Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9WrTgnvS28uurBv4vVIg8z6JS0w.roa
File:                     9WrTgnvS28uurBv4vVIg8z6JS0w.roa (download)
Hash identifier:          wXLPEKIlbD2rXbyril/dAF3UdZBKbRu8aNejuQaLzJc=
Subject key identifier:   F5:6A:D3:82:7B:D2:DB:CB:AE:AC:1B:F8:BD:52:20:F3:3E:89:4B:4C
Certificate issuer:       /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial:       03ED9441
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9WrTgnvS28uurBv4vVIg8z6JS0w.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     208226
IP address blocks:
    1: 88.151.197.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 65901633 (0x3ed9441)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
        Validity
            Not Before: Jun 12 09:22:02 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=f56ad3827bd2dbcbaeac1bf8bd5220f33e894b4c
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:04:6f:24:73:5d:d8:79:c9:71:6a:83:d4:81:
                    a3:5e:29:36:c5:9e:1e:22:94:69:2b:59:81:33:b3:
                    ab:db:ca:41:8b:e2:61:68:e4:b4:53:ce:7b:a4:da:
                    2c:4d:79:eb:f1:d8:2d:1b:d0:e7:48:1a:b8:5d:c8:
                    9e:25:78:e1:d5:f0:a8:ba:b8:9c:3e:56:66:5f:de:
                    2b:a0:c8:2c:9e:44:cd:b7:b7:b5:16:49:6b:45:c5:
                    67:91:3f:e3:67:98:85:fb:3f:91:6e:e1:2a:0c:26:
                    9d:e0:db:06:2f:45:c9:19:14:48:8b:31:e1:d9:58:
                    f4:46:5e:be:23:3a:07:9c:a6:64:2b:a1:27:03:c7:
                    6c:ce:24:97:6b:c5:56:cd:a2:12:38:fe:85:b1:f4:
                    b5:0e:92:e8:5c:30:26:e1:4f:da:50:fc:3a:9e:bd:
                    7c:22:3d:bc:7b:15:17:9f:4e:2c:3b:1c:37:33:fc:
                    25:69:02:b5:19:e1:f2:30:81:38:17:39:f5:c7:55:
                    da:61:6f:bb:c6:21:97:38:98:17:52:da:63:4d:2b:
                    8d:ba:0c:29:22:54:81:35:4e:15:09:63:a6:cf:dd:
                    4b:e2:ab:af:9c:81:e3:06:8a:e4:1c:d3:d1:42:fe:
                    3f:b5:87:69:e5:51:66:5b:d7:58:67:92:6f:db:a4:
                    16:37
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                F5:6A:D3:82:7B:D2:DB:CB:AE:AC:1B:F8:BD:52:20:F3:3E:89:4B:4C
            X509v3 Authority Key Identifier: 
                keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/9WrTgnvS28uurBv4vVIg8z6JS0w.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  88.151.197.0/24

    Signature Algorithm: sha256WithRSAEncryption
         37:90:67:b5:67:ae:df:7c:fd:ce:7a:10:d5:80:88:27:86:3d:
         2e:c1:f6:f1:ac:7b:f0:99:51:4d:c4:d1:15:03:cc:80:ad:7e:
         43:46:6e:6f:a8:61:f1:31:32:fe:32:27:5c:be:f4:1a:46:c3:
         8d:9c:40:26:b1:a1:7b:b5:ee:67:e1:ab:97:02:2d:dd:63:de:
         cd:8c:53:66:da:4b:58:06:0b:39:45:4c:90:cd:ef:7b:21:c6:
         e5:e9:a0:2e:e3:7e:37:09:79:d0:bd:a1:23:b7:1f:89:ed:03:
         d6:55:ed:51:a8:0b:62:84:07:01:63:ed:25:0b:d2:2c:44:b5:
         b7:6a:d7:a0:9d:8c:d7:df:26:ec:34:4c:06:b2:f2:f8:d9:93:
         2c:1e:92:02:b5:c4:90:16:62:a8:34:68:35:3c:07:40:11:73:
         0a:0f:d4:8b:49:8d:4e:c3:98:08:40:85:5a:3d:fd:a4:c1:9d:
         79:d3:bc:91:2a:97:18:ee:48:ae:5c:a9:aa:41:c4:4f:d0:e3:
         76:05:7c:40:95:d2:c1:a6:7e:ce:9d:42:28:ca:68:9e:5d:17:
         e9:79:c4:15:92:71:e7:1b:bd:41:1f:91:98:8c:e1:e0:6c:23:
         36:0f:f1:7f:f4:47:3e:9f:94:4b:13:b3:05:b6:53:8b:08:de:
         4e:32:24:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 6 11:40:28 2022 by rpki-client.