Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/1Lje4A8dt0_LOykqJe5GHkXMp1M.roa
File:                     1Lje4A8dt0_LOykqJe5GHkXMp1M.roa (download)
Hash identifier:          uDSUANNhM7gaMqylPF14rjmE32cfesLAL6XJcehh1zw=
Subject key identifier:   D4:B8:DE:E0:0F:1D:B7:4F:CB:3B:29:2A:25:EE:46:1E:45:CC:A7:53
Certificate issuer:       /CN=2c9dec8ecd012596869b51483c20e94dd9b41fc4
Certificate serial:       0103251E
Authority key identifier: 2C:9D:EC:8E:CD:01:25:96:86:9B:51:48:3C:20:E9:4D:D9:B4:1F:C4
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/1Lje4A8dt0_LOykqJe5GHkXMp1M.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 178.23.191.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 16983326 (0x103251e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2c9dec8ecd012596869b51483c20e94dd9b41fc4
        Validity
            Not Before: Jan  1 08:04:36 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=d4b8dee00f1db74fcb3b292a25ee461e45cca753
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:ea:5a:1c:50:11:cf:bd:84:ea:6a:cc:4e:04:
                    6a:7e:1d:e5:92:1e:f3:f2:77:2b:a7:73:3a:e7:a1:
                    35:18:bf:95:21:ba:a1:54:c1:cd:41:a9:e1:19:59:
                    16:80:b6:a1:a0:31:1b:b1:cb:96:93:f8:9c:6a:51:
                    eb:dc:d1:58:f0:58:eb:51:88:44:5b:d7:78:c5:9c:
                    2f:ab:24:00:5a:b8:c8:c7:e8:c4:89:71:44:36:a3:
                    42:43:bb:1e:30:cd:cf:38:e4:c9:17:4e:ee:0d:2d:
                    c3:4c:6b:f8:a2:f4:4f:1f:06:d3:b9:1b:a0:32:3f:
                    1b:0b:c5:18:cd:e0:61:39:47:42:9c:e1:fb:07:7b:
                    42:f7:7a:82:d2:b3:b4:e8:2d:9d:c7:a7:a8:d3:fc:
                    cf:3f:30:27:7f:16:37:5e:d6:62:a8:85:f1:46:fc:
                    54:c4:1e:12:4f:a3:fd:f5:c7:db:f8:71:b4:95:c6:
                    96:76:71:5f:81:7a:15:aa:b4:e0:f5:18:03:3c:14:
                    82:e0:3e:46:b3:3a:81:c6:74:3e:15:b8:44:c4:21:
                    19:cc:36:21:fb:6e:e1:c4:06:d0:81:79:93:9e:34:
                    d7:92:bb:65:43:9b:20:5c:a3:46:27:f2:8c:4a:ff:
                    51:fc:2a:de:8f:c9:73:d9:74:1a:d8:ec:c8:7d:b9:
                    9e:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D4:B8:DE:E0:0F:1D:B7:4F:CB:3B:29:2A:25:EE:46:1E:45:CC:A7:53
            X509v3 Authority Key Identifier: 
                keyid:2C:9D:EC:8E:CD:01:25:96:86:9B:51:48:3C:20:E9:4D:D9:B4:1F:C4

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/1Lje4A8dt0_LOykqJe5GHkXMp1M.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6453c0-47f8-4cf8-a2fb-524c4ef230c9/1/LJ3sjs0BJZaGm1FIPCDpTdm0H8Q.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  178.23.191.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c7:3e:ef:1f:9a:da:de:81:d0:c2:53:1a:7d:6e:8d:a3:f6:ed:
         76:13:19:fa:fc:e7:8d:15:82:9c:b3:8a:7f:0d:bc:20:5c:94:
         36:ec:85:6a:08:43:2d:9d:b7:26:f9:29:25:7d:b0:88:d6:60:
         18:7b:d1:b8:e2:aa:e6:9d:df:54:04:7b:ae:1b:dd:b0:8b:57:
         2a:2c:19:cb:71:b2:59:bb:cf:0f:08:36:86:43:4b:42:b9:49:
         e3:53:a9:62:70:0f:7f:96:32:ff:b1:f1:c1:08:ec:a2:71:6a:
         c9:e7:e0:91:b9:f2:b8:de:ca:b3:18:6f:02:81:c7:4d:dc:ac:
         56:c8:b9:df:5f:c0:0b:90:ea:22:ce:d8:43:90:c7:31:5f:ad:
         84:d2:c5:7c:07:9f:ad:73:f9:5c:69:38:8d:fe:d3:0d:9b:9d:
         af:b4:af:d8:a1:96:08:03:78:43:3a:dc:45:7a:92:40:e5:5f:
         f8:e4:e1:a9:6e:5b:f1:ac:8f:74:d4:47:2d:6d:75:23:9b:95:
         c7:4b:21:f7:4a:9c:10:36:4f:d7:10:c5:89:43:c2:a9:b1:72:
         c9:b6:4e:bc:d5:a3:5e:bf:11:85:82:71:0b:b9:58:70:91:ea:
         c6:cb:35:2f:45:b1:9e:be:cc:23:2f:1b:2f:2d:48:75:09:5c:
         3f:cc:ca:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 10:31:21 2022 by rpki-client.