Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/7rqfGJTXacuyHyVkyds6Dm-AHKo.roa
File:                     7rqfGJTXacuyHyVkyds6Dm-AHKo.roa (download)
Hash identifier:          JM5PDcm90Ok0DZtbbCDowYww8nvRyTB4vgYiHOQinyQ=
Subject key identifier:   EE:BA:9F:18:94:D7:69:CB:B2:1F:25:64:C9:DB:3A:0E:6F:80:1C:AA
Certificate issuer:       /CN=fba0a564634f42e82cf38388991c9e7e40052a20
Certificate serial:       949266
Authority key identifier: FB:A0:A5:64:63:4F:42:E8:2C:F3:83:88:99:1C:9E:7E:40:05:2A:20
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1-6ClZGNPQugs84OImRyefkAFKiA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/7rqfGJTXacuyHyVkyds6Dm-AHKo.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 193.3.175.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9736806 (0x949266)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fba0a564634f42e82cf38388991c9e7e40052a20
        Validity
            Not Before: Jan  1 00:51:15 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=eeba9f1894d769cbb21f2564c9db3a0e6f801caa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a5:b4:73:2b:61:54:45:1e:61:f2:ac:6e:5b:90:
                    0e:0b:60:79:e4:0a:8a:b6:b1:bb:16:b2:6c:fd:2b:
                    75:91:ba:e8:eb:da:08:7e:28:4a:60:a4:9d:f0:7a:
                    b3:06:64:77:51:e9:34:65:a5:e9:44:22:4b:80:d8:
                    88:1c:a2:6e:98:34:c6:b4:89:f9:af:5a:08:01:f0:
                    e8:91:38:95:9a:41:59:ad:7c:8f:cb:38:ba:54:0b:
                    80:60:b2:d9:8c:f2:37:5a:82:a8:a8:58:9d:92:d3:
                    12:9d:d9:bf:39:fb:f3:f3:ee:2c:79:cc:b0:68:c2:
                    f9:8a:7c:76:67:f2:93:7e:46:9f:b0:b0:a1:9c:0f:
                    d1:bb:1c:5f:d9:36:bb:9f:a7:49:81:a2:a3:b3:05:
                    04:92:97:d7:64:18:67:4a:3f:75:a6:bc:e5:1c:8a:
                    9d:17:5a:53:ee:bc:cd:5b:70:85:e1:f5:fa:03:79:
                    02:9d:8e:d8:e7:99:6c:6d:03:52:a0:44:b1:ff:79:
                    1c:9b:e1:7e:5e:08:4d:24:be:ed:2b:e9:fc:92:a4:
                    9a:c9:21:e2:ba:05:99:34:bc:c4:8e:02:b3:c9:fe:
                    31:c4:2c:6a:43:8d:98:75:ee:6e:96:80:bb:2a:d6:
                    45:30:7e:9e:5a:81:bd:b2:45:1f:a3:08:85:29:5c:
                    8f:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                EE:BA:9F:18:94:D7:69:CB:B2:1F:25:64:C9:DB:3A:0E:6F:80:1C:AA
            X509v3 Authority Key Identifier: 
                keyid:FB:A0:A5:64:63:4F:42:E8:2C:F3:83:88:99:1C:9E:7E:40:05:2A:20

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6ClZGNPQugs84OImRyefkAFKiA.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/7rqfGJTXacuyHyVkyds6Dm-AHKo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/1-6ClZGNPQugs84OImRyefkAFKiA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.3.175.0/24

    Signature Algorithm: sha256WithRSAEncryption
         68:2e:43:12:eb:fb:98:24:0a:a3:40:c8:25:f0:42:9c:f2:ad:
         24:76:ac:26:b7:d7:4f:7b:57:02:00:ef:8c:71:4f:96:62:2b:
         22:8f:58:a6:bb:2c:e2:83:1e:37:26:7f:4a:83:eb:a0:1e:d5:
         0e:2a:e8:a8:df:52:20:76:a4:91:6e:02:c8:dc:49:cb:60:1a:
         b3:6b:94:53:79:20:c5:46:eb:56:99:d0:cd:ab:05:b9:76:6a:
         f3:c4:3a:1e:4c:c8:b0:4a:ac:88:c6:f2:66:a1:5a:fe:35:33:
         f2:af:63:b1:4a:57:d6:cf:3e:56:9e:24:19:af:f6:bb:d3:15:
         f8:eb:9a:65:04:79:70:5c:57:66:ea:fc:11:bf:90:b7:fb:a9:
         be:46:c1:c4:5e:fd:c7:bf:51:f7:c0:92:85:b0:2d:8d:d8:d8:
         95:e4:2a:96:7a:0d:4e:8d:38:3f:0a:60:7f:cb:6e:fe:3d:e6:
         73:8f:00:3a:29:c8:f1:70:5a:b5:d2:06:dd:06:49:00:3d:31:
         43:43:17:da:43:4b:a9:4f:2b:94:7f:97:76:26:99:c7:aa:f8:
         1c:ca:23:7f:01:21:2e:26:c6:20:cc:ab:a7:93:af:c5:14:8b:
         36:e6:26:ca:15:05:a1:53:10:4e:f6:4c:25:23:4e:8a:60:26:
         3b:6c:cf:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 09:51:23 2022 by rpki-client.