Route Origin Authorization 

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/SE-SCm0IZ7j0jGIBXm3auy5FLe8.roa
File:                     SE-SCm0IZ7j0jGIBXm3auy5FLe8.roa (raw, json)
Hash identifier:          X33y/fFrta9zAEh7xBDPLjeB1WO+d5w1DXiDg8lLvuw=
Subject key identifier:   48:4F:92:0A:6D:08:67:B8:F4:8C:62:01:5E:6D:DA:BB:2E:45:2D:EF
Certificate issuer:       /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial:       018CC5DC45AA5004F227DCEB094EEF444429
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/SE-SCm0IZ7j0jGIBXm3auy5FLe8.roa
Signing time:             Mon 01 Jan 2024 16:29:56 +0000
ROA not before:           Mon 01 Jan 2024 16:29:56 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     44704
IP address blocks:        193.232.108.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 24 Jun 2024 13:01:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c5:dc:45:aa:50:04:f2:27:dc:eb:09:4e:ef:44:44:29
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
        Validity
            Not Before: Jan  1 16:29:56 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=484f920a6d0867b8f48c62015e6ddabb2e452def
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:1a:ca:9a:46:6c:55:d2:2f:f0:22:45:00:7a:
                    c1:ab:21:3d:c4:55:88:f4:0d:d6:c9:ea:c4:5c:3e:
                    9e:2a:f1:77:6c:95:fe:14:fc:5a:6d:e0:ed:a2:df:
                    01:05:11:28:0b:43:fd:f5:2d:ce:c7:4c:b3:b6:bf:
                    af:71:20:64:00:31:25:b6:4b:f9:61:a7:ef:e9:15:
                    b8:40:63:7b:42:0d:a2:58:6b:34:a1:1e:53:c2:26:
                    fa:c2:b1:ce:54:12:83:ec:fe:c8:bf:3c:13:3d:44:
                    6a:78:98:dc:bf:52:fb:08:53:4a:2c:9d:9d:a6:34:
                    83:bb:88:4d:0d:86:f2:a9:7c:ea:4f:c9:f2:31:22:
                    3c:0a:95:13:6e:db:5c:3b:37:e6:e9:69:98:c7:75:
                    65:15:e2:3b:13:f1:be:05:7d:d9:8e:da:0d:c4:fc:
                    8b:10:d4:cb:42:fe:d8:b3:58:7c:e6:75:de:a4:aa:
                    80:71:8c:ed:54:27:e8:0f:ce:89:b8:49:59:33:c2:
                    97:44:9b:fd:44:05:bd:37:89:8b:a6:40:9c:59:20:
                    49:7f:ec:7e:e5:14:92:76:e6:eb:ad:e8:bf:d3:08:
                    24:6f:5c:8f:eb:d7:bc:5c:67:dd:3e:7d:2e:c2:ce:
                    38:6e:86:ed:98:29:4a:53:dc:72:5d:6d:eb:25:ba:
                    94:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:4F:92:0A:6D:08:67:B8:F4:8C:62:01:5E:6D:DA:BB:2E:45:2D:EF
            X509v3 Authority Key Identifier:
                keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/SE-SCm0IZ7j0jGIBXm3auy5FLe8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.232.108.0/24

    Signature Algorithm: sha256WithRSAEncryption
         29:09:99:b1:90:96:d8:f0:32:8c:13:ae:91:38:a6:86:08:91:
         9a:eb:78:44:83:77:2d:a7:bf:9f:e4:cc:a4:1b:ff:5d:de:23:
         0a:2e:ed:dd:ef:72:c1:71:c1:81:85:8a:ff:b7:63:27:35:75:
         21:ec:92:74:f2:13:3d:8b:33:2d:be:08:17:3c:6a:0d:05:84:
         9d:20:db:4a:96:f3:69:1f:d3:58:64:31:ac:df:52:62:de:f8:
         08:3e:e4:50:6d:31:5c:da:b6:65:2d:2c:88:80:8b:89:b5:c5:
         1c:0c:31:88:75:06:74:8b:8a:7b:66:0c:57:60:35:a8:27:2a:
         3d:a3:07:c9:1a:70:b5:6c:59:9b:0a:6c:e2:82:64:03:10:6d:
         45:19:f6:86:f4:4d:fe:42:69:bb:27:65:6c:ef:63:1d:e5:83:
         d0:dd:7d:70:42:10:68:92:be:23:ea:03:89:1c:67:d8:7b:6f:
         e6:12:f3:0f:51:79:ce:46:cc:37:4b:b8:cd:af:ca:ce:03:86:
         75:74:43:da:15:65:ad:ff:1c:a2:27:fa:9b:0b:74:ea:e9:33:
         55:f2:11:34:f1:ff:44:e1:c6:ec:05:e5:80:ef:20:89:66:3a:
         14:b5:a1:a4:8c:4d:48:9c:e5:93:f5:f4:72:c6:11:65:31:67:
         4e:84:b8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 23 18:35:00 2024 by rpki-client on console-ams.rpki-client.org