Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/IqvJUwr419O_TnaD98O_G3Z_AkU.roa
File:                     IqvJUwr419O_TnaD98O_G3Z_AkU.roa (raw, json)
Hash identifier:          3SIqE/iogUa1fdjdTi8z2wcYqv69bXgg8idyFloVsbk=
Subject key identifier:   22:AB:C9:53:0A:F8:D7:D3:BF:4E:76:83:F7:C3:BF:1B:76:7F:02:45
Certificate issuer:       /CN=51e15da33967d41470a96d6141c8340f2240581c
Certificate serial:       082C3AD8
Authority key identifier: 51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/IqvJUwr419O_TnaD98O_G3Z_AkU.roa
Signing time:             Sat 01 Jan 2022 14:08:38 +0000
ROA not before:           Sat 01 Jan 2022 14:08:38 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     57395
IP address blocks:        185.255.80.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 137116376 (0x82c3ad8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=51e15da33967d41470a96d6141c8340f2240581c
        Validity
            Not Before: Jan  1 14:08:38 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=22abc9530af8d7d3bf4e7683f7c3bf1b767f0245
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:9d:44:7d:d6:c7:75:0a:49:30:c7:24:b3:c1:
                    5e:ac:21:51:4a:ee:b8:e6:c2:53:eb:4e:ee:b4:5c:
                    55:22:f4:77:0a:96:9e:f6:f2:5e:ad:82:4c:57:8e:
                    4c:0b:9f:40:bb:36:f7:25:d4:5e:78:12:d1:d4:fd:
                    42:25:36:a8:a8:d4:17:d6:29:58:fa:c4:bc:0e:2b:
                    36:67:7c:15:aa:c6:e5:17:56:3f:ff:f5:5d:87:a2:
                    5d:20:35:19:da:68:d2:c1:50:c2:8d:9a:f5:e8:35:
                    95:64:02:40:9a:65:f7:fc:b5:d5:cb:ce:1b:08:fe:
                    43:32:83:ec:92:b2:5e:dc:a9:9d:b9:c5:cd:37:c4:
                    7f:76:f9:08:95:9e:73:48:03:90:b1:3e:80:b6:45:
                    c7:93:8c:2e:ce:54:b0:94:8d:30:77:2c:82:72:bf:
                    df:f6:51:d9:93:9d:45:41:1b:a4:7c:cb:9a:e5:8c:
                    66:f3:42:4e:1d:29:d2:16:1f:c4:cf:47:c1:47:c8:
                    19:78:6b:d6:38:7e:64:dc:69:dc:6d:06:bf:5d:8b:
                    85:e7:27:ed:51:22:2a:2d:f1:8d:ed:68:5b:cc:e1:
                    96:53:ae:83:76:57:1e:02:51:91:94:f2:4f:7c:ac:
                    72:65:7d:59:0b:9a:5f:da:a0:43:39:f0:81:68:36:
                    52:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                22:AB:C9:53:0A:F8:D7:D3:BF:4E:76:83:F7:C3:BF:1B:76:7F:02:45
            X509v3 Authority Key Identifier:
                keyid:51:E1:5D:A3:39:67:D4:14:70:A9:6D:61:41:C8:34:0F:22:40:58:1C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UeFdozln1BRwqW1hQcg0DyJAWBw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/IqvJUwr419O_TnaD98O_G3Z_AkU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/02/23d5c1-ac66-461f-900f-380885740d4a/1/UeFdozln1BRwqW1hQcg0DyJAWBw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.255.80.0/22

    Signature Algorithm: sha256WithRSAEncryption
         73:78:cb:a8:fa:ac:02:af:83:21:01:b7:b9:9e:40:db:f9:26:
         fa:4a:21:c9:06:40:50:bb:41:71:c7:c1:18:6e:51:e2:86:85:
         1a:de:9a:17:e9:93:dc:86:0a:75:83:76:46:fd:7a:48:ed:38:
         b1:6c:d7:c3:05:36:4d:c6:e1:5a:c9:bf:bd:3c:f9:08:b0:2b:
         07:87:44:f7:08:fc:7a:9c:66:67:32:61:8d:a8:45:7e:18:d7:
         a4:4f:fd:10:3c:b1:2f:3f:44:53:67:ea:62:bc:0b:81:5b:d2:
         39:5f:a9:db:8a:16:ec:28:ef:d3:0d:98:92:93:83:b0:93:13:
         dc:b4:7d:25:11:06:e0:46:a1:2d:18:ab:b6:aa:ff:ef:26:e7:
         82:e2:4d:7e:2b:46:95:5a:9e:9d:1c:75:8d:df:c8:08:f5:60:
         3f:0d:29:e2:2f:13:29:bd:4c:8c:10:0f:77:52:3a:24:af:ae:
         59:4a:b9:38:50:a9:23:41:c8:41:fa:b9:f8:c6:d3:60:dd:c6:
         f0:75:a6:23:20:5e:77:68:59:12:20:7d:69:58:b7:78:d2:b4:
         8f:7c:f6:77:21:93:23:ac:d7:f2:ef:3a:dc:e3:26:df:f0:2d:
         03:8a:1c:9b:0f:4a:79:08:cc:07:9e:b9:09:68:db:7c:78:15:
         5b:b4:a0:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:43 2024 by rpki-client on console-fra.rpki-client.org