Route Origin Authorization

$ cd rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/

$ rpki-client -vvf F2368528250B11ED81D362E9F1222468.roa
File:                     F2368528250B11ED81D362E9F1222468.roa (download)
Hash identifier:          ttngF/keoUoP6s4NvTVq7FSIyM1fvxRBbk0qpro4pII=
Subject key identifier:   40:A8:48:85:40:2C:88:F5:CE:11:D1:B4:53:E8:32:83:38:14:D1:A5
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       170B
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2368528250B11ED81D362E9F1222468.roa
ROA valid until:          Jan 15 06:54:32 2023 GMT
asID:                     139057
IP address blocks:
    1: 156.225.108.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5899 (0x170b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: Aug 26 06:54:32 2022 GMT
            Not After : Jan 15 06:54:32 2023 GMT
        Subject: CN=63086e2c-679f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:dd:8d:e8:c5:41:35:21:36:f5:47:e5:05:76:
                    c1:c8:5b:e0:74:f6:12:36:85:15:47:d8:c0:a8:02:
                    9f:ad:d1:3a:cb:14:1a:0a:d2:f2:de:4c:cb:1a:fa:
                    2e:e6:c9:08:f7:35:24:ee:43:e9:34:ba:ed:4f:04:
                    b1:1a:33:bc:dc:1f:01:27:30:02:c0:81:08:53:2c:
                    be:f9:42:85:a3:d3:da:56:07:85:53:7e:0c:e5:c5:
                    b4:2e:74:02:4a:b2:46:c1:d5:26:39:ad:da:7e:c4:
                    ee:23:81:16:11:31:ee:fe:b9:ce:25:86:48:b5:2f:
                    22:a3:fe:22:ca:ea:ba:84:44:39:56:de:37:e9:3c:
                    09:a2:ae:47:ff:02:f7:cd:82:b9:f8:81:b0:7c:fa:
                    65:78:2c:e9:3d:c7:cd:95:f5:6b:d8:f3:15:33:8a:
                    15:fa:2f:bd:62:46:24:74:a0:41:17:52:e9:03:80:
                    dc:01:2f:0e:db:5a:fd:c5:8e:44:48:ca:f7:f3:84:
                    7b:b5:2b:4f:11:62:fd:00:55:ba:6d:bf:5d:75:e2:
                    91:88:24:ad:f1:69:23:d1:9b:50:b2:83:4b:57:66:
                    f1:6c:b4:bd:8c:cd:7e:bd:1d:ab:12:8e:95:73:a6:
                    75:8d:b5:55:76:3e:a4:22:cb:a2:eb:fd:b3:4b:ad:
                    71:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                40:A8:48:85:40:2C:88:F5:CE:11:D1:B4:53:E8:32:83:38:14:D1:A5
            X509v3 Authority Key Identifier: 
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/F2368528250B11ED81D362E9F1222468.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  156.225.108.0/24

    Signature Algorithm: sha256WithRSAEncryption
         31:56:9c:7d:1d:35:d5:73:cc:52:f6:26:09:61:54:6d:68:b1:
         c6:a0:82:50:22:5b:be:1f:1b:08:38:a5:82:77:1b:4d:5e:85:
         2e:8f:15:ac:be:62:95:2e:31:aa:ba:41:35:39:2a:0c:17:d7:
         47:4b:5b:c9:00:92:70:c6:c9:da:48:1b:32:64:fc:0d:14:4d:
         25:99:1a:de:0c:3b:e7:77:b4:16:39:ca:dc:c3:c9:9b:59:f6:
         58:c0:0d:58:27:fd:f5:b7:e4:72:91:e1:77:65:a6:f1:9d:6d:
         90:3c:54:3a:71:71:2c:5d:43:3b:46:76:46:2b:ce:11:e2:98:
         db:44:10:e8:1e:6a:89:9b:5a:8d:ce:7e:af:c6:47:85:97:7f:
         cf:42:57:aa:77:8b:46:f9:28:8b:4b:51:7c:fe:ad:24:ca:82:
         23:d4:94:a1:00:24:c6:19:10:0d:78:b2:a6:78:c3:d9:66:1e:
         76:1c:3a:a7:96:c1:9d:3d:bd:ff:24:68:4e:37:e2:f7:73:6b:
         f9:a3:31:a1:16:fd:be:e6:a2:8a:ca:3c:09:eb:19:af:8f:02:
         1c:7e:36:e9:7a:87:0c:f6:91:3f:24:40:28:0f:b1:8d:60:b5:
         cb:7d:73:55:8d:f3:bf:94:03:4c:e7:16:ab:ba:b7:e3:85:a3:
         68:fd:88:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Dec 3 19:11:32 2022 by rpki-client.