Route Origin Authorization 

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/082A86B4140B11E5B1C0604DF8AEA228.roa
File:                     082A86B4140B11E5B1C0604DF8AEA228.roa (raw, json)
Hash identifier:          uoIo5ulrlcysIeBdAYyw1+pw3oTvCg8887Epg8RQBQ4=
Subject key identifier:   09:B5:A9:02:47:71:08:80:52:13:8E:0F:59:F9:73:D4:43:43:42:AE
Certificate issuer:       /CN=F36D8DFAAF/serialNumber=D668BECAF3CB14DB624A3425D666609BF27B52EE
Certificate serial:       02
Authority key identifier: D6:68:BE:CA:F3:CB:14:DB:62:4A:34:25:D6:66:60:9B:F2:7B:52:EE
Authority info access:    rsync://rpki.afrinic.net/repository/afrinic/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/082A86B4140B11E5B1C0604DF8AEA228.roa
Signing time:             Tue 16 Jun 2015 09:35:09 +0000
ROA not before:           Tue 16 Jun 2015 09:35:26 +0000
ROA not after:            Mon 16 Jun 2025 09:35:26 +0000
asID:                     37271
IP address blocks:        197.157.64.0/19 maxlen: 19

Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.mft
                          rsync://rpki.afrinic.net/repository/afrinic/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.cer
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.crl
                          rsync://rpki.afrinic.net/repository/afrinic/K1eJenypZMPIt_e92qek2jSpj4A.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/afrinic-ca.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Sun 24 Nov 2024 00:05:48 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F36D8DFAAF/serialNumber=D668BECAF3CB14DB624A3425D666609BF27B52EE
        Validity
            Not Before: Jun 16 09:35:26 2015 GMT
            Not After : Jun 16 09:35:26 2025 GMT
        Subject: CN=557fedcd-ada1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:24:4d:bd:cc:37:7b:3d:9a:f5:4c:01:a8:a0:
                    03:3c:ab:64:dd:ee:4c:d7:bf:bd:13:5c:34:c9:ef:
                    5c:2d:49:54:12:2c:66:cb:72:ea:19:9d:0d:2d:68:
                    87:a7:f0:c9:64:ad:9e:d3:90:7d:41:41:c3:e1:44:
                    60:40:1f:e5:35:b5:f6:72:1f:c1:45:51:22:4a:47:
                    2e:86:dc:ab:45:9a:3c:51:30:b5:c7:02:5f:19:1a:
                    ef:b3:44:7c:1a:77:67:a2:35:c9:16:bd:15:99:e6:
                    ab:4a:4a:c6:54:8f:3e:b9:7e:7f:b0:93:b7:19:9f:
                    a1:f4:82:df:48:86:c7:60:c4:d3:81:b5:3e:1c:60:
                    d4:ff:5a:cf:44:66:e2:ba:ff:3f:6b:26:25:63:97:
                    40:8c:98:42:92:33:a6:0f:0b:f1:02:97:38:ff:50:
                    f7:7a:64:64:e1:7d:2f:ec:b8:ce:66:58:26:55:81:
                    74:56:c4:ad:f0:c3:49:cb:e2:ab:10:f5:27:05:3d:
                    53:b4:7f:69:30:a7:46:59:b9:dd:8c:f0:a9:1b:ce:
                    96:06:71:dc:96:85:64:e0:88:cd:20:05:35:24:68:
                    a1:a0:94:10:60:16:50:05:12:75:d1:2e:19:96:89:
                    9e:ca:26:2c:d4:b3:b2:d3:5c:07:e0:33:24:0d:54:
                    c1:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                09:B5:A9:02:47:71:08:80:52:13:8E:0F:59:F9:73:D4:43:43:42:AE
            X509v3 Authority Key Identifier:
                keyid:D6:68:BE:CA:F3:CB:14:DB:62:4A:34:25:D6:66:60:9B:F2:7B:52:EE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/1mi-yvPLFNtiSjQl1mZgm_J7Uu4.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F36D8DFA/0E9B19BA140A11E5A7F5FC4CF8AEA228/082A86B4140B11E5B1C0604DF8AEA228.roa

            sbgp-ipAddrBlock: critical
                IPv4:
                  197.157.64.0/19

    Signature Algorithm: sha256WithRSAEncryption
         3a:92:1a:da:5e:86:76:5f:9a:7d:7e:b7:27:68:b7:62:ac:01:
         70:45:4b:92:ae:41:5e:4c:3e:a4:8b:45:e6:3b:dc:00:0a:2e:
         7a:62:95:0d:3c:63:6e:49:c7:b1:ab:f3:d7:ae:ef:87:35:e2:
         90:42:78:7f:f7:f8:de:fe:ed:62:f4:cf:09:3a:20:09:7e:30:
         a7:94:af:35:e3:90:aa:38:e6:72:96:73:75:08:08:10:c4:af:
         f9:0d:26:01:a5:38:25:8a:f7:60:34:6a:42:bc:e0:17:37:ba:
         42:42:bd:ab:e2:b2:8d:38:c8:17:e9:ba:9d:23:66:c8:63:4e:
         8b:24:61:a1:e2:b2:7c:72:f2:f2:66:dd:07:2f:6a:0a:5e:53:
         10:56:10:c7:6d:64:c9:68:de:7e:f5:d5:d4:3a:c4:b6:55:bb:
         32:36:55:48:cc:57:e6:ca:48:ed:6c:61:79:38:7a:78:17:e0:
         d6:17:ff:7e:5e:38:4e:30:00:33:d2:b5:8a:ee:2d:d1:64:52:
         be:a7:84:fd:9f:f7:03:82:d4:6b:05:31:ae:ae:f4:ff:5f:9c:
         64:7e:b4:94:bf:9f:95:e0:f5:d9:9a:aa:b9:aa:09:d5:f6:f2:
         2c:3a:23:39:55:70:4f:6e:fc:18:7c:cf:c6:9e:3f:9c:27:cb:
         e4:a7:ca:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 02:10:18 2024 by rpki-client on console-fra.rpki-client.org