Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa
File:                     NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa (download)
Hash identifier:          hmeowvSJ2R9wB1zLRUn98ikz0YpNMp2sZtSYj6BUxJE=
Subject key identifier:   36:6B:AA:16:AB:D6:A8:C2:7F:1D:78:D0:26:13:3F:41:C8:56:DA:6D
Certificate issuer:       /CN=be132774bbf8f4aa1f2c2fc317872199861ac904
Certificate serial:       FC8526
Authority key identifier: BE:13:27:74:BB:F8:F4:AA:1F:2C:2F:C3:17:87:21:99:86:1A:C9:04
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/vhMndLv49KofLC_DF4chmYYayQQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 193.9.25.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 16549158 (0xfc8526)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=be132774bbf8f4aa1f2c2fc317872199861ac904
        Validity
            Not Before: Mar  7 17:31:22 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=366baa16abd6a8c27f1d78d026133f41c856da6d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:1d:f6:74:1d:f4:70:55:b7:05:a0:03:7b:68:
                    3e:93:63:bb:ee:f8:08:4d:75:83:fe:94:f6:a7:0a:
                    41:af:f1:38:3c:7a:74:2e:5a:a5:3e:15:d5:32:ce:
                    59:3f:1d:d0:ba:2d:8d:1e:7d:33:4e:64:40:56:ed:
                    cc:05:39:28:55:2e:6c:0c:22:f4:e4:02:23:36:73:
                    0b:30:4a:8c:5f:33:53:7f:56:e4:0e:b4:8a:66:dc:
                    cf:d1:e0:f0:c3:fb:98:71:97:f2:04:99:10:03:82:
                    0c:b2:96:cc:cb:6c:82:20:45:1b:2e:8c:41:59:ce:
                    d9:6b:fd:21:58:6f:9f:ae:58:cd:4a:92:49:c2:dc:
                    38:25:cd:7a:e0:7a:e5:dc:ad:c1:12:6a:d1:32:ca:
                    17:e1:58:64:a6:23:41:d1:3d:c1:72:7b:20:42:13:
                    fd:c6:01:a4:f0:7f:6f:c9:f5:c8:e3:a9:2f:28:52:
                    f6:88:11:10:2f:72:8c:69:e4:eb:3f:69:42:12:ed:
                    4a:b8:84:9f:a9:70:ef:4d:bd:fc:39:ef:3d:6e:f7:
                    c1:6c:a1:fa:c0:81:7a:fc:2b:93:66:88:bf:04:71:
                    45:ab:40:ce:ec:7a:e0:5e:e3:ce:00:8a:2d:33:24:
                    9b:b8:d0:3d:72:09:7c:72:ca:58:6c:f7:7a:0a:b3:
                    dd:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                36:6B:AA:16:AB:D6:A8:C2:7F:1D:78:D0:26:13:3F:41:C8:56:DA:6D
            X509v3 Authority Key Identifier: 
                keyid:BE:13:27:74:BB:F8:F4:AA:1F:2C:2F:C3:17:87:21:99:86:1A:C9:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhMndLv49KofLC_DF4chmYYayQQ.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/NmuqFqvWqMJ_HXjQJhM_QchW2m0.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/cee4c2-e8ac-4742-bd06-e49c43f18746/1/vhMndLv49KofLC_DF4chmYYayQQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.9.25.0/24

    Signature Algorithm: sha256WithRSAEncryption
         45:d5:fa:83:2b:49:57:e7:f2:2c:69:0b:ca:44:e6:e1:be:75:
         e8:63:c1:94:b9:ef:c5:fe:c1:96:b9:ae:f5:bb:ab:b0:00:a0:
         9b:37:c6:06:1c:b3:0f:74:8a:f8:3d:a3:d4:15:f0:a9:d8:f4:
         6c:22:7f:70:7b:cf:10:c1:20:ea:8c:09:f0:cf:25:fd:32:8c:
         d3:42:3a:af:7f:1b:9d:93:5b:af:77:d3:e5:5a:37:75:a9:ef:
         08:da:1b:37:7b:b9:2d:71:aa:22:01:c8:6a:08:33:ba:56:5f:
         94:12:5c:74:fd:86:3c:94:02:2a:8c:2a:b1:7a:f2:67:ec:cd:
         a8:1a:87:fe:1f:0d:c5:ed:a5:32:6e:4f:eb:d7:0c:24:a2:2f:
         4d:3e:d8:9f:bb:01:4e:e2:bc:48:da:9c:c2:a1:2a:05:b3:ec:
         5c:5e:bc:f3:34:b7:bd:1f:7b:96:94:95:f7:41:ae:74:80:23:
         53:5c:51:f3:a8:f1:94:57:f2:8e:54:c0:e2:41:4e:07:e0:f2:
         53:43:af:83:d0:cf:b3:95:66:e9:d0:0d:e5:9d:50:c4:93:8d:
         eb:78:f0:df:fb:03:fc:6a:c3:a9:77:94:85:da:46:93:8a:e0:
         56:f2:25:95:16:41:86:84:0d:51:c1:7d:02:63:49:86:eb:cb:
         f0:7d:94:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 08:38:08 2022 by rpki-client.