Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/tgfZsllP2SbfcXD_Je_gDfbJ5Mo.roa
File:                     tgfZsllP2SbfcXD_Je_gDfbJ5Mo.roa (download)
Hash identifier:          DUL9i63mCRCT9MdwtvCNqyn8D7dRCWEDoQn3TRDIeqA=
Subject key identifier:   B6:07:D9:B2:59:4F:D9:26:DF:71:70:FF:25:EF:E0:0D:F6:C9:E4:CA
Certificate issuer:       /CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Certificate serial:       07E2A5F4
Authority key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/tgfZsllP2SbfcXD_Je_gDfbJ5Mo.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     400040
IP address blocks:
    1: 45.12.187.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 132294132 (0x7e2a5f4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
        Validity
            Not Before: Jan  1 05:52:13 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=b607d9b2594fd926df7170ff25efe00df6c9e4ca
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:31:fc:c7:54:c6:13:5f:29:ea:43:df:11:db:
                    fa:dd:3c:d9:02:aa:a7:a7:d4:26:d6:bb:6d:0b:db:
                    2e:2c:e4:89:52:2d:11:45:97:9c:3b:2c:7c:5d:ce:
                    57:26:91:d1:f4:57:5c:ea:cb:0b:eb:21:89:de:3c:
                    15:e2:68:c3:88:2e:02:93:86:aa:d6:a0:58:d7:db:
                    78:72:63:45:fc:e6:75:35:a2:38:9c:48:5e:5d:39:
                    d2:6b:f2:68:63:d1:0b:75:8d:0c:e1:d4:15:2d:c3:
                    d0:27:4b:16:af:5d:d6:c6:d1:d4:7c:18:64:9e:b7:
                    5b:05:c7:df:11:54:6a:38:b0:4a:ab:34:68:85:1b:
                    3d:93:c5:7c:0e:6d:56:0c:f2:05:bb:42:30:e5:1f:
                    09:a5:fe:49:58:98:d0:4b:00:21:e6:54:9e:6d:e2:
                    d2:bb:6b:8c:71:6a:f6:84:7a:ad:80:bf:71:38:f0:
                    d1:79:31:13:b2:a9:a6:96:e7:0a:22:84:19:e6:a3:
                    e9:09:b1:98:5f:96:52:b1:7e:c5:8d:0e:b7:56:c9:
                    1c:e6:fa:40:b7:d4:39:cb:f7:fc:74:df:69:62:47:
                    ea:9f:87:ee:40:3f:f1:59:86:6a:98:d7:52:fb:f9:
                    ca:5b:51:02:44:ba:77:0b:8e:9b:81:6e:86:d5:be:
                    fd:6d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                B6:07:D9:B2:59:4F:D9:26:DF:71:70:FF:25:EF:E0:0D:F6:C9:E4:CA
            X509v3 Authority Key Identifier: 
                keyid:0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/tgfZsllP2SbfcXD_Je_gDfbJ5Mo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  45.12.187.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6d:89:65:d6:7e:2b:20:52:fb:58:f9:d2:61:1d:fd:18:25:39:
         7b:01:56:dd:19:53:1e:d8:22:50:9b:3e:7e:31:b3:99:89:4e:
         20:a0:1f:c2:d3:be:9c:6d:09:81:54:31:a4:9b:86:3e:cd:53:
         32:7a:fc:90:83:84:f2:75:9f:17:09:b2:60:f6:6e:1b:c6:e8:
         51:a7:d4:6f:0f:0d:16:a6:79:ad:9f:54:3f:64:ee:f1:2f:cc:
         e3:fb:0a:18:3b:01:70:1a:ba:9e:50:09:62:02:49:03:c9:ff:
         bb:63:47:c2:84:6d:10:76:99:db:4f:66:47:32:7f:37:e0:7a:
         9d:9d:32:eb:de:af:4a:82:d7:9c:69:83:e1:81:26:7f:16:6d:
         f6:3b:cf:89:32:3d:c8:97:e3:69:f7:c7:ca:46:af:3f:cd:28:
         61:34:b8:af:10:8f:e7:9e:c6:54:a4:6b:fb:a6:59:74:6c:77:
         97:3f:15:ca:92:57:99:ec:af:ee:51:f7:18:09:8f:39:89:ab:
         b1:8d:49:2e:bf:06:f5:6a:1b:74:4b:32:13:b6:d0:4c:6f:b0:
         1c:4d:4a:40:a5:fe:6f:89:94:97:7b:18:a0:6c:b9:df:73:5f:
         73:1f:13:3b:64:b2:dd:26:c8:f8:cf:2c:13:2b:84:bb:4c:1d:
         dc:d1:40:5b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+Kl9DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YTMwYjYzNWQzNTc0NjhkN2Y5MzJkM2UxZjU5ZDUzNzNjZjlmNDY1MB4XDTIyMDEw
MTA1NTIxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjYwN2Q5YjI1OTRm
ZDkyNmRmNzE3MGZmMjVlZmUwMGRmNmM5ZTRjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMQx/MdUxhNfKepD3xHb+t082QKqp6fUJta7bQvbLizkiVIt
EUWXnDssfF3OVyaR0fRXXOrLC+shid48FeJow4guApOGqtagWNfbeHJjRfzmdTWi
OJxIXl050mvyaGPRC3WNDOHUFS3D0CdLFq9d1sbR1HwYZJ63WwXH3xFUajiwSqs0
aIUbPZPFfA5tVgzyBbtCMOUfCaX+SViY0EsAIeZUnm3i0rtrjHFq9oR6rYC/cTjw
0XkxE7KpppbnCiKEGeaj6QmxmF+WUrF+xY0Ot1bJHOb6QLfUOcv3/HTfaWJH6p+H
7kA/8VmGapjXUvv5yltRAkS6dwuOm4FuhtW+/W0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS2B9myWU/ZJt9xcP8l7+AN9snkyjAfBgNVHSMEGDAWgBQKMLY101dGjX+T
LT4fWdU3PPn0ZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NqQzJOZE5YUm8xX2t5MC1IMW5WTnp6NTlHVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvMTc4NWYxLWFlMjMtNDBmMC04M2YyLTZkZWYzOThjZTVjOS8x
L3RnZlpzbGxQMlNiZmNYRF9KZV9nRGZiSjVNby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
MTc4NWYxLWFlMjMtNDBmMC04M2YyLTZkZWYzOThjZTVjOS8xL0NqQzJOZE5YUm8x
X2t5MC1IMW5WTnp6NTlHVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0MuzANBgkqhkiG9w0BAQsFAAOC
AQEAbYll1n4rIFL7WPnSYR39GCU5ewFW3RlTHtgiUJs+fjGzmYlOIKAfwtO+nG0J
gVQxpJuGPs1TMnr8kIOE8nWfFwmyYPZuG8boUafUbw8NFqZ5rZ9UP2Tu8S/M4/sK
GDsBcBq6nlAJYgJJA8n/u2NHwoRtEHaZ209mRzJ/N+B6nZ0y696vSoLXnGmD4YEm
fxZt9jvPiTI9yJfjaffHykavP80oYTS4rxCP557GVKRr+6ZZdGx3lz8VypJXmeyv
7lH3GAmPOYmrsY1JLr8G9WobdEsyE7bQTG+wHE1KQKX+b4mUl3sYoGy533Nfcx8T
O2Sy3SbI+M8sEyuEu0wd3NFAWw==
-----END CERTIFICATE-----
Generated at Wed Dec 7 03:50:36 2022 by rpki-client.