Route Origin Authorization

$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63D9E8E4328A11F088D61694DAE4EC9C.roa
File:                     63D9E8E4328A11F088D61694DAE4EC9C.roa (raw, json)
Hash identifier:          EfYi6YZz++cgdRkK9tVpApi9PcYlwBiyxgVlQK4Nda4=
Subject key identifier:   58:18:54:9D:F6:B7:93:DB:4B:A2:23:88:22:BE:92:D7:06:0B:2B:6A
Certificate issuer:       /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial:       015516
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access:    rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access:      rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63D9E8E4328A11F088D61694DAE4EC9C.roa
Signing time:             Fri 16 May 2025 19:17:21 +0000
ROA not before:           Fri 16 May 2025 19:17:17 +0000
ROA not after:            Sun 25 May 2025 19:17:17 +0000
asID:                     63787
IP address blocks:        45.192.180.0/24 maxlen: 24
Validation:               OK
Signature path:           rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
                          rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
                          rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
                          rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
                          rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
                          rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
                          rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires:   Mon 19 May 2025 00:26:46 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 87318 (0x15516)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F368F2D0AR, serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
        Validity
            Not Before: May 16 19:17:17 2025 GMT
            Not After : May 25 19:17:17 2025 GMT
        Subject: CN=68278f41-50b6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:e6:05:ae:df:6b:c8:45:a1:01:ea:94:65:f6:
                    2a:84:7b:e6:2f:9f:fe:f7:ce:e6:26:9a:5d:11:83:
                    2c:8f:e8:37:b6:10:53:25:cc:23:aa:01:df:cc:49:
                    3f:b3:f8:5f:0d:14:4e:ab:6e:fe:34:7b:99:c4:ec:
                    b5:52:21:c0:01:8b:79:f1:bf:50:b0:d7:8c:3e:b0:
                    cc:af:6a:9b:78:6e:89:23:fb:e3:ac:1f:3d:70:7a:
                    de:e4:4f:32:bc:74:56:dc:2f:ae:6f:67:39:0d:54:
                    be:32:45:a0:e9:9e:b8:ff:e2:67:b6:69:1b:17:f1:
                    e6:de:d8:f9:a7:14:62:4e:5b:ef:6f:26:92:f9:07:
                    6c:08:9f:1f:03:bf:d9:34:0f:27:c9:c2:3c:31:bf:
                    b5:0d:df:17:ed:ce:06:c9:12:43:b8:97:91:19:22:
                    cd:03:9a:05:92:56:28:db:2c:fc:c7:cc:ba:fd:4b:
                    f6:ec:5a:f4:29:c6:e3:ef:c6:e6:69:83:85:85:56:
                    47:98:9b:7a:d1:00:49:57:55:77:cf:7b:4d:df:da:
                    0e:19:ac:72:13:f1:9c:ba:c7:9f:96:ad:60:e7:ef:
                    51:c0:b1:76:81:c7:ff:55:ca:8b:59:a1:2f:19:00:
                    db:ad:56:fc:c9:8a:34:fe:18:16:e1:df:5f:d7:8d:
                    96:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                58:18:54:9D:F6:B7:93:DB:4B:A2:23:88:22:BE:92:D7:06:0B:2B:6A
            X509v3 Authority Key Identifier:
                keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://rpki.afrinic.net/policy/CPS.pdf

            Subject Information Access:
                Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/63D9E8E4328A11F088D61694DAE4EC9C.roa
                RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.192.180.0/24

    Signature Algorithm: sha256WithRSAEncryption
         80:82:45:68:8f:6d:a4:c2:74:0a:99:ad:44:8e:64:b1:11:4d:
         60:0d:1d:aa:8b:86:9b:d2:25:77:41:1d:5b:98:3b:7b:e1:3f:
         59:5b:95:b0:80:a9:e9:fe:3c:ba:22:8f:57:ea:cb:4f:62:17:
         6d:69:04:af:8f:71:8c:6c:80:ca:df:f5:32:ae:c8:1b:ae:66:
         18:f5:55:ef:1e:64:48:be:e0:28:e4:17:0a:05:18:04:46:8b:
         c6:c5:a0:ec:20:c3:07:69:b5:e3:77:55:d2:65:b8:ff:ba:dd:
         23:38:43:9b:b9:97:47:34:2b:29:64:09:8a:20:ad:14:b8:21:
         67:4b:29:55:7e:06:da:9f:bb:b1:c2:26:de:39:0e:0a:d9:69:
         81:1d:8b:5c:06:67:38:b6:b2:e1:06:c3:81:3b:cb:71:33:6f:
         5e:42:a4:28:21:aa:3e:02:1e:fe:c4:a5:b5:00:7b:69:cb:27:
         ca:3e:5d:dd:fa:f7:68:9d:ea:7f:72:41:20:21:c4:bf:2e:c4:
         6f:61:7f:fc:31:c0:b0:39:36:84:63:71:48:1e:dd:1f:de:a8:
         60:90:a5:e1:30:7d:4b:71:e7:e7:8d:36:44:21:1f:9e:76:2f:
         e0:89:cd:7c:17:8a:9f:a0:63:78:c0:ab:b0:63:48:2c:cb:87:
         da:15:f2:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 17 08:20:22 2025 by rpki-client