Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa
File:                     zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa (download)
Hash identifier:          bNNO/3zQGOpEssHI1q4Quxbgzx1D+dd5TrId0AowP4U=
Subject key identifier:   CF:0E:53:54:54:1E:E1:C0:EF:CE:E1:3A:4B:04:5A:3E:79:FC:0A:9D
Certificate issuer:       /CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Certificate serial:       010117B9
Authority key identifier: E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 185.235.227.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 16848825 (0x10117b9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
        Validity
            Not Before: Jan  1 03:55:17 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=cf0e5354541ee1c0efcee13a4b045a3e79fc0a9d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:ae:96:cc:b4:da:f8:5a:d9:42:db:4a:4b:d0:
                    2c:94:20:5b:7d:01:47:35:4c:14:c0:48:15:bb:4d:
                    15:a6:67:80:ba:1d:2f:c5:f3:03:9c:ce:1f:71:92:
                    bf:4d:27:e6:8a:45:30:0f:99:6e:56:7a:4c:50:2d:
                    49:61:20:56:db:ab:e0:f0:13:f0:81:38:e6:cf:32:
                    ea:83:28:58:ce:d0:4e:16:82:ed:59:68:8e:b0:62:
                    6e:ac:10:da:8c:ec:ca:85:2c:1d:d3:4b:ee:2f:de:
                    09:7e:20:9c:66:ea:df:4e:ea:5a:31:8c:89:d8:2e:
                    d9:74:98:9b:bd:4b:79:b5:ab:ce:e1:49:17:5f:f6:
                    7d:db:83:c1:b9:33:72:07:e8:ab:a7:a0:5f:88:9e:
                    c8:81:6c:02:91:b5:c9:16:b6:dc:ad:e9:71:1a:8d:
                    37:ec:8d:8b:4e:8c:1d:40:5d:e4:f0:49:c3:8e:a2:
                    2e:99:d4:b9:13:bf:f9:4f:d8:25:ca:f2:00:06:63:
                    17:4d:3b:92:fa:ec:22:53:06:85:4b:f3:36:89:0f:
                    44:5a:37:6d:d3:3b:ed:f2:14:99:f4:04:79:0c:00:
                    d8:88:6c:dc:a7:d3:3f:e6:da:a5:2b:0a:4f:bc:46:
                    ab:36:d7:89:f7:bc:7e:17:37:74:0d:fc:fa:aa:fa:
                    97:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                CF:0E:53:54:54:1E:E1:C0:EF:CE:E1:3A:4B:04:5A:3E:79:FC:0A:9D
            X509v3 Authority Key Identifier: 
                keyid:E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/zw5TVFQe4cDvzuE6SwRaPnn8Cp0.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/6KkFsKTxujc9nniS0kVbxeqLv4k.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.235.227.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0d:32:f1:01:a6:e7:2c:85:ee:61:56:bd:93:15:fb:30:d1:07:
         fe:06:a0:5d:7e:96:74:9f:d1:ad:03:7c:7d:9e:a4:f4:85:e9:
         b4:b9:c8:59:07:ed:8a:0e:56:3a:04:36:ce:ee:3b:53:af:ce:
         0f:e0:d0:a2:60:ff:bd:d1:aa:d4:e4:fb:d3:f7:ea:30:0f:d7:
         4b:01:f7:d2:8f:0c:3c:9a:6c:fb:f8:09:cc:94:68:9c:53:82:
         b9:28:2f:8a:b1:10:c5:be:cc:17:3e:55:41:03:72:98:ab:a5:
         a6:57:ce:33:d3:ca:51:75:0e:7b:f3:e6:fd:2c:7e:bf:4c:a4:
         5d:ab:09:7a:a5:2e:4c:38:57:a5:9d:e9:b7:51:b8:a0:f5:f7:
         54:2d:e8:8d:20:72:b5:1c:4f:1e:ff:3e:dc:b4:2f:0e:88:d5:
         56:d6:10:d2:58:83:95:6a:11:c3:8a:8b:d6:50:51:c2:3e:51:
         96:69:18:9d:8f:22:32:1a:3b:bb:93:23:b8:75:e6:51:d6:1a:
         11:0d:e4:81:b8:04:50:a6:8e:11:a2:6b:da:ca:45:c3:fd:0f:
         8d:c8:d9:63:26:6d:8e:e5:bf:36:37:46:7b:6a:3d:b5:13:5b:
         45:85:45:c0:14:ed:2c:3e:64:a5:a9:bb:91:f6:f4:eb:e1:64:
         f4:63:c3:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 08:41:54 2022 by rpki-client.