Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa
File:                     aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa (download)
Hash identifier:          U3P68EvfK50GL+0IjiP/ymY0IAy8amWiTONJLh12Tv4=
Subject key identifier:   6A:A7:43:EA:D6:7E:28:E9:90:D1:89:5C:3E:BC:49:B4:A7:6A:BA:E0
Certificate issuer:       /CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
Certificate serial:       03299F08
Authority key identifier: D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 31.6.52.0/22 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 53059336 (0x3299f08)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d53ece71ef6ebf55bb7b87e50665ba11fdc77f08
        Validity
            Not Before: Jun  9 05:43:03 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=6aa743ead67e28e990d1895c3ebc49b4a76abae0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:ab:e2:c8:05:e1:6d:d7:34:9c:8e:99:71:dc:
                    9f:63:78:83:25:03:d6:e1:cd:bf:c0:8d:23:0c:31:
                    64:da:50:94:d7:3a:98:cc:9f:e9:b4:c8:13:dc:26:
                    5e:58:ae:72:0f:28:50:6b:a1:91:7f:61:df:76:fa:
                    0f:13:7b:d0:44:ab:b9:db:70:7c:cb:96:97:38:7a:
                    a3:e3:d6:46:76:26:90:0c:70:59:8c:0e:dd:06:d9:
                    60:8c:39:33:d6:ab:9c:6a:85:b4:ca:91:40:33:08:
                    41:21:9c:f0:64:9a:ad:d8:6f:f4:c6:00:28:53:c2:
                    9c:9e:d4:bd:2a:6d:ed:07:9e:b7:f2:ea:df:bd:3d:
                    b0:61:0b:78:36:11:59:69:7a:91:9b:3f:c9:db:44:
                    d8:86:a7:19:08:0d:d5:6a:67:26:10:f1:bb:4c:40:
                    01:c9:24:c2:68:84:bd:1a:cf:9d:eb:06:b6:c1:63:
                    07:e7:59:a2:72:3d:d6:ac:f8:4f:dc:89:8a:cc:b3:
                    14:9b:3e:08:ab:ac:65:d7:f3:81:58:9a:63:f9:b3:
                    b8:54:71:aa:eb:ca:f0:79:c3:f2:6d:b2:b4:56:cb:
                    ee:c5:50:03:26:39:3a:5a:e5:1b:53:be:33:a9:46:
                    8c:34:e2:15:ba:1e:3d:7d:28:c3:a4:6c:77:c1:a9:
                    1f:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                6A:A7:43:EA:D6:7E:28:E9:90:D1:89:5C:3E:BC:49:B4:A7:6A:BA:E0
            X509v3 Authority Key Identifier: 
                keyid:D5:3E:CE:71:EF:6E:BF:55:BB:7B:87:E5:06:65:BA:11:FD:C7:7F:08

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/aqdD6tZ-KOmQ0YlcPrxJtKdquuA.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/c81669-2519-4da5-bd5d-1c2626590d28/1/1T7Oce9uv1W7e4flBmW6Ef3Hfwg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  31.6.52.0/22

    Signature Algorithm: sha256WithRSAEncryption
         58:f7:07:27:e9:04:c9:3a:a1:bf:14:32:a6:40:70:5d:23:f1:
         f1:73:0b:57:0f:e5:e8:da:a2:d3:71:96:84:28:53:54:36:82:
         c4:32:0c:44:1d:5a:77:83:7a:ad:28:cf:87:9f:82:58:6a:05:
         af:e6:a7:ad:52:d6:3c:01:a2:b2:96:26:94:48:ce:6b:fe:5c:
         89:3b:3f:8b:23:9b:0d:1d:a9:0d:01:c3:ba:be:92:97:ac:e5:
         93:c7:26:ca:16:ca:b3:1d:b2:5d:1a:6d:1f:c9:52:3f:a7:f7:
         f9:83:09:38:10:6a:78:a0:be:1f:d4:89:23:66:e4:48:17:c3:
         1b:81:d4:4c:4b:46:e4:36:84:48:26:95:7c:21:f8:7d:98:51:
         26:28:36:c3:b0:f4:89:11:75:6a:e7:b6:c7:98:c0:4b:4b:ed:
         40:5a:7a:12:82:8b:f3:f8:95:1c:f7:31:c4:b1:ba:1e:ac:b9:
         d2:ad:5c:c6:f2:53:43:4e:1e:82:1d:55:04:e2:4b:07:de:7a:
         9a:0a:12:63:79:ca:9c:6d:ed:ec:c3:98:08:f7:da:f1:fb:1e:
         85:56:ec:df:69:f1:18:25:1f:a7:de:f9:bc:80:9e:b3:b4:7c:
         b8:8e:53:8d:01:fb:bd:e7:d1:0b:52:93:fa:a5:32:d8:9c:c9:
         2b:30:b4:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 09:52:10 2022 by rpki-client.