Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/6zdeoM1uD9E0aCor8V3FwmGazGQ.roa
File:                     6zdeoM1uD9E0aCor8V3FwmGazGQ.roa (download)
Hash identifier:          c2i/R07/qz9vjgOeioWB54P7NXUC/IOfikoLXT12gMc=
Subject key identifier:   EB:37:5E:A0:CD:6E:0F:D1:34:68:2A:2B:F1:5D:C5:C2:61:9A:CC:64
Certificate issuer:       /CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Certificate serial:       06AC0B87
Authority key identifier: 34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/6zdeoM1uD9E0aCor8V3FwmGazGQ.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     399114
IP address blocks:
    1: 185.162.75.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 111938439 (0x6ac0b87)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
        Validity
            Not Before: Jan  1 00:56:10 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=eb375ea0cd6e0fd134682a2bf15dc5c2619acc64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:32:85:f0:09:98:19:98:7b:ab:63:45:d2:18:
                    c2:d9:41:fa:9a:85:c2:07:03:e4:aa:bb:c8:f0:f7:
                    a5:6d:5a:d4:ec:8b:74:ec:9e:e4:a1:e8:06:50:8b:
                    de:e5:a6:61:a4:59:60:2f:7f:c6:42:ae:21:fd:c2:
                    e8:b3:ef:db:5e:4d:07:e9:ee:55:25:fd:45:62:6e:
                    d6:d6:b3:e4:a6:ee:60:4e:70:59:4a:7a:75:e7:b7:
                    e5:af:ad:af:07:0e:27:2d:19:4c:3e:ef:dc:f9:60:
                    c5:d8:8d:df:ed:d6:1b:d0:ce:c3:aa:1c:6e:60:f7:
                    93:b3:ff:6b:1c:6c:ce:18:fe:ea:17:3f:af:52:6c:
                    d6:bf:b9:a2:89:ef:82:61:97:cc:eb:12:1f:b6:28:
                    7c:b2:1f:f6:a9:8a:9b:e8:27:6f:6a:8a:cf:70:8c:
                    ee:7d:75:89:83:99:af:0a:ef:f9:3e:15:f0:a2:00:
                    e1:ac:2d:cb:56:ca:9a:3e:a6:aa:ef:28:e3:74:ae:
                    5c:b9:42:74:b1:85:7e:c6:59:ed:28:43:ba:d2:56:
                    a3:b8:39:e2:a5:89:ec:37:77:30:27:8e:83:37:0e:
                    88:cb:51:ae:a1:81:30:42:94:15:e4:c4:4a:cc:05:
                    7f:88:19:d4:92:97:f3:ea:34:23:2d:ed:a5:bd:12:
                    3f:83
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                EB:37:5E:A0:CD:6E:0F:D1:34:68:2A:2B:F1:5D:C5:C2:61:9A:CC:64
            X509v3 Authority Key Identifier: 
                keyid:34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/6zdeoM1uD9E0aCor8V3FwmGazGQ.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.162.75.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4f:8d:d9:5f:e9:43:67:21:09:94:fb:ea:5d:bb:85:73:31:56:
         df:e7:35:84:7c:a1:e2:d7:f9:90:c8:39:f5:b1:89:05:30:2b:
         1b:7f:b8:1f:b7:8f:de:d6:68:b4:e7:b0:fb:1e:7b:66:43:59:
         94:36:d3:20:3d:96:81:21:9f:c7:cb:43:75:f7:44:6c:c4:38:
         53:3c:39:06:8b:7e:2d:e8:08:f2:dd:ef:01:66:e3:26:43:49:
         2c:ea:f2:d5:a4:11:fa:5e:30:38:a7:e7:81:10:cf:be:1c:7c:
         56:b8:7f:95:b0:c0:27:2f:99:ae:0d:3c:6f:9c:c0:07:8d:3a:
         f3:f4:66:16:85:93:e5:3f:13:1a:dd:1f:5f:f5:60:c5:c8:36:
         6f:40:fc:ad:f1:56:98:49:59:9a:81:40:de:3e:45:8e:a9:8a:
         50:79:50:07:5d:ca:f6:cf:56:64:3d:0a:05:54:9d:6e:a5:b1:
         06:ea:ac:98:aa:2b:90:84:4a:f3:63:5d:77:c8:ab:7e:40:d8:
         79:00:dc:ea:9d:29:11:49:89:c7:e8:05:c7:34:27:af:65:56:
         84:e0:50:a1:a1:d4:d5:38:84:2a:7b:1b:4e:b4:d6:59:97:ce:
         ac:14:48:d9:f3:75:b1:94:b3:89:d0:a2:62:a7:02:e9:1c:ea:
         93:26:4c:47
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBqwLhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDA2ZDJjNDM5Y2NiY2I3OGE4MmQ1Y2IyYjRjM2ZmNmU5OTM0Yjk2MB4XDTIyMDEw
MTAwNTYxMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWIzNzVlYTBjZDZl
MGZkMTM0NjgyYTJiZjE1ZGM1YzI2MTlhY2M2NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAyhfAJmBmYe6tjRdIYwtlB+pqFwgcD5Kq7yPD3pW1a1OyL
dOye5KHoBlCL3uWmYaRZYC9/xkKuIf3C6LPv215NB+nuVSX9RWJu1taz5KbuYE5w
WUp6dee35a+trwcOJy0ZTD7v3PlgxdiN3+3WG9DOw6ocbmD3k7P/axxszhj+6hc/
r1Js1r+5oonvgmGXzOsSH7YofLIf9qmKm+gnb2qKz3CM7n11iYOZrwrv+T4V8KIA
4awty1bKmj6mqu8o43SuXLlCdLGFfsZZ7ShDutJWo7g54qWJ7Dd3MCeOgzcOiMtR
rqGBMEKUFeTESswFf4gZ1JKX8+o0Iy3tpb0SP4MCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTrN16gzW4P0TRoKivxXcXCYZrMZDAfBgNVHSMEGDAWgBQ0BtLEOcy8t4qC
1csrTD/26ZNLljAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05BYlN4RG5NdkxlS2d0WExLMHdfOXVtVFM1WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDEvMGEzYTBmLTYwZjgtNGExYy1iYmEwLTdiODgwYzA2MzM2Ny8x
LzZ6ZGVvTTF1RDlFMGFDb3I4VjNGd21HYXpHUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEv
MGEzYTBmLTYwZjgtNGExYy1iYmEwLTdiODgwYzA2MzM2Ny8xL05BYlN4RG5Ndkxl
S2d0WExLMHdfOXVtVFM1WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALmiSzANBgkqhkiG9w0BAQsFAAOC
AQEAT43ZX+lDZyEJlPvqXbuFczFW3+c1hHyh4tf5kMg59bGJBTArG3+4H7eP3tZo
tOew+x57ZkNZlDbTID2WgSGfx8tDdfdEbMQ4Uzw5Bot+LegI8t3vAWbjJkNJLOry
1aQR+l4wOKfngRDPvhx8Vrh/lbDAJy+Zrg08b5zAB4068/RmFoWT5T8TGt0fX/Vg
xcg2b0D8rfFWmElZmoFA3j5FjqmKUHlQB13K9s9WZD0KBVSdbqWxBuqsmKorkIRK
82Ndd8irfkDYeQDc6p0pEUmJx+gFxzQnr2VWhOBQoaHU1TiEKnsbTrTWWZfOrBRI
2fN1sZSzidCiYqcC6RzqkyZMRw==
-----END CERTIFICATE-----
Generated at Wed Dec 7 16:11:28 2022 by rpki-client.