Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/6038DDEA881411ECBA3737825A40D577.roa
File:                     6038DDEA881411ECBA3737825A40D577.roa (download)
Hash identifier:          D3E/phwASTl46rPTfsjs3+lxddCBjYvgyEb/0l1mex4=
Subject key identifier:   EA:E9:06:58:40:A4:5F:EB:75:23:FD:49:E0:14:F0:09:87:00:86:EA
Certificate issuer:       /CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
Certificate serial:       0177
Authority key identifier: E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/6038DDEA881411ECBA3737825A40D577.roa
ROA valid until:          Feb 07 12:49:20 2032 GMT
asID:                     400377
IP address blocks:
    1: 41.216.180.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 375 (0x177)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F369AFDDAF/serialNumber=E7C680360024EDB9F3451DC913EA33059BC904A5
        Validity
            Not Before: Feb  7 12:49:20 2022 GMT
            Not After : Feb  7 12:49:20 2032 GMT
        Subject: CN=62011554-71f4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:77:1b:a6:67:a1:d6:e3:bf:9e:a0:79:db:4a:
                    66:e4:45:a8:07:f2:15:b2:d9:97:fa:13:dc:3f:4b:
                    e0:3d:7d:28:8a:cf:ff:6b:80:cf:23:02:c6:99:10:
                    a8:91:80:c2:a9:1f:f7:4d:b0:12:ae:e8:10:8d:43:
                    96:9e:70:3b:c7:63:1d:d3:18:86:7a:36:bd:35:24:
                    b5:4e:e2:d9:1e:ec:6d:0b:bb:84:0f:ba:d2:52:12:
                    49:2a:09:35:da:07:44:74:57:fe:14:aa:53:b4:f5:
                    54:5b:67:16:d2:1c:79:1b:fd:06:92:13:07:fc:da:
                    04:9b:5d:49:27:f4:60:ac:5a:a0:20:fa:5e:3f:53:
                    ea:b1:d9:50:e3:5a:4d:6c:a7:c3:ac:17:e0:df:30:
                    5b:2d:04:1f:20:2f:1f:38:9f:1e:f3:af:0c:29:58:
                    33:a0:a0:ca:c9:f4:41:77:2e:a5:d1:71:ef:e5:14:
                    0e:41:83:bb:08:f5:a6:70:91:84:7a:7a:33:aa:be:
                    f2:be:b0:6b:f2:a1:f8:b9:5a:25:20:68:76:98:fc:
                    96:60:e0:01:5e:03:e1:7f:d9:09:e8:ae:6d:fd:4d:
                    f2:ae:58:bb:e7:ca:bb:6b:83:e0:5b:cf:6b:fe:52:
                    49:f4:a4:95:b9:8b:41:41:1c:26:46:31:d3:7a:8c:
                    e1:77
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                EA:E9:06:58:40:A4:5F:EB:75:23:FD:49:E0:14:F0:09:87:00:86:EA
            X509v3 Authority Key Identifier: 
                keyid:E7:C6:80:36:00:24:ED:B9:F3:45:1D:C9:13:EA:33:05:9B:C9:04:A5

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/58aANgAk7bnzRR3JE-ozBZvJBKU.crl

            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/58aANgAk7bnzRR3JE-ozBZvJBKU.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F369AFDD/3DB42DDAC1F211EBBA2FF03EF8AEA228/6038DDEA881411ECBA3737825A40D577.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  41.216.180.0/24

    Signature Algorithm: sha256WithRSAEncryption
         24:06:8b:05:b3:86:26:98:6f:5f:74:e0:b1:ee:de:0c:17:19:
         df:85:a1:9b:ff:77:c3:e5:77:cf:b9:e9:9a:28:bd:b6:02:4c:
         f0:51:50:59:4f:08:d0:bf:a7:1b:da:65:23:60:bd:aa:f1:0f:
         63:4c:43:c7:f2:6d:9f:0a:c4:2b:16:e8:86:0d:ec:30:25:75:
         3e:65:dc:2b:73:8b:c3:bd:f4:c0:c1:85:1b:b5:67:2a:40:a2:
         71:c7:8c:a4:9d:b7:e2:88:89:27:7f:fd:eb:71:f6:df:e8:35:
         8b:6f:97:78:85:21:8b:02:07:ab:e5:17:1a:62:a7:b7:0d:ff:
         f5:f2:ac:cf:de:ec:00:68:6f:af:9e:88:3f:ac:fc:e0:70:40:
         a5:49:91:a7:ff:00:a2:76:ff:36:91:a3:c5:f4:35:e3:43:60:
         39:41:9b:cc:05:b9:dd:2a:b3:75:da:ff:47:2a:b9:cc:58:a3:
         dc:d8:17:ab:5d:5e:25:15:ea:e5:a6:f3:5b:6f:22:c6:7f:7b:
         9d:d5:9c:2d:bc:d1:3f:21:e1:7d:a3:8f:e3:2b:98:e5:c1:b5:
         61:66:d8:5f:aa:3d:5e:36:87:36:7e:86:8c:ab:8f:46:c9:a1:
         64:21:88:28:eb:d8:71:64:2e:4a:b8:e8:68:cb:75:63:cd:76:
         7a:70:7d:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 7 03:04:56 2022 by rpki-client.