Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa
File:                     5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa (download)
Hash identifier:          HV4ohgBCfFS4F5ngAcRyefR7xbBJOBU+/GNam54sFgE=
Subject key identifier:   E4:4D:77:BF:27:F5:5B:68:6A:64:D6:21:29:B7:A4:1B:A1:70:E0:EA
Certificate issuer:       /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial:       046ED92D
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     140224
IP address blocks:
    1: 193.227.121.0/24 maxlen: 24
    2: 45.153.8.0/23 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 74373421 (0x46ed92d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
        Validity
            Not Before: Jun  1 12:35:21 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e44d77bf27f55b686a64d62129b7a41ba170e0ea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:1a:06:b7:9a:2c:b2:01:54:fd:54:75:ba:c7:
                    c7:1f:d0:aa:ed:e0:fd:6c:3b:15:2c:2d:90:20:46:
                    5e:b2:fd:4f:25:cf:c2:10:04:9d:14:55:21:c1:d1:
                    84:31:27:ec:47:22:69:dc:46:db:b5:2f:ab:ce:49:
                    51:10:7b:53:1e:fd:72:bf:2d:54:cf:7c:dc:d1:f1:
                    a1:7b:0a:3a:b5:b5:6f:52:26:c1:3c:6d:31:6c:8e:
                    53:a6:99:ed:d4:0c:56:46:d1:55:fe:f8:8c:43:b1:
                    48:e6:50:83:1a:24:19:7a:11:ef:e4:c2:22:7d:45:
                    43:60:42:a3:26:36:09:85:9c:c6:14:98:54:49:d8:
                    f8:01:4b:3d:cb:06:bb:f2:f1:97:26:d4:33:15:1e:
                    28:0c:50:8e:13:7b:a6:27:47:05:ee:62:63:34:e1:
                    c2:2f:58:60:65:74:67:3d:57:12:71:d6:f1:02:5f:
                    df:e9:cb:f5:39:e7:f9:98:34:be:8f:5a:71:f6:b8:
                    c6:6e:c8:2e:0a:32:24:a6:b8:e8:a3:fa:0c:42:6f:
                    59:3e:61:4a:34:dc:ac:a4:78:c0:83:53:2a:79:3b:
                    65:9b:94:b5:3a:bf:a6:d0:eb:c8:93:3b:f2:c1:dc:
                    f7:70:3e:aa:02:04:b0:11:db:48:74:87:2c:96:36:
                    07:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E4:4D:77:BF:27:F5:5B:68:6A:64:D6:21:29:B7:A4:1B:A1:70:E0:EA
            X509v3 Authority Key Identifier: 
                keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/5E13vyf1W2hqZNYhKbekG6Fw4Oo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.153.8.0/23
                  193.227.121.0/24

    Signature Algorithm: sha256WithRSAEncryption
         2a:8b:e8:26:e2:46:fa:d2:97:ee:05:7c:92:81:e2:eb:25:4d:
         2d:1a:77:9f:fa:0b:4b:a2:13:99:d3:db:4e:95:1d:3e:5d:96:
         65:df:fb:9f:e3:c3:ab:43:92:89:d2:bd:12:95:9b:73:b9:b8:
         13:2f:c5:87:15:43:a0:45:d3:e0:13:c0:72:ed:08:3f:0f:1b:
         16:18:c4:58:a8:b7:b5:d6:a7:95:27:9a:6b:86:28:d1:dc:9b:
         bf:f0:51:40:62:66:3f:50:37:58:3a:80:ca:d1:dc:9b:5a:31:
         6b:78:ef:f1:cd:a5:72:28:cf:66:42:11:b7:af:16:6b:39:39:
         ea:d5:18:a0:67:52:ad:f8:bd:f1:7b:93:03:40:3a:8b:0f:f4:
         53:db:9b:87:0a:bb:ce:cf:61:45:77:d6:3c:8f:94:27:e2:6c:
         d3:43:e2:8a:5f:bb:ae:81:cb:cb:83:0b:b2:43:6f:6c:f8:9e:
         dd:10:f8:4c:2a:4e:ac:2e:18:c2:d9:6f:bd:48:38:a5:7d:22:
         45:0c:c0:12:02:10:1d:0b:07:24:e5:f3:e5:db:ca:d7:e7:d3:
         9d:87:69:89:f0:52:63:d3:ed:1a:49:3b:86:00:01:eb:56:c8:
         df:a6:fe:b3:48:f1:07:7b:85:b3:d3:5e:06:8f:3f:33:80:ed:
         11:d7:e0:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 7 16:51:02 2022 by rpki-client.