Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa
File:                     ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa (download)
Hash identifier:          x53fYZkRyuYn6ozOhRjD1RCOafrSQ0tkxhO1CoR3AZs=
Subject key identifier:   8A:53:2C:D2:43:17:8B:9B:CC:A4:BC:3E:5E:F4:D6:BE:9F:44:7F:FD
Certificate issuer:       /CN=baa63d3ba6dae4a4493bc14a675b94ad2aa45b69
Certificate serial:       013FE904
Authority key identifier: BA:A6:3D:3B:A6:DA:E4:A4:49:3B:C1:4A:67:5B:94:AD:2A:A4:5B:69
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 31.217.248.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 20965636 (0x13fe904)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=baa63d3ba6dae4a4493bc14a675b94ad2aa45b69
        Validity
            Not Before: Jan  1 11:56:32 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=8a532cd243178b9bcca4bc3e5ef4d6be9f447ffd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:80:64:ca:46:f7:be:d2:5d:2e:60:fb:65:5b:
                    2f:f3:8a:f5:c1:27:69:97:1e:42:b0:a5:27:ed:90:
                    40:2a:e3:5c:e1:63:1f:eb:ae:b4:01:a9:fc:bb:4f:
                    7a:5c:83:51:46:76:6d:1b:d3:57:53:9d:f9:fa:27:
                    01:ac:2f:a8:79:73:ee:13:d9:3e:e0:a2:48:06:7f:
                    3a:16:a9:bb:fc:e8:22:63:2b:37:f1:aa:04:0a:a3:
                    c2:5f:a5:3d:96:0d:35:66:1c:9e:26:5d:ae:f9:82:
                    55:f1:93:e6:1a:e8:7d:4f:e9:d8:41:6d:56:b4:06:
                    54:13:5b:d6:29:71:d9:9f:a7:eb:9a:bd:62:e7:12:
                    76:cf:b1:72:21:ab:20:9b:ab:50:c9:7f:6f:e7:31:
                    36:41:c0:16:05:fd:d6:c8:35:8b:ee:8a:27:fc:9e:
                    2e:23:3a:38:dc:15:93:ba:c0:c1:89:83:57:94:9c:
                    bb:ae:a7:8e:b8:0d:8a:57:4b:63:cc:88:df:47:1c:
                    de:c4:4f:2c:ff:8c:e8:e2:b0:72:30:9f:47:2e:37:
                    76:a7:d8:3a:bf:d3:07:85:a4:a8:3c:d3:f5:d6:71:
                    95:ce:e9:99:cb:7c:1d:2c:87:8d:9b:55:3d:c4:5a:
                    6d:55:87:4f:8d:19:6c:2f:0a:7d:a9:bf:a8:57:b5:
                    ce:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                8A:53:2C:D2:43:17:8B:9B:CC:A4:BC:3E:5E:F4:D6:BE:9F:44:7F:FD
            X509v3 Authority Key Identifier: 
                keyid:BA:A6:3D:3B:A6:DA:E4:A4:49:3B:C1:4A:67:5B:94:AD:2A:A4:5B:69

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/ilMs0kMXi5vMpLw-XvTWvp9Ef_0.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/96/185e80-7339-4cc0-8b7c-4edf4244a9f9/1/uqY9O6ba5KRJO8FKZ1uUrSqkW2k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  31.217.248.0/24

    Signature Algorithm: sha256WithRSAEncryption
         89:09:96:c8:72:10:cc:39:1b:84:29:3c:68:95:5d:8d:2d:4e:
         5a:ee:89:8c:ce:c4:a4:78:da:fb:d6:31:d9:30:da:bf:df:74:
         03:8b:f5:58:a0:4e:b2:ec:1e:d6:f0:56:0a:07:df:eb:82:93:
         e1:2f:e4:2f:15:83:76:97:f0:29:ec:61:9e:02:71:fe:5b:f3:
         e5:61:13:2f:49:dc:1a:c1:b4:1c:cc:b4:01:b6:9c:3f:c5:3b:
         98:22:9d:3a:24:8c:2a:4b:06:d4:b7:50:85:52:d4:06:5d:23:
         48:ef:43:7e:e1:9b:85:50:ce:c2:02:ed:79:2f:9b:2f:2e:82:
         d1:7b:a0:ee:f5:b4:59:76:72:d5:83:ff:d1:a3:9a:bb:2e:c8:
         e4:90:a5:28:8a:67:a6:b3:c9:3e:ba:64:20:69:6a:70:57:6a:
         58:31:3c:0d:da:ef:05:eb:7f:89:b3:a1:e5:ff:de:97:66:dd:
         1f:fb:13:61:6b:13:78:f2:b7:e2:d6:92:76:87:87:d5:7a:7c:
         0b:f6:d9:66:43:fc:2d:66:df:b7:8e:d0:4e:7b:fd:7d:44:81:
         9e:eb:2c:78:da:b4:9b:56:44:d7:ed:c1:d4:27:a6:05:04:07:
         f7:7d:5e:3c:5e:1a:42:3a:a4:51:5b:1a:29:f3:80:9a:a0:a8:
         e7:ea:e7:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAT/pBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YWE2M2QzYmE2ZGFlNGE0NDkzYmMxNGE2NzViOTRhZDJhYTQ1YjY5MB4XDTIyMDEw
MTExNTYzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGE1MzJjZDI0MzE3
OGI5YmNjYTRiYzNlNWVmNGQ2YmU5ZjQ0N2ZmZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmAZMpG977SXS5g+2VbL/OK9cEnaZceQrClJ+2QQCrjXOFj
H+uutAGp/LtPelyDUUZ2bRvTV1Od+fonAawvqHlz7hPZPuCiSAZ/Ohapu/zoImMr
N/GqBAqjwl+lPZYNNWYcniZdrvmCVfGT5hrofU/p2EFtVrQGVBNb1ilx2Z+n65q9
YucSds+xciGrIJurUMl/b+cxNkHAFgX91sg1i+6KJ/yeLiM6ONwVk7rAwYmDV5Sc
u66njrgNildLY8yI30cc3sRPLP+M6OKwcjCfRy43dqfYOr/TB4WkqDzT9dZxlc7p
mct8HSyHjZtVPcRabVWHT40ZbC8Kfam/qFe1zrsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSKUyzSQxeLm8ykvD5e9Na+n0R//TAfBgNVHSMEGDAWgBS6pj07ptrkpEk7
wUpnW5StKqRbaTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3VxWTlPNmJhNUtSSk84RktaMXVVclNxa1cyay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTYvMTg1ZTgwLTczMzktNGNjMC04YjdjLTRlZGY0MjQ0YTlmOS8x
L2lsTXMwa01YaTV2TXBMdy1YdlRXdnA5RWZfMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYv
MTg1ZTgwLTczMzktNGNjMC04YjdjLTRlZGY0MjQ0YTlmOS8xL3VxWTlPNmJhNUtS
Sk84RktaMXVVclNxa1cyay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAB/Z+DANBgkqhkiG9w0BAQsFAAOC
AQEAiQmWyHIQzDkbhCk8aJVdjS1OWu6JjM7EpHja+9Yx2TDav990A4v1WKBOsuwe
1vBWCgff64KT4S/kLxWDdpfwKexhngJx/lvz5WETL0ncGsG0HMy0AbacP8U7mCKd
OiSMKksG1LdQhVLUBl0jSO9DfuGbhVDOwgLteS+bLy6C0Xug7vW0WXZy1YP/0aOa
uy7I5JClKIpnprPJPrpkIGlqcFdqWDE8DdrvBet/ibOh5f/el2bdH/sTYWsTePK3
4taSdoeH1Xp8C/bZZkP8LWbft47QTnv9fUSBnusseNq0m1ZE1+3B1CemBQQH931e
PF4aQjqkUVsaKfOAmqCo5+rnmQ==
-----END CERTIFICATE-----
Generated at Thu Dec 8 08:40:42 2022 by rpki-client.