Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/MgloAN8AipQCSLDBty9Cc3SUsbo.roa
File:                     MgloAN8AipQCSLDBty9Cc3SUsbo.roa (download)
Hash identifier:          re27nAceVugNGnrItfMAhF0jdEju++pWWedJJXeNXYA=
Subject key identifier:   32:09:68:00:DF:00:8A:94:02:48:B0:C1:B7:2F:42:73:74:94:B1:BA
Certificate issuer:       /CN=43c16595966afb0bacf1d7937f245d6a052221a3
Certificate serial:       08E098E1
Authority key identifier: 43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/MgloAN8AipQCSLDBty9Cc3SUsbo.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     20473
IP address blocks:
    1: 194.50.198.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 148936929 (0x8e098e1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43c16595966afb0bacf1d7937f245d6a052221a3
        Validity
            Not Before: Jan  1 11:05:22 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=32096800df008a940248b0c1b72f42737494b1ba
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:fa:1f:fe:cd:e1:08:9e:1f:fe:56:cc:6d:13:
                    71:57:d0:6b:9a:37:aa:82:8a:0f:11:bf:88:e9:5f:
                    77:91:1e:f0:6a:b4:e3:a5:3c:ef:58:05:fe:ab:6a:
                    21:8c:6e:88:67:33:e9:58:ed:06:c9:44:9e:42:68:
                    a9:8c:91:35:fe:1c:d0:6a:2a:fa:6d:0d:1e:02:9c:
                    0a:8a:53:e4:1b:3e:7a:b6:c7:be:8b:f3:3d:b7:a5:
                    7e:da:ef:54:fb:77:e1:f9:a2:3b:60:f7:aa:0a:76:
                    c0:b8:ea:e0:9a:74:60:e4:ff:62:ef:a0:d9:d4:cb:
                    5c:ef:87:7f:d1:25:91:bf:4d:43:2c:38:9e:0b:4f:
                    a3:b0:d9:54:1b:b4:b1:12:91:de:c0:d0:34:62:82:
                    66:1a:cf:9c:cc:ee:0e:3e:da:9a:91:d5:68:4a:02:
                    9e:bc:b9:e2:7c:9c:c1:9e:b3:68:2e:1b:6d:6b:41:
                    9e:3f:a3:bc:11:c6:57:50:21:97:c3:08:b1:12:d6:
                    cd:6c:df:f3:57:38:9b:40:ef:bf:3b:49:ae:d5:ce:
                    e3:84:16:29:f1:1f:1e:6b:f1:a2:8f:42:88:ba:d2:
                    8a:fe:62:37:d1:7c:21:8d:18:94:c8:45:4f:5d:e8:
                    60:ce:76:b4:c9:5a:cb:38:2f:7f:60:4c:fc:27:7e:
                    66:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                32:09:68:00:DF:00:8A:94:02:48:B0:C1:B7:2F:42:73:74:94:B1:BA
            X509v3 Authority Key Identifier: 
                keyid:43:C1:65:95:96:6A:FB:0B:AC:F1:D7:93:7F:24:5D:6A:05:22:21:A3

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q8FllZZq-wus8deTfyRdagUiIaM.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/MgloAN8AipQCSLDBty9Cc3SUsbo.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d92919-962b-448d-98db-5990ea58e030/1/Q8FllZZq-wus8deTfyRdagUiIaM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  194.50.198.0/24

    Signature Algorithm: sha256WithRSAEncryption
         91:4a:cb:b7:19:ee:de:c7:44:bd:72:12:6a:ea:0f:36:ce:a4:
         6e:fd:4f:15:79:b6:71:b4:d3:ad:5f:2c:42:f7:b8:01:da:c2:
         ff:45:36:76:38:b0:35:8b:fc:96:99:19:ae:4b:90:4c:bd:14:
         ce:f3:28:33:9a:13:e8:1e:c6:65:a5:b9:98:d2:42:fd:c6:38:
         ea:72:b3:40:58:54:22:e1:7e:8e:12:5e:c0:00:6f:99:32:0e:
         0a:13:05:47:f6:7a:36:22:dd:67:d1:40:1d:81:08:e0:48:c8:
         6e:a8:03:c3:3d:b8:29:93:05:f5:6f:24:f0:c5:b9:dd:88:9d:
         fe:da:1e:6c:f5:5a:72:66:3b:96:1b:50:8e:82:1b:a3:43:00:
         fa:07:77:81:84:63:d6:5c:54:22:62:8c:a0:80:54:3d:3a:5a:
         1e:97:a1:43:61:80:d3:c5:11:31:bf:14:ae:ab:ef:b0:4b:91:
         e0:14:4e:23:da:ae:d8:43:37:2f:ec:69:bc:9a:60:60:62:9f:
         92:77:c7:3e:a7:98:65:ee:e6:09:ab:f8:7f:d4:c2:54:06:d9:
         a7:21:59:1f:87:d2:95:b4:7b:31:14:a4:68:57:1f:c1:66:06:
         4b:60:ff:9e:b4:13:7c:98:f8:69:b1:ba:74:4b:ec:9e:c3:55:
         d5:23:39:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 9 02:21:42 2022 by rpki-client.