Route Origin Authorization

$ rpki-client -vvf rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/3230382e37362e34302e302f32322d3234203d3e2036343631.roa
File:                     3230382e37362e34302e302f32322d3234203d3e2036343631.roa (raw, json)
Hash identifier:          VRdVPCN42ubNHcMQsJ974oJgaW9FGBTIO6PynC4uRwc=
Subject key identifier:   CF:6A:E8:99:CA:AF:D6:05:2D:E0:74:FA:91:D1:A3:5C:6E:FE:AF:A8
Certificate issuer:       /CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
Certificate serial:       137454CB19A971FC0764ADD59665917ADCF399CD
Authority key identifier: 5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C
Authority info access:    rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer
Subject info access:      rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/3230382e37362e34302e302f32322d3234203d3e2036343631.roa
Signing time:             Mon 28 Nov 2022 11:21:58 +0000
ROA not before:           Mon 28 Nov 2022 11:16:58 +0000
ROA not after:            Mon 27 Nov 2023 11:21:58 +0000
asID:                     6461
IP address blocks:        208.76.40.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            13:74:54:cb:19:a9:71:fc:07:64:ad:d5:96:65:91:7a:dc:f3:99:cd
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed
        Validity
            Not Before: Nov 28 11:16:58 2022 GMT
            Not After : Nov 27 11:21:58 2023 GMT
        Subject: CN=CF6AE899CAAFD6052DE074FA91D1A35C6EFEAFA8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e6:03:31:61:98:52:f4:01:af:71:bf:4e:2a:f5:
                    65:7c:e0:3d:76:d3:cd:29:05:cc:e9:27:8a:ed:ad:
                    6e:d8:64:48:fa:20:59:a7:ea:ba:bd:6e:6a:8f:89:
                    19:49:32:29:00:93:2e:3b:ca:88:c0:86:bf:af:6e:
                    77:b1:88:61:ea:92:89:2b:5e:9a:29:3a:f3:c7:63:
                    f1:11:bd:69:bb:d2:c1:45:7e:79:fe:81:b3:f1:c3:
                    f9:ef:6a:52:96:0d:d7:b9:ac:bd:c5:5f:9f:23:c0:
                    53:29:d6:92:a3:e5:2f:00:98:fc:95:41:35:60:33:
                    9b:43:2d:29:20:02:de:85:98:0f:32:7f:0f:7c:85:
                    a6:b6:33:c8:42:ed:24:e7:03:b3:5f:e8:ce:c3:b9:
                    17:d8:86:a7:49:2a:e4:b8:e6:b2:6e:65:a1:74:dd:
                    ce:a4:bf:ba:2a:06:9b:d3:53:0c:aa:3a:53:46:b3:
                    a5:a3:09:ba:57:a0:0a:87:a0:c0:3e:59:95:60:89:
                    a0:86:d6:c2:5b:04:50:dc:8c:bf:89:a5:fe:aa:68:
                    93:8c:76:60:44:be:9e:f4:ad:01:68:b5:6f:ed:7b:
                    a1:39:c0:6e:3d:cf:04:7a:19:f0:b8:1f:1e:53:5e:
                    1e:a8:69:68:8c:f4:ac:2e:e4:cf:49:c5:c1:12:ee:
                    c8:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CF:6A:E8:99:CA:AF:D6:05:2D:E0:74:FA:91:D1:A3:5C:6E:FE:AF:A8
            X509v3 Authority Key Identifier:
                keyid:5B:40:D3:73:D6:71:7C:70:4C:48:3C:A0:65:8C:FB:52:57:C4:E9:3C

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/5B40D373D6717C704C483CA0658CFB5257C4E93C.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/2bd0fac6-1a46-40b5-be66-9e0f7b54df77/44da5d103277c937c53dce305bd9d79c2ba79425357bb56eed.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki-rps.arin.net/repository/8a848adf8143bf620182113eea490d33/1/3230382e37362e34302e302f32322d3234203d3e2036343631.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  208.76.40.0/22

    Signature Algorithm: sha256WithRSAEncryption
         69:2d:d1:87:bf:c1:fe:27:ec:a7:e7:b8:88:d5:4e:62:e9:45:
         b1:8d:0c:4f:84:ae:86:39:64:12:0e:a0:a7:10:8d:c5:22:8f:
         4c:ff:8c:fe:dc:23:d1:1d:1e:3b:c9:c7:66:9e:cb:4f:fc:a0:
         72:5b:a5:00:e6:3f:7f:8e:6c:57:12:51:1c:a6:9c:e3:e9:f7:
         58:46:d0:d3:47:08:8a:a8:c3:6c:b8:d4:9d:5a:8b:20:d9:2c:
         5a:ca:67:dd:87:05:60:19:44:eb:1a:54:03:91:e4:b1:e2:9c:
         72:7b:27:0d:0c:62:21:03:41:e7:d1:75:7f:b6:42:c6:44:3d:
         39:3d:ca:1d:db:7b:9b:db:39:51:bf:88:e8:92:5f:b7:85:81:
         17:95:c8:ff:9f:f6:de:cf:f0:af:88:88:46:85:b3:e9:24:7c:
         30:21:e5:19:d3:e5:d9:e7:32:40:7b:7b:3c:a9:6d:83:28:08:
         b5:1e:e1:f7:b1:26:ec:21:50:3b:b0:1d:ad:1a:39:e5:b6:16:
         0b:c0:52:42:d6:5f:24:12:3a:44:8a:f2:e7:fc:0d:9e:60:02:
         89:bb:83:35:4a:bd:fc:72:f7:bf:16:ca:79:b4:62:a7:87:43:
         9a:60:00:cf:36:63:8d:4d:d9:7d:8a:02:e8:d5:c3:05:d9:68:
         d9:a6:6b:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:40 2024 by rpki-client on console-ams.rpki-client.org