Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/6GlBYYhhOTWLuYoU42mqMHklIzU.roa
File:                     6GlBYYhhOTWLuYoU42mqMHklIzU.roa (download)
Hash identifier:          GCoJ2oPgyUbAYYd4C5Pt4gvHt58GByte+lJi5LpRXz0=
Subject key identifier:   E8:69:41:61:88:61:39:35:8B:B9:8A:14:E3:69:AA:30:79:25:23:35
Certificate issuer:       /CN=8452ee73277f39d24809746b7262261829b8dfe5
Certificate serial:       01022899
Authority key identifier: 84:52:EE:73:27:7F:39:D2:48:09:74:6B:72:62:26:18:29:B8:DF:E5
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/hFLucyd_OdJICXRrcmImGCm43-U.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/6GlBYYhhOTWLuYoU42mqMHklIzU.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 77.72.82.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 16918681 (0x1022899)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8452ee73277f39d24809746b7262261829b8dfe5
        Validity
            Not Before: Jan  1 01:53:53 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e8694161886139358bb98a14e369aa3079252335
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a3:27:a0:32:9f:14:e3:64:1a:8d:3e:15:db:dd:
                    8c:db:04:02:97:2b:07:af:a7:2d:8c:c5:f0:36:2b:
                    63:b2:7b:67:20:c7:ea:31:b3:80:75:b8:87:75:50:
                    ba:13:68:93:73:64:39:e7:ab:fb:b1:23:3d:50:4b:
                    09:3d:35:ac:0f:31:b4:2c:e9:96:3f:8b:c2:9c:4f:
                    50:c7:ce:81:9d:3b:d4:28:2d:ba:2b:a2:13:17:ec:
                    57:34:24:e3:d7:d0:82:8a:f2:6c:43:b8:26:97:1d:
                    0c:15:83:4c:34:55:cb:49:7e:73:39:bd:eb:5a:51:
                    b2:7b:1a:c3:5a:e8:1f:5c:3a:2a:40:e8:ef:7b:90:
                    34:92:39:0b:0c:c6:a3:66:c1:c6:8f:c2:60:55:4b:
                    3a:4e:eb:a1:7b:b4:27:21:9d:29:cc:b9:8f:9b:40:
                    1b:68:2a:48:df:f2:c8:72:ee:d5:0d:a1:46:88:2f:
                    d9:13:4e:9c:64:e1:44:ef:3c:1b:80:a6:17:a4:53:
                    38:a3:5e:76:2e:04:c1:36:8e:9c:e7:5d:a6:0c:0c:
                    dd:e2:19:5c:19:27:82:1b:59:da:cb:9d:f8:b3:d5:
                    c4:8e:38:56:bb:16:ca:9f:da:18:42:30:83:54:19:
                    67:e6:95:0d:01:b6:29:4c:87:ef:f4:4a:cb:0d:d5:
                    52:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                E8:69:41:61:88:61:39:35:8B:B9:8A:14:E3:69:AA:30:79:25:23:35
            X509v3 Authority Key Identifier: 
                keyid:84:52:EE:73:27:7F:39:D2:48:09:74:6B:72:62:26:18:29:B8:DF:E5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hFLucyd_OdJICXRrcmImGCm43-U.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/6GlBYYhhOTWLuYoU42mqMHklIzU.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5a725f-15da-4c12-86fe-9001db8d4c64/1/hFLucyd_OdJICXRrcmImGCm43-U.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  77.72.82.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a1:fa:dd:09:fe:c2:5a:f5:c6:ab:18:35:94:54:78:a6:26:1b:
         b2:13:b4:4c:3e:12:06:2f:44:52:ae:da:3a:dc:47:10:cb:15:
         ad:5c:b4:8a:e0:a2:1d:32:a3:08:3d:7b:d7:33:43:a3:7b:72:
         82:f1:0a:08:58:ed:9b:d0:6e:d2:64:d5:72:9e:a0:33:c6:fb:
         9c:c9:a4:b1:1f:70:65:0d:bd:69:77:58:04:91:b9:eb:4d:a0:
         9c:60:1c:c2:41:db:80:e0:7e:93:78:fe:18:f4:7d:86:cf:b8:
         a6:f4:0c:87:f1:61:d1:42:ff:dd:67:eb:7c:0f:eb:76:39:ca:
         43:f8:1a:41:62:12:61:4b:3e:c3:8d:fc:6d:a0:97:12:9d:02:
         5f:03:69:8b:bc:f9:19:42:a1:7d:ae:e7:87:55:4a:98:df:26:
         f2:e5:25:0f:4b:c0:be:43:e7:40:db:d8:31:4b:87:dd:6f:c7:
         06:0b:d0:22:f6:a6:c2:c2:15:29:d5:1b:97:0c:6c:5b:df:1d:
         a8:7b:3e:49:df:2b:40:fa:d0:0a:34:44:90:b8:18:9a:db:79:
         30:a5:87:7d:6c:3f:88:3f:43:d7:dc:5d:c7:70:63:b0:0b:41:
         02:b4:e8:b0:6d:e1:78:04:31:8c:fd:99:a3:da:06:e0:41:19:
         46:b1:f6:f9
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAQIomTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NDUyZWU3MzI3N2YzOWQyNDgwOTc0NmI3MjYyMjYxODI5YjhkZmU1MB4XDTIyMDEw
MTAxNTM1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTg2OTQxNjE4ODYx
MzkzNThiYjk4YTE0ZTM2OWFhMzA3OTI1MjMzNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKMnoDKfFONkGo0+FdvdjNsEApcrB6+nLYzF8DYrY7J7ZyDH
6jGzgHW4h3VQuhNok3NkOeer+7EjPVBLCT01rA8xtCzplj+LwpxPUMfOgZ071Cgt
uiuiExfsVzQk49fQgorybEO4JpcdDBWDTDRVy0l+czm961pRsnsaw1roH1w6KkDo
73uQNJI5CwzGo2bBxo/CYFVLOk7roXu0JyGdKcy5j5tAG2gqSN/yyHLu1Q2hRogv
2RNOnGThRO88G4CmF6RTOKNedi4EwTaOnOddpgwM3eIZXBknghtZ2sud+LPVxI44
VrsWyp/aGEIwg1QZZ+aVDQG2KUyH7/RKyw3VUg8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBToaUFhiGE5NYu5ihTjaaoweSUjNTAfBgNVHSMEGDAWgBSEUu5zJ3850kgJ
dGtyYiYYKbjf5TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hGTHVjeWRfT2RKSUNYUnJjbUltR0NtNDMtVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2YvNWE3MjVmLTE1ZGEtNGMxMi04NmZlLTkwMDFkYjhkNGM2NC8x
LzZHbEJZWWhoT1RXTHVZb1U0Mm1xTUhrbEl6VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Yv
NWE3MjVmLTE1ZGEtNGMxMi04NmZlLTkwMDFkYjhkNGM2NC8xL2hGTHVjeWRfT2RK
SUNYUnJjbUltR0NtNDMtVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAE1IUjANBgkqhkiG9w0BAQsFAAOC
AQEAofrdCf7CWvXGqxg1lFR4piYbshO0TD4SBi9EUq7aOtxHEMsVrVy0iuCiHTKj
CD171zNDo3tygvEKCFjtm9Bu0mTVcp6gM8b7nMmksR9wZQ29aXdYBJG5602gnGAc
wkHbgOB+k3j+GPR9hs+4pvQMh/Fh0UL/3WfrfA/rdjnKQ/gaQWISYUs+w438baCX
Ep0CXwNpi7z5GUKhfa7nh1VKmN8m8uUlD0vAvkPnQNvYMUuH3W/HBgvQIvamwsIV
KdUblwxsW98dqHs+Sd8rQPrQCjREkLgYmtt5MKWHfWw/iD9D19xdx3BjsAtBArTo
sG3heAQxjP2Zo9oG4EEZRrH2+Q==
-----END CERTIFICATE-----
Generated at Thu Dec 8 09:58:06 2022 by rpki-client.