Route Origin Authorization 

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/r80lYiODBjCzGD8xCTkBdGs8Axw.roa
File:                     r80lYiODBjCzGD8xCTkBdGs8Axw.roa (raw, json)
Hash identifier:          VuBLO56hEJnLD1ETFn9CwhRywOO6hCYjr8gtamR8aRI=
Subject key identifier:   AF:CD:25:62:23:83:06:30:B3:18:3F:31:09:39:01:74:6B:3C:03:1C
Certificate issuer:       /CN=1339b9a8946d26be2d8fffe6c1e3c22cb93e0486
Certificate serial:       018CC8019CCBEF6BE853CCA0F0557EB92D35
Authority key identifier: 13:39:B9:A8:94:6D:26:BE:2D:8F:FF:E6:C1:E3:C2:2C:B9:3E:04:86
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Ezm5qJRtJr4tj__mwePCLLk-BIY.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/r80lYiODBjCzGD8xCTkBdGs8Axw.roa
Signing time:             Tue 02 Jan 2024 02:29:57 +0000
ROA not before:           Tue 02 Jan 2024 02:29:57 +0000
ROA not after:            Tue 01 Jul 2025 00:00:00 +0000
asID:                     210938
IP address blocks:        185.211.77.0/24 maxlen: 24

Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/Ezm5qJRtJr4tj__mwePCLLk-BIY.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/Ezm5qJRtJr4tj__mwePCLLk-BIY.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/Ezm5qJRtJr4tj__mwePCLLk-BIY.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Mon 03 Jun 2024 04:00:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:8c:c8:01:9c:cb:ef:6b:e8:53:cc:a0:f0:55:7e:b9:2d:35
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1339b9a8946d26be2d8fffe6c1e3c22cb93e0486
        Validity
            Not Before: Jan  2 02:29:57 2024 GMT
            Not After : Jul  1 00:00:00 2025 GMT
        Subject: CN=afcd256223830630b3183f31093901746b3c031c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:83:61:00:86:b7:5c:6a:ce:9c:8b:48:50:7f:
                    e5:b0:a0:68:fd:39:33:1d:b7:32:51:e1:7c:f1:83:
                    8e:f6:64:a0:0a:be:72:72:04:d1:ce:c3:54:4d:ee:
                    74:4d:7e:c2:77:62:f2:bb:c7:43:a4:fd:52:81:a0:
                    26:99:78:1e:d7:74:3e:a8:90:63:1b:b5:57:61:34:
                    c1:fd:6c:f1:15:1d:0c:00:e5:0f:93:41:37:d7:1a:
                    ec:a5:e5:d8:8f:e6:31:a9:f5:2b:3c:85:b5:54:79:
                    e4:d5:07:17:15:91:2e:3b:75:c1:5f:65:ef:97:96:
                    ec:5d:e7:94:1e:6c:5c:ff:7b:6e:35:18:19:34:68:
                    73:23:b1:b9:14:9f:e5:fa:50:a9:f1:27:dd:e4:c5:
                    4f:34:3f:5c:e2:5d:c7:7d:93:6c:05:1b:9d:24:ea:
                    ca:f5:73:be:b2:ee:24:de:dc:b2:7c:11:f8:e6:cf:
                    30:38:e7:39:80:c1:57:b4:dc:d7:77:11:2a:32:b6:
                    13:02:dd:41:0d:4a:4a:7e:5f:f8:16:10:1d:48:a3:
                    47:a8:9f:02:2d:54:ba:d0:db:7f:7f:ec:6b:9b:1f:
                    3b:a4:72:56:ca:67:83:fa:12:ab:3b:c7:b9:82:67:
                    cc:f0:a0:bb:ed:3c:17:13:97:3b:5c:c2:e8:bc:55:
                    e2:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:CD:25:62:23:83:06:30:B3:18:3F:31:09:39:01:74:6B:3C:03:1C
            X509v3 Authority Key Identifier:
                keyid:13:39:B9:A8:94:6D:26:BE:2D:8F:FF:E6:C1:E3:C2:2C:B9:3E:04:86

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ezm5qJRtJr4tj__mwePCLLk-BIY.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/r80lYiODBjCzGD8xCTkBdGs8Axw.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/8c7cc9-c095-42f5-9bb6-946c0f7e8f78/1/Ezm5qJRtJr4tj__mwePCLLk-BIY.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.211.77.0/24

    Signature Algorithm: sha256WithRSAEncryption
         80:44:c2:86:47:fb:da:7a:4d:58:e3:87:b8:20:93:6a:c3:a5:
         20:50:cf:9e:b3:ea:62:80:8c:b3:95:10:94:5e:47:33:49:a6:
         d6:23:53:28:0b:55:14:c9:06:f0:86:95:7f:53:57:65:fa:dc:
         f5:6d:73:4e:fa:b3:33:23:b5:91:ea:97:69:59:82:01:c5:66:
         f8:d2:bb:93:29:c7:e0:d2:5f:88:b9:84:f4:54:21:74:12:83:
         cb:32:70:78:53:31:f4:c1:95:42:33:42:0a:6e:0a:c9:ae:6c:
         c4:ce:74:50:b6:5b:fa:9a:03:7e:46:94:bf:1f:72:b2:88:5d:
         52:23:77:33:07:41:db:46:54:86:48:7c:d1:df:f9:58:d8:96:
         5e:a6:7c:78:20:8d:13:de:a2:b1:40:65:3c:98:e9:cd:65:5c:
         40:26:5b:62:47:8a:e8:be:83:c4:a1:03:d5:64:90:0c:1a:3f:
         9d:f2:1b:13:d4:59:31:05:bb:51:ae:b5:c5:c6:06:d7:bf:db:
         30:56:93:07:08:2b:d2:18:17:eb:e8:34:d3:d2:bc:cd:40:4a:
         30:42:71:a8:2c:b3:3e:ca:da:91:8d:a2:e5:4b:06:a0:eb:50:
         11:df:a5:06:cd:31:94:d1:73:71:9c:71:7c:d5:ba:6b:9c:24:
         6d:86:b9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 2 13:00:08 2024 by rpki-client on console-ams.rpki-client.org