Route Origin Authorization

$ rpki-client -vvf repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e2039343232.roa
File:                     3232332e3133302e32302e302f32342d3234203d3e2039343232.roa (raw, json)
Hash identifier:          LyqmapF5JjdI/rdKpXMNX5cFG7tkqb/QAmx35AZmW/M=
Subject key identifier:   4C:61:CF:37:0E:C1:61:B6:76:67:1B:64:8A:C9:F8:9C:17:6C:E1:D1
Certificate issuer:       /CN=295CEF87CDB74B1A43287E630C3FE568272D2F33
Certificate serial:       44E9665ED63A44403E566A94E42613194BA585E3
Authority key identifier: 29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e2039343232.roa
Signing time:             Sat 25 Sep 2021 22:03:07 +0000
ROA not before:           Sat 25 Sep 2021 21:58:07 +0000
ROA not after:            Sun 25 Sep 2022 22:03:07 +0000
asID:                     9422
IP address blocks:        223.130.20.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            44:e9:66:5e:d6:3a:44:40:3e:56:6a:94:e4:26:13:19:4b:a5:85:e3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=295CEF87CDB74B1A43287E630C3FE568272D2F33
        Validity
            Not Before: Sep 25 21:58:07 2021 GMT
            Not After : Sep 25 22:03:07 2022 GMT
        Subject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
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:fc:25:8c:f8:21:f8:42:28:4b:d9:a0:3c:e7:
                    fc:8f:30:df:f5:42:26:6f:fd:c9:db:1d:8c:fe:e6:
                    34:0f:5a:f0:13:d2:94:0a:fb:d0:ca:c4:c5:32:7b:
                    9b:66:75:29:4d:50:89:de:21:c0:d2:41:fa:5a:ec:
                    37:37:7e:31:27:4f:30:ab:39:2f:e1:9d:52:02:20:
                    28:4c:98:79:3c:ae:a8:0b:c8:6e:88:d4:22:f6:ba:
                    89:d7:16:bd:fa:00:7d:bb:da:75:c3:55:40:8e:5b:
                    9c:9a:ab:34:79:c1:63:ab:38:db:da:fb:7c:11:0b:
                    3f:1c:fc:a5:29:38:a8:87:df:40:a0:d2:33:81:36:
                    d2:d8:40:58:73:47:b9:79:42:f9:ee:1d:3c:78:e4:
                    1e:1c:d9:a6:bd:89:c6:73:c2:77:3c:a0:a8:01:2a:
                    64:fe:86:3a:75:51:be:66:1c:8f:bd:cc:39:d8:92:
                    28:10:72:f2:88:c4:48:71:33:95:de:14:58:4c:0a:
                    3d:2a:d8:2d:2c:76:c8:37:30:48:e8:3a:62:a9:f6:
                    19:a5:9e:6e:32:bc:a8:03:c0:cc:9d:1a:e3:c4:dc:
                    0a:95:4d:47:4e:b3:bc:d6:93:e4:9d:08:72:dd:94:
                    94:b3:c0:50:21:61:a0:d0:40:7b:ee:d6:37:68:68:
                    44:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:61:CF:37:0E:C1:61:B6:76:67:1B:64:8A:C9:F8:9C:17:6C:E1:D1
            X509v3 Authority Key Identifier:
                keyid:29:5C:EF:87:CD:B7:4B:1A:43:28:7E:63:0C:3F:E5:68:27:2D:2F:33

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/295CEF87CDB74B1A43287E630C3FE568272D2F33.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/295CEF87CDB74B1A43287E630C3FE568272D2F33.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/187d79ba-fb55-49a5-967b-1edc749d0128/0/3232332e3133302e32302e302f32342d3234203d3e2039343232.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  223.130.20.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0b:99:d4:15:0d:39:db:19:13:b6:ad:53:c4:30:b1:26:00:3d:
         0b:c8:82:fa:7d:9e:f1:e4:d8:4f:8b:9e:56:13:bf:f7:a8:08:
         5a:5c:ad:b9:38:18:a3:64:1e:f2:2a:b3:d4:5c:c9:77:3d:25:
         d2:eb:31:94:97:6e:1b:6e:97:f4:08:4a:e6:95:da:1d:96:3f:
         a6:d3:46:92:23:c8:63:d9:70:ad:ad:1b:6b:e1:20:a1:f7:d1:
         52:6f:c3:f2:22:2b:f6:ae:9b:4d:84:b4:34:b3:aa:ff:9c:cc:
         12:be:d6:0a:7e:d0:0a:00:aa:3c:4a:55:18:b7:d0:22:f6:82:
         74:13:fc:71:35:7f:27:9f:ef:50:8c:7d:4b:91:68:9b:30:2c:
         59:45:c8:d1:7c:10:19:c0:6c:99:8b:d0:c4:46:f1:b5:f1:74:
         f4:aa:2c:40:b5:f7:50:af:6b:7e:02:fc:79:ff:04:5f:be:97:
         47:3c:e2:e0:49:16:f4:46:43:61:5e:01:0b:5b:c7:12:c1:30:
         b5:18:07:cc:e1:7c:e9:ab:0a:50:19:77:77:26:d5:74:ab:73:
         6f:7d:38:48:ff:af:32:d7:39:77:63:f0:3d:33:5b:37:b0:a4:
         61:fc:89:43:9d:0b:60:96:bc:04:cb:88:4e:02:5d:79:24:a3:
         49:a9:7e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org