Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F85210DF7A11EEADAE2163775412E6.roa
File:                     F0F85210DF7A11EEADAE2163775412E6.roa (raw, json)
Hash identifier:          m0RWMX7v0YPMBtJmD4urH5Jw5QGGn+MB649KVDVAkvs=
Subject key identifier:   54:CE:D4:17:A9:81:55:84:0D:C2:63:15:C1:58:54:B9:43:FE:18:30
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       7E0F
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F85210DF7A11EEADAE2163775412E6.roa
Signing time:             Mon 11 Mar 2024 07:42:42 +0000
ROA not before:           Mon 11 Mar 2024 07:42:38 +0000
ROA not after:            Tue 11 Mar 2025 07:42:38 +0000
asID:                     18233
IP address blocks:        45.199.177.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
                          rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
                          rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
                          rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sat 23 Nov 2024 00:21:37 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32271 (0x7e0f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: Mar 11 07:42:38 2024 GMT
            Not After : Mar 11 07:42:38 2025 GMT
        Subject: CN=65eeb5f2-7f13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:f2:54:fd:8f:36:80:86:83:5a:f1:33:0a:f0:
                    0a:eb:b7:e6:03:99:9f:5c:2c:ca:2a:06:e0:b5:68:
                    6c:dc:d1:07:c0:97:94:08:51:a7:db:e9:4c:f9:58:
                    b2:45:b7:ba:91:22:83:69:b1:d1:7e:a1:e9:c2:d7:
                    29:64:bc:84:27:69:b5:a7:2a:83:c0:92:b9:85:63:
                    74:a1:8f:82:8a:8f:17:09:aa:f9:49:48:d9:68:aa:
                    24:22:18:d5:7a:9d:6b:0f:ad:07:c0:5a:76:f1:07:
                    cb:54:76:78:3f:27:3f:06:06:54:20:94:a4:1f:21:
                    d0:72:25:09:30:fa:05:77:6e:99:bb:a4:93:69:3c:
                    3a:a0:7a:14:68:d1:58:44:0f:a4:59:f7:9c:8a:2a:
                    05:7d:c6:73:4f:21:86:f5:0f:38:5c:c8:cd:0c:6f:
                    c5:45:f8:22:eb:14:e4:c6:7d:60:eb:a5:36:12:d4:
                    74:82:ea:95:79:b7:a6:7c:05:7b:e1:41:71:8c:0e:
                    68:c2:54:be:47:80:4b:a0:5f:83:f9:24:0c:c7:89:
                    ae:20:38:7f:7c:30:8d:80:ef:e5:4f:69:aa:1a:b2:
                    e8:32:b0:f3:7d:f2:da:e9:2f:93:37:5b:93:aa:2f:
                    35:54:31:f4:15:78:25:74:6f:4c:bf:5d:af:a5:2d:
                    49:d5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                54:CE:D4:17:A9:81:55:84:0D:C2:63:15:C1:58:54:B9:43:FE:18:30
            X509v3 Authority Key Identifier:
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F0F85210DF7A11EEADAE2163775412E6.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.199.177.0/24

    Signature Algorithm: sha256WithRSAEncryption
         12:41:2d:62:2a:41:1e:74:45:e2:cf:44:b1:01:6d:1f:f3:3f:
         01:71:0e:d6:21:06:99:c2:74:12:c6:ef:4d:b6:1e:fd:24:70:
         58:93:fc:79:63:59:fd:89:39:56:2d:05:f0:9b:8e:72:63:e6:
         18:99:bb:60:23:10:b7:44:a2:78:3c:41:98:0d:ce:31:71:e3:
         b7:8b:68:a9:60:f9:a5:d5:aa:30:2f:87:a2:ca:36:62:80:bb:
         d2:60:9d:51:42:b4:c1:a1:fe:40:e1:9b:74:d6:be:b9:10:a5:
         5a:cf:c2:a3:0e:d0:d6:6d:21:aa:0c:7d:29:82:83:e9:5d:51:
         41:e6:c2:4f:64:cc:6e:47:a0:dd:3e:05:a2:6e:33:0e:8b:f0:
         85:94:7c:f5:9c:49:8b:5f:a6:e4:8e:b4:7c:20:c5:11:94:17:
         af:05:ba:f4:d5:f4:9c:6e:cc:9e:61:ea:68:73:7a:32:c1:09:
         7a:bd:6e:fd:8f:1a:fe:5b:2a:d1:32:66:06:a3:7d:0c:27:73:
         d3:14:71:a5:ea:4e:8a:02:c2:f6:3b:a9:37:50:92:c8:15:c6:
         e6:aa:cf:97:1d:01:ce:f7:1e:0a:f1:dc:c5:28:00:6c:b9:29:
         86:b0:da:9d:e1:eb:29:e7:54:26:25:8a:ac:6a:25:71:29:c7:
         c5:ec:18:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:53 2024 by rpki-client on console-fra.rpki-client.org