Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa
File:                     L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa (download)
Hash identifier:          hiJu6zTNn6VZn3YSB5ZoQ/1oQqmCuoB6itseUMS3Vb0=
Subject key identifier:   2F:F7:D9:C3:F8:16:AE:16:DE:57:F1:20:A5:BC:8A:92:64:C0:DB:13
Certificate issuer:       /CN=a91f1e577ca1dbb8e05c0f56a6f678b1ea40d8ce
Certificate serial:       0109A3BD
Authority key identifier: A9:1F:1E:57:7C:A1:DB:B8:E0:5C:0F:56:A6:F6:78:B1:EA:40:D8:CE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/qR8eV3yh27jgXA9WpvZ4sepA2M4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa
ROA valid until:          Jul 01 00:00:00 2023 GMT
asID:                     1239
IP address blocks:
    1: 178.212.224.0/24 maxlen: 24

Validation: OK

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 17408957 (0x109a3bd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a91f1e577ca1dbb8e05c0f56a6f678b1ea40d8ce
        Validity
            Not Before: Jan  1 08:00:36 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=2ff7d9c3f816ae16de57f120a5bc8a9264c0db13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:91:5a:64:ac:2f:75:27:7b:df:3c:96:f0:af:
                    de:ea:17:8b:b4:94:30:ec:c0:78:08:f5:cd:5d:c3:
                    16:2a:c9:18:d5:fb:db:84:a5:9e:3f:af:11:d6:6f:
                    87:bc:ba:60:75:53:6e:37:a5:0e:04:c8:51:09:8b:
                    c1:c5:a8:e6:f4:e2:9b:c6:27:7a:49:7a:fb:1b:1b:
                    44:1f:3b:75:e3:22:b6:69:b6:26:56:1f:a9:f8:43:
                    9e:23:1d:b7:a7:2b:04:a0:a1:8c:b0:20:ae:6a:5d:
                    7d:e2:d2:59:c8:02:18:ad:51:ed:8a:ca:1c:b3:ce:
                    85:2e:38:ad:7c:94:e0:b6:2b:72:b4:08:14:f1:dc:
                    c3:fc:82:d0:32:14:60:91:a0:3e:b5:53:dd:2f:56:
                    b0:60:06:94:c6:32:e0:d0:8f:8d:17:9e:e5:67:4b:
                    45:bb:02:ce:8e:70:31:e2:e5:b3:f6:e0:75:7f:78:
                    e2:f5:2b:a6:f7:b2:96:81:df:31:d9:b6:77:2b:e6:
                    7b:c0:13:44:d0:cb:4d:68:f9:5d:86:2b:6c:e5:90:
                    21:8d:0d:ef:e2:ed:50:f3:17:0f:1d:24:ac:34:ba:
                    67:c8:72:b0:61:cf:7f:3f:8c:56:72:01:f5:3b:c8:
                    3d:0e:5e:1a:01:69:b6:fa:52:d2:cb:d2:34:27:21:
                    d7:2f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                2F:F7:D9:C3:F8:16:AE:16:DE:57:F1:20:A5:BC:8A:92:64:C0:DB:13
            X509v3 Authority Key Identifier: 
                keyid:A9:1F:1E:57:7C:A1:DB:B8:E0:5C:0F:56:A6:F6:78:B1:EA:40:D8:CE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access: 
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qR8eV3yh27jgXA9WpvZ4sepA2M4.cer

            Subject Information Access: 
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/L_fZw_gWrhbeV_EgpbyKkmTA2xM.roa

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/049a12-fe9b-4c32-b63c-ef4674562566/1/qR8eV3yh27jgXA9WpvZ4sepA2M4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  178.212.224.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b6:52:d6:3c:dd:84:dc:0f:3d:c8:63:cd:38:08:e5:82:b3:24:
         c2:55:20:c0:39:bf:8f:a1:dd:4a:65:8f:50:99:d6:31:48:21:
         4b:b5:f7:b0:c2:60:8b:5d:b8:ed:b1:4f:4e:1d:4d:58:96:f3:
         4a:b1:7e:40:3b:d1:fa:4e:4b:0a:40:24:b9:64:92:59:46:73:
         5a:46:78:43:65:bc:ff:aa:45:40:1e:31:ba:20:5f:96:73:17:
         ec:9a:ff:07:b6:5f:32:b6:7d:e3:33:66:24:09:7d:ac:db:43:
         f8:4e:43:b1:8f:c2:25:41:94:fa:fb:b9:66:18:97:00:76:40:
         44:3d:8e:44:1b:aa:fe:05:ec:26:1e:fc:1f:12:38:86:b9:58:
         8d:f9:6d:c5:20:25:2c:d5:89:ce:95:0b:2d:4e:ce:73:e0:c7:
         71:24:64:aa:12:57:f7:8d:41:04:61:6c:fe:4b:68:b6:b3:e9:
         8b:5f:1d:a2:c5:64:d3:1f:7d:0f:38:58:c6:f1:22:bd:84:15:
         86:0a:cb:09:96:b8:04:36:28:fe:94:d9:4c:a0:cd:ec:0c:42:
         50:f9:99:c5:61:29:78:1c:e1:67:92:93:a6:46:e5:49:55:38:
         c5:72:1a:8b:2b:8e:63:dc:9e:2c:68:0e:b4:81:65:ac:40:31:
         c3:84:6c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Dec 8 19:30:31 2022 by rpki-client.