Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/G-zbosa-fPGEYXaF3VXLu_DyBkA.roa
File:                     G-zbosa-fPGEYXaF3VXLu_DyBkA.roa (download)
Hash identifier:          dYZl5FKP3SrTfJnF9WYtmL+i3CvNzNnf5Tc3MLWYwxA=
Subject key identifier:   1B:EC:DB:A2:C6:BE:7C:F1:84:61:76:85:DD:55:CB:BB:F0:F2:06:40
Certificate issuer:       /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial:       DE9B92
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/G-zbosa-fPGEYXaF3VXLu_DyBkA.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 5.180.179.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 14588818 (0xde9b92)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
        Validity
            Not Before: Jan  1 13:01:15 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=1becdba2c6be7cf184617685dd55cbbbf0f20640
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:56:92:49:5f:cc:e5:38:64:73:c2:9e:fd:cb:
                    9c:6b:b1:a1:77:38:fc:55:2e:99:a2:66:92:77:cf:
                    42:82:09:e2:bd:eb:13:32:1c:f4:f8:fc:9c:66:69:
                    62:4a:f2:f7:71:b3:9f:c7:f8:57:b4:7f:2d:ef:8f:
                    a3:ab:35:d7:a8:77:ef:88:32:53:cb:81:f3:58:46:
                    8e:7c:59:77:39:7d:d5:ff:a6:4d:84:f5:1e:d1:8b:
                    d5:cb:31:ef:6b:2d:08:42:f4:d6:55:cd:10:c3:5b:
                    62:21:5c:ff:2e:16:ba:5d:3f:83:78:6d:63:00:cc:
                    3c:da:13:8d:df:aa:38:b3:70:dd:da:db:12:21:ac:
                    c7:b0:e6:01:10:32:80:22:ae:e6:e9:c4:c8:e3:dc:
                    f5:37:e8:83:eb:e6:e4:18:5a:3f:d7:07:53:91:6a:
                    3d:c2:e0:71:81:7f:b3:36:58:9a:bf:7e:1d:37:64:
                    3b:ce:6d:0f:d6:c1:8c:19:c9:3b:8a:c9:a3:32:3a:
                    1f:29:e6:a8:84:79:12:8b:84:2b:f2:23:02:29:a8:
                    eb:a8:4b:51:1e:4b:f3:3d:03:eb:92:ac:f0:02:91:
                    9a:e4:1f:79:68:8e:2d:86:2f:d6:77:6c:44:66:cd:
                    50:58:9c:a4:03:10:f4:2f:60:01:dc:fa:ac:c4:31:
                    1b:bb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                1B:EC:DB:A2:C6:BE:7C:F1:84:61:76:85:DD:55:CB:BB:F0:F2:06:40
            X509v3 Authority Key Identifier: 
                keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/G-zbosa-fPGEYXaF3VXLu_DyBkA.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.180.179.0/24

    Signature Algorithm: sha256WithRSAEncryption
         51:89:84:1b:83:9b:06:5d:01:b4:3e:ab:d3:3f:84:67:2d:10:
         87:d7:03:19:3a:9c:26:08:04:c4:74:2f:3f:e6:b7:97:e1:87:
         a0:46:fc:1d:d0:10:50:ae:e8:0b:96:c3:ff:52:81:39:12:42:
         5a:86:53:e5:55:6a:ee:ff:a8:35:ba:34:e7:9d:c3:dd:9c:e7:
         63:3f:91:d3:8a:c6:65:68:dc:c7:3b:fc:99:30:09:2f:97:da:
         2a:f7:33:90:7f:bc:8f:90:d2:04:69:ee:cb:b3:a3:45:f1:a5:
         2f:14:38:5d:5b:df:1f:f0:28:43:b8:de:79:89:88:8f:57:08:
         3d:9b:a2:3d:d7:37:e9:15:a6:89:f5:21:c4:a0:a6:a0:f1:37:
         fe:ee:b2:62:0d:4a:8e:45:74:ed:e4:43:02:dc:a4:8c:87:12:
         b7:f3:06:35:55:a5:3b:c0:e1:c7:57:cd:bf:e9:e2:91:9a:ed:
         20:9b:9b:c1:f6:91:fb:77:56:4f:7b:ab:36:e2:0e:dd:9f:d8:
         3e:90:dc:7c:dc:62:27:b4:23:54:92:bb:65:89:e1:e7:e8:6d:
         75:29:75:bb:a6:60:46:13:6d:65:db:b1:11:00:d9:61:d2:b1:
         97:b4:0a:08:2b:78:0d:7e:2b:98:0b:85:22:b6:f4:7d:ae:4d:
         3d:26:4c:73
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAN6bkjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
N2I1MDQyZmMyMGQ5YmFiMTY3NmUwOWFmN2ZmMWJhNWJmYWRhZTc1MB4XDTIyMDEw
MTEzMDExNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWJlY2RiYTJjNmJl
N2NmMTg0NjE3Njg1ZGQ1NWNiYmJmMGYyMDY0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMFWkklfzOU4ZHPCnv3LnGuxoXc4/FUumaJmknfPQoIJ4r3r
EzIc9Pj8nGZpYkry93Gzn8f4V7R/Le+Po6s116h374gyU8uB81hGjnxZdzl91f+m
TYT1HtGL1csx72stCEL01lXNEMNbYiFc/y4Wul0/g3htYwDMPNoTjd+qOLNw3drb
EiGsx7DmARAygCKu5unEyOPc9Tfog+vm5BhaP9cHU5FqPcLgcYF/szZYmr9+HTdk
O85tD9bBjBnJO4rJozI6HynmqIR5EouEK/IjAimo66hLUR5L8z0D65Ks8AKRmuQf
eWiOLYYv1ndsRGbNUFicpAMQ9C9gAdz6rMQxG7sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQb7Nuixr588YRhdoXdVcu78PIGQDAfBgNVHSMEGDAWgBQXtQQvwg2bqxZ2
4Jr3/xulv62udTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Y3VUVMOElObTZzV2R1Q2E5XzhicGItdHJuVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjEvNjVlNTQzLTdlN2EtNGFhYi1hYzc0LWJjNjc5NGU5NWU1YS8x
L0ctemJvc2EtZlBHRVlYYUYzVlhMdV9EeUJrQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEv
NjVlNTQzLTdlN2EtNGFhYi1hYzc0LWJjNjc5NGU5NWU1YS8xL0Y3VUVMOElObTZz
V2R1Q2E5XzhicGItdHJuVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAAW0szANBgkqhkiG9w0BAQsFAAOC
AQEAUYmEG4ObBl0BtD6r0z+EZy0Qh9cDGTqcJggExHQvP+a3l+GHoEb8HdAQUK7o
C5bD/1KBORJCWoZT5VVq7v+oNbo0553D3ZznYz+R04rGZWjcxzv8mTAJL5faKvcz
kH+8j5DSBGnuy7OjRfGlLxQ4XVvfH/AoQ7jeeYmIj1cIPZuiPdc36RWmifUhxKCm
oPE3/u6yYg1KjkV07eRDAtykjIcSt/MGNVWlO8Dhx1fNv+nikZrtIJubwfaR+3dW
T3urNuIO3Z/YPpDcfNxiJ7QjVJK7ZYnh5+htdSl1u6ZgRhNtZduxEQDZYdKxl7QK
CCt4DX4rmAuFIrb0fa5NPSZMcw==
-----END CERTIFICATE-----
Generated at Thu Dec 8 10:34:45 2022 by rpki-client.