Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/c20e8e-562a-4969-a6c6-64d2710a3ca6/1/AoV0TEPzdp7_UCnmlrDxywTLccs.roa
File:                     AoV0TEPzdp7_UCnmlrDxywTLccs.roa (download)
Hash identifier:          Cf8pGBSg8E9FK8nX7cMv9/aie40+977zkiRikVOh7Sk=
Subject key identifier:   02:85:74:4C:43:F3:76:9E:FF:50:29:E6:96:B0:F1:CB:04:CB:71:CB
Certificate issuer:       /CN=aa4b0b7eda98ef2a421cc848be47c93e869cd427
Certificate serial:       0124FBB3
Authority key identifier: AA:4B:0B:7E:DA:98:EF:2A:42:1C:C8:48:BE:47:C9:3E:86:9C:D4:27
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qksLftqY7ypCHMhIvkfJPoac1Cc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c8/c20e8e-562a-4969-a6c6-64d2710a3ca6/1/AoV0TEPzdp7_UCnmlrDxywTLccs.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 194.62.160.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 19200947 (0x124fbb3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=aa4b0b7eda98ef2a421cc848be47c93e869cd427
        Validity
            Not Before: Jan  1 05:05:45 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=0285744c43f3769eff5029e696b0f1cb04cb71cb
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:a2:6d:ca:08:20:aa:ba:ab:a6:78:ae:fc:94:
                    df:0a:2e:2d:d0:1f:0c:bc:11:20:50:6e:7f:ed:b2:
                    53:7d:75:a9:c1:74:2b:e0:41:47:dd:e1:64:0e:e5:
                    78:49:c8:de:18:e5:13:fd:6d:db:84:74:bb:a3:68:
                    b1:99:dc:be:13:4b:f2:a7:61:f0:a9:ef:f6:d0:5c:
                    c8:9e:fb:59:98:72:dc:0c:61:51:3e:be:45:29:cb:
                    2d:d5:03:d5:28:35:67:78:d5:6b:be:bc:1f:5d:32:
                    70:15:ce:f5:4a:a9:14:68:cd:5e:c6:79:75:a7:19:
                    d9:e9:a8:ab:4e:3c:50:28:a6:fd:29:fa:4f:84:fa:
                    68:d4:f6:69:09:18:7a:77:a2:f1:5b:6d:23:cf:49:
                    f5:ca:c9:91:55:7f:12:76:8c:d7:3d:ae:36:3b:39:
                    4e:2e:3e:f2:1f:f2:7b:61:b1:24:42:19:9c:38:61:
                    5d:b4:ee:33:e3:d1:59:bb:dc:4a:5f:c7:5b:c5:16:
                    c3:7a:a7:a8:c7:f6:52:e4:9e:8d:cb:77:7c:ff:d3:
                    b8:93:3d:72:81:aa:5c:1d:10:5e:02:55:eb:15:38:
                    23:d1:76:37:f6:c7:22:21:c4:20:13:86:6b:08:57:
                    5f:88:46:9c:66:18:2b:ef:63:43:ac:18:c8:8d:90:
                    70:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                02:85:74:4C:43:F3:76:9E:FF:50:29:E6:96:B0:F1:CB:04:CB:71:CB
            X509v3 Authority Key Identifier: 
                keyid:AA:4B:0B:7E:DA:98:EF:2A:42:1C:C8:48:BE:47:C9:3E:86:9C:D4:27

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qksLftqY7ypCHMhIvkfJPoac1Cc.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c20e8e-562a-4969-a6c6-64d2710a3ca6/1/AoV0TEPzdp7_UCnmlrDxywTLccs.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/c20e8e-562a-4969-a6c6-64d2710a3ca6/1/qksLftqY7ypCHMhIvkfJPoac1Cc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.62.160.0/24

    Signature Algorithm: sha256WithRSAEncryption
         22:75:5f:e3:0e:45:ac:75:ec:9b:f5:2a:7d:de:c8:a2:44:7c:
         72:70:a8:c2:d5:a0:fd:14:d7:4e:e2:56:ec:25:e1:34:4e:02:
         0a:0a:43:74:4c:83:6e:3a:fa:13:2c:af:b6:e6:36:31:99:10:
         5c:9f:e1:3e:9b:13:95:62:ab:8a:4f:58:e6:82:9e:ef:33:96:
         8f:66:e9:d1:3d:31:b8:01:f2:7e:71:38:05:a6:52:e9:ed:ff:
         be:97:1c:81:27:5b:67:b9:6a:9f:1c:dc:c6:fe:7b:04:77:b0:
         cb:fe:11:4a:f9:be:14:31:9b:17:92:08:8d:bf:f3:07:52:1a:
         e8:7f:6e:81:95:04:05:46:01:b2:ea:c5:57:29:16:48:94:01:
         8a:28:99:e1:15:c0:f4:c3:a8:8e:f7:d6:28:a2:0a:d1:1b:df:
         ae:1d:6f:ff:e3:1f:db:39:7b:b9:ae:34:70:d3:08:3f:7e:06:
         f9:41:c0:09:7a:30:e7:2d:b3:77:fa:de:31:29:1b:f0:9f:ea:
         3e:2a:f1:e6:3c:87:a5:71:ca:d6:33:7f:00:43:c7:5c:1b:f4:
         56:ed:92:2a:d9:6e:0d:bb:9f:2c:11:99:72:1a:f2:51:7c:40:
         39:77:2a:23:9e:ac:9b:3c:f5:a3:a6:30:63:22:7a:ea:81:a3:
         f7:bd:21:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 08:42:15 2022 by rpki-client.