Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/0wYcv522LrL5uEwiMJDci3jDb4Y.roa
File:                     0wYcv522LrL5uEwiMJDci3jDb4Y.roa (download)
Hash identifier:          ZFMoco1NVMpztYhVswRq89RGPZ0GxrxlZ4cmJjBx+3g=
Subject key identifier:   D3:06:1C:BF:9D:B6:2E:B2:F9:B8:4C:22:30:90:DC:8B:78:C3:6F:86
Certificate issuer:       /CN=29e123c1852d347cbd279e3045377c9cd510284a
Certificate serial:       9561B6
Authority key identifier: 29:E1:23:C1:85:2D:34:7C:BD:27:9E:30:45:37:7C:9C:D5:10:28:4A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KeEjwYUtNHy9J54wRTd8nNUQKEo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/0wYcv522LrL5uEwiMJDci3jDb4Y.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 193.3.169.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9789878 (0x9561b6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=29e123c1852d347cbd279e3045377c9cd510284a
        Validity
            Not Before: Jan  1 02:53:49 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=d3061cbf9db62eb2f9b84c223090dc8b78c36f86
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:0d:fa:04:7d:bc:93:ba:60:52:77:af:3d:04:
                    33:60:e7:98:5c:25:77:75:f2:58:6a:81:0a:e8:ed:
                    c2:71:83:63:64:8e:0e:91:8d:d6:29:cc:1c:48:85:
                    b1:ad:62:dc:a7:43:86:18:9c:75:70:c9:04:02:d7:
                    5e:a1:ca:f3:28:fa:d6:04:97:9d:06:be:fd:f3:84:
                    56:f0:1d:fd:c3:00:e4:fd:e9:70:9c:c6:69:ee:f0:
                    76:e5:5d:eb:4c:27:ee:f8:09:f9:2a:0d:19:cd:41:
                    87:92:95:a9:1f:7d:08:ff:b7:ac:5e:b1:90:82:d5:
                    d2:34:7e:ee:01:00:a7:08:f1:78:b1:9d:bf:ce:42:
                    33:34:4e:be:d8:43:d6:64:7f:73:58:95:7b:cd:df:
                    0e:25:d0:84:a3:e1:71:f0:7b:dc:96:93:88:39:35:
                    2f:52:ed:1f:2b:71:91:3b:23:c2:c6:94:68:d2:b2:
                    fa:a5:b3:67:dc:7e:66:bf:52:49:48:d4:b6:9e:0e:
                    ab:4e:82:6b:4a:b2:71:0d:39:80:a6:97:66:e8:09:
                    63:6b:4d:fc:74:a1:98:c0:bf:5c:b9:da:5a:5e:1d:
                    7b:03:75:8d:dc:6f:30:83:4a:b3:14:de:91:70:cd:
                    c4:fc:51:52:f0:0d:da:79:1d:aa:8c:b8:ff:0c:92:
                    a9:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                D3:06:1C:BF:9D:B6:2E:B2:F9:B8:4C:22:30:90:DC:8B:78:C3:6F:86
            X509v3 Authority Key Identifier: 
                keyid:29:E1:23:C1:85:2D:34:7C:BD:27:9E:30:45:37:7C:9C:D5:10:28:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeEjwYUtNHy9J54wRTd8nNUQKEo.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/0wYcv522LrL5uEwiMJDci3jDb4Y.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/6c353e-817d-4be9-b43f-c9fb9bb611b0/1/KeEjwYUtNHy9J54wRTd8nNUQKEo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.3.169.0/24

    Signature Algorithm: sha256WithRSAEncryption
         70:64:5a:53:78:0b:ce:3a:ee:5f:ec:91:c2:bb:90:71:56:ce:
         53:08:48:fb:25:69:af:97:3b:ae:b8:9f:73:35:17:1b:9c:e7:
         2b:80:ff:6c:9a:4a:1f:15:10:28:5b:08:37:77:62:c8:10:ea:
         d6:32:b1:29:d3:20:9c:55:3b:d9:f0:68:dd:05:3c:04:f3:44:
         7c:35:30:11:b9:be:ee:93:83:4e:5b:9b:7c:43:b3:69:95:ff:
         8f:22:34:cf:c2:3c:10:ce:a9:c1:f4:8a:51:52:0a:c8:8e:96:
         b9:6d:32:48:b9:78:4d:e1:20:fa:e0:7a:72:db:92:8f:71:28:
         f2:d6:08:29:37:5b:37:7b:19:3a:45:fb:74:da:ce:f5:e2:cb:
         1a:ed:de:37:ee:33:ef:56:43:02:58:84:11:de:ac:ae:d7:02:
         b2:91:e6:ef:a3:43:40:7b:ca:3f:3e:eb:3c:5d:25:d8:bc:e8:
         37:97:a1:cf:ca:2f:bc:8e:72:50:ff:84:78:a5:03:4a:4a:06:
         99:c5:22:6e:fa:00:cc:c4:7b:62:11:18:1d:b4:e6:bc:8e:5a:
         af:a4:ef:a9:2b:d7:2c:2e:ca:be:a2:0f:3b:2f:f0:2a:ec:c5:
         27:9f:b4:6d:fe:69:91:f6:aa:f1:87:30:8f:be:dd:60:4f:ed:
         e0:46:e4:f1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAJVhtjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
OWUxMjNjMTg1MmQzNDdjYmQyNzllMzA0NTM3N2M5Y2Q1MTAyODRhMB4XDTIyMDEw
MTAyNTM0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDMwNjFjYmY5ZGI2
MmViMmY5Yjg0YzIyMzA5MGRjOGI3OGMzNmY4NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALEN+gR9vJO6YFJ3rz0EM2DnmFwld3XyWGqBCujtwnGDY2SO
DpGN1inMHEiFsa1i3KdDhhicdXDJBALXXqHK8yj61gSXnQa+/fOEVvAd/cMA5P3p
cJzGae7wduVd60wn7vgJ+SoNGc1Bh5KVqR99CP+3rF6xkILV0jR+7gEApwjxeLGd
v85CMzROvthD1mR/c1iVe83fDiXQhKPhcfB73JaTiDk1L1LtHytxkTsjwsaUaNKy
+qWzZ9x+Zr9SSUjUtp4Oq06Ca0qycQ05gKaXZugJY2tN/HShmMC/XLnaWl4dewN1
jdxvMINKsxTekXDNxPxRUvAN2nkdqoy4/wySqUcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTTBhy/nbYusvm4TCIwkNyLeMNvhjAfBgNVHSMEGDAWgBQp4SPBhS00fL0n
njBFN3yc1RAoSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tlRWp3WVV0Tkh5OUo1NHdSVGQ4bk5VUUtFby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzIvNmMzNTNlLTgxN2QtNGJlOS1iNDNmLWM5ZmI5YmI2MTFiMC8x
LzB3WWN2NTIyTHJMNXVFd2lNSkRjaTNqRGI0WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzIv
NmMzNTNlLTgxN2QtNGJlOS1iNDNmLWM5ZmI5YmI2MTFiMC8xL0tlRWp3WVV0Tkh5
OUo1NHdSVGQ4bk5VUUtFby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMEDqTANBgkqhkiG9w0BAQsFAAOC
AQEAcGRaU3gLzjruX+yRwruQcVbOUwhI+yVpr5c7rrifczUXG5znK4D/bJpKHxUQ
KFsIN3diyBDq1jKxKdMgnFU72fBo3QU8BPNEfDUwEbm+7pODTlubfEOzaZX/jyI0
z8I8EM6pwfSKUVIKyI6WuW0ySLl4TeEg+uB6ctuSj3Eo8tYIKTdbN3sZOkX7dNrO
9eLLGu3eN+4z71ZDAliEEd6srtcCspHm76NDQHvKPz7rPF0l2LzoN5ehz8ovvI5y
UP+EeKUDSkoGmcUibvoAzMR7YhEYHbTmvI5ar6TvqSvXLC7KvqIPOy/wKuzFJ5+0
bf5pkfaq8Ycwj77dYE/t4Ebk8Q==
-----END CERTIFICATE-----
Generated at Thu Dec 8 09:57:39 2022 by rpki-client.