c:76:75:ea:67:ad:2c:7d:61:e8:4c:c6:
                    49:23:ed:af:49:4b:a7:02:36:f3:26:22:40:8e:14:
                    96:57:ea:e0:9a:12:df:da:2e:f2:bd:fc:c6:95:e8:
                    1b:2e:cd:e9:a8:ee:6a:33:0e:e8:3f:bf:9a:49:4e:
                    c5:08:32:41:0a:08:e0:83:c4:09:a1:3a:e1:bc:09:
                    90:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E6:0E:31:47:BC:C7:5D:FB:90:FE:1D:70:74:58:95:F4:10:F2:28:43
            X509v3 Authority Key Identifier: 
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/ED157710C47C11ECB04FC288F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  156.251.67.0/24

    Signature Algorithm: sha256WithRSAEncryption
         76:60:9e:2d:b8:4a:9b:7f:5a:e9:96:db:fe:1f:95:f0:ad:c8:
         fe:db:6f:fc:1c:d0:46:40:c5:a0:40:0a:47:d3:ef:52:b8:7f:
         a3:f7:05:ec:27:ac:1d:46:07:c9:4f:5d:22:b0:c0:44:27:fa:
         35:cf:86:0a:f3:a9:eb:a2:b8:fb:a4:e2:f5:1a:cc:7e:1b:00:
         9c:06:5c:ac:3d:8e:c7:d2:d9:2b:32:03:4f:10:c6:d6:4d:c7:
         a4:c2:59:6c:0d:93:27:5e:9b:79:f0:fa:ae:a9:c9:88:3e:23:
         47:eb:f0:9b:9d:69:55:68:6b:70:36:d0:0e:a9:76:8d:2d:b5:
         61:11:a7:cb:79:b2:0a:2c:c0:0a:cd:d6:9c:0b:e7:67:ad:46:
         2b:c3:79:de:b2:9d:8f:76:f2:8a:a0:39:1e:aa:88:eb:c6:2e:
         0b:23:b3:a2:a1:ce:ff:e6:95:55:34:d4:86:62:a1:a3:b0:ce:
         86:26:59:fb:7b:a9:2e:f7:d2:4d:ee:54:8f:cc:e4:c5:f3:49:
         76:bb:b6:39:88:d5:71:87:14:58:07:32:dc:6e:36:f1:46:10:
         59:f1:18:ce:67:67:43:59:9c:10:a8:18:95:45:99:dd:ac:23:
         2e:2a:81:49:b3:bd:99:6e:74:85:f0:63:2e:72:88:93:3e:9f:
         cf:60:13:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 3 19:48:35 2022 by rpki-client.