Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/e0y2iIUL2or2dcn4O12iyYkbsXo.roa
File:                     e0y2iIUL2or2dcn4O12iyYkbsXo.roa (download)
Hash identifier:          6XvSynvyx+Nda45IvIleH6+d92jAEwdSXluiNN4tP9o=
Subject key identifier:   7B:4C:B6:88:85:0B:DA:8A:F6:75:C9:F8:3B:5D:A2:C9:89:1B:B1:7A
Certificate issuer:       /CN=c4232bd5238dc4010d1c52929ddea4f23c042574
Certificate serial:       01061D09
Authority key identifier: C4:23:2B:D5:23:8D:C4:01:0D:1C:52:92:9D:DE:A4:F2:3C:04:25:74
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/xCMr1SONxAENHFKSnd6k8jwEJXQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/e0y2iIUL2or2dcn4O12iyYkbsXo.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 46.254.108.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17177865 (0x1061d09)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c4232bd5238dc4010d1c52929ddea4f23c042574
        Validity
            Not Before: Jan  1 13:06:20 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=7b4cb688850bda8af675c9f83b5da2c9891bb17a
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:25:ae:93:6a:05:30:07:85:d5:3c:64:55:93:
                    93:28:d7:9c:99:58:41:b8:4a:8d:bd:51:62:9b:9a:
                    f9:de:25:20:ad:fd:0f:c5:32:c4:43:d5:1e:6c:4d:
                    9a:56:11:d3:59:52:a2:e6:9e:6b:ba:20:05:bf:09:
                    cf:dc:1c:ce:65:f3:2b:38:bf:5d:6c:fa:b5:79:83:
                    84:7b:12:2e:4d:ab:88:6c:0e:3a:a0:cc:ae:78:d1:
                    46:99:16:cc:37:c3:81:3b:15:bd:45:ec:65:b0:fb:
                    6b:99:70:50:af:56:91:c2:60:3b:35:42:d2:ea:4a:
                    00:a1:17:75:e1:24:f5:50:7c:fc:5d:fd:53:00:6c:
                    b2:66:1c:02:93:36:ec:09:63:fa:91:1c:4f:7d:67:
                    84:b1:59:ab:23:d3:a0:60:77:92:67:18:35:77:c9:
                    7f:1c:00:e7:1e:7d:13:67:6e:65:ff:e8:a4:e6:21:
                    e9:0d:9b:c5:ff:83:dd:dd:95:cf:28:fe:e2:7d:6c:
                    3d:c6:f7:44:6d:0c:6b:ed:73:71:56:e1:6b:4b:ee:
                    48:1c:60:6c:9a:00:92:c7:24:33:b4:f4:ac:bc:1e:
                    59:a5:b5:0b:2e:c5:59:92:78:36:02:c4:79:1b:bb:
                    2a:dc:df:8c:06:23:83:12:ff:d9:d1:12:8d:a8:05:
                    58:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                7B:4C:B6:88:85:0B:DA:8A:F6:75:C9:F8:3B:5D:A2:C9:89:1B:B1:7A
            X509v3 Authority Key Identifier: 
                keyid:C4:23:2B:D5:23:8D:C4:01:0D:1C:52:92:9D:DE:A4:F2:3C:04:25:74

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCMr1SONxAENHFKSnd6k8jwEJXQ.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/e0y2iIUL2or2dcn4O12iyYkbsXo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c42ae7-5f64-4039-a051-403b857bf8b7/1/xCMr1SONxAENHFKSnd6k8jwEJXQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  46.254.108.0/24

    Signature Algorithm: sha256WithRSAEncryption
         25:e7:21:25:88:a8:a8:2d:bd:be:09:d8:a4:8c:7d:85:86:bd:
         bc:c7:86:18:cc:14:62:36:f8:cf:b5:08:0c:fb:94:88:71:70:
         90:e4:88:eb:58:94:3e:ca:6f:ce:71:1f:e7:09:d0:37:ca:8b:
         6f:db:38:2a:28:06:b8:7c:7a:a2:26:69:db:00:43:42:39:4c:
         91:53:cf:c1:47:81:91:ad:a5:2d:5c:5a:dd:96:38:4b:c0:0c:
         4e:04:f1:b6:5d:3f:a2:a6:3f:da:27:25:bc:bf:73:d6:9a:f0:
         f5:11:25:9c:7e:a6:b1:ac:a7:0a:77:10:e6:dd:d1:67:ba:b2:
         e9:63:bd:94:52:d8:32:de:07:c7:8f:2a:e4:b2:ff:0e:b5:b8:
         8c:24:24:ff:12:05:fd:04:cf:78:ef:bb:6d:61:53:2a:4b:ef:
         83:6f:3a:88:27:68:c9:ba:2e:ce:8f:7b:b5:eb:26:ae:91:2e:
         9f:f8:f6:36:40:b2:f9:57:3d:71:8a:d8:55:b8:ac:55:37:93:
         d5:f7:96:03:6f:e5:a3:ca:bd:35:5c:eb:93:68:14:99:91:d5:
         93:07:63:3a:84:cc:82:c1:97:ca:4c:ad:04:cb:e6:7d:0a:d0:
         07:b7:d6:9c:78:e0:b2:39:31:a8:93:79:68:f9:7a:97:ec:2e:
         a2:b2:e5:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 09:17:26 2022 by rpki-client.