Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ZFT8DxsZbAzvjF6YWDqGRh81Ft8.roa
File:                     ZFT8DxsZbAzvjF6YWDqGRh81Ft8.roa (raw, json)
Hash identifier:          RQO6oOK6K78Pb5wVYAkOABM3I+namKZbsXGLyHm/ag8=
Subject key identifier:   64:54:FC:0F:1B:19:6C:0C:EF:8C:5E:98:58:3A:86:46:1F:35:16:DF
Certificate issuer:       /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial:       37E7BFC6
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ZFT8DxsZbAzvjF6YWDqGRh81Ft8.roa
Signing time:             Thu 28 Apr 2022 11:39:59 +0000
ROA not before:           Thu 28 Apr 2022 11:39:59 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     44179
IP address blocks:        82.103.64.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 937934790 (0x37e7bfc6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
        Validity
            Not Before: Apr 28 11:39:59 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=6454fc0f1b196c0cef8c5e98583a86461f3516df
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:88:30:a9:4a:9c:49:da:1e:70:94:45:78:7e:2e:
                    b7:92:e4:84:76:f6:1a:dd:a9:96:c2:d7:c2:9d:cd:
                    52:67:e9:9c:df:2c:50:bf:89:15:12:34:c5:2c:7a:
                    b9:38:91:1d:88:84:07:fe:75:ec:b4:32:85:63:cc:
                    e3:6a:29:c9:e4:3f:db:19:f5:50:3f:10:23:08:37:
                    9d:20:11:c5:29:50:2f:b4:2c:f0:b1:74:81:f3:eb:
                    04:3f:61:84:37:be:b0:db:a1:ca:e5:2a:c6:49:e8:
                    eb:a2:6a:6b:18:e9:7f:d5:78:e5:15:3e:3a:06:10:
                    78:8c:88:fc:e7:be:7f:b9:e0:25:9b:52:ea:f5:e7:
                    a0:7b:fd:b2:32:e4:c2:a7:70:cd:a7:6c:36:75:bd:
                    ae:a9:3d:19:71:cc:16:3b:e4:49:d0:bc:92:45:2e:
                    84:04:15:da:57:e2:e6:d9:51:d9:82:02:7e:fb:da:
                    b8:73:e4:60:cf:43:0c:1e:3b:9e:29:b6:82:48:be:
                    3b:2b:cb:29:df:02:06:ad:e3:a5:1e:b4:19:5b:14:
                    96:76:4b:fe:a2:da:7b:e6:7d:bc:bd:58:2a:ea:65:
                    b1:15:66:6b:70:85:8c:e4:e3:9a:54:8b:5e:72:83:
                    a9:e9:cb:9d:8f:4d:1c:2e:b2:dc:68:c3:d2:34:ef:
                    d3:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                64:54:FC:0F:1B:19:6C:0C:EF:8C:5E:98:58:3A:86:46:1F:35:16:DF
            X509v3 Authority Key Identifier:
                keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/ZFT8DxsZbAzvjF6YWDqGRh81Ft8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  82.103.64.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7a:cb:20:e2:94:29:2b:eb:59:f0:ab:66:38:f1:c8:b8:70:d7:
         5e:32:e3:5d:91:85:3f:e4:38:1d:66:21:98:de:2b:33:5b:e9:
         cc:b5:d7:f9:37:5a:7d:a8:dc:91:30:51:5e:e1:e2:5e:64:b2:
         ca:80:68:57:f4:61:03:52:b1:cf:4e:98:dc:39:72:fd:e2:ba:
         24:99:af:29:1d:0d:98:83:a4:2b:f7:37:d6:1d:a0:89:14:79:
         e9:38:3f:32:81:82:3a:21:dd:5b:72:b6:b2:d3:83:93:31:5b:
         04:8d:96:da:53:ed:ea:20:61:84:ae:64:9f:bd:94:95:82:d8:
         ee:a1:38:9e:26:be:6a:73:9e:08:09:95:e0:78:05:b5:90:d7:
         52:43:7d:35:47:1e:73:6d:4e:07:a7:17:5e:48:22:96:1e:92:
         ed:de:a8:0c:9e:2f:57:c6:9d:27:87:eb:39:fd:a7:e9:a1:13:
         e2:34:bc:ab:b9:fa:da:d1:32:c5:25:9f:e8:82:e1:17:02:2c:
         12:73:4c:c4:fe:2a:1e:27:08:3f:e0:05:af:05:6a:39:db:74:
         5e:89:e7:46:a7:cf:8d:96:16:5f:70:70:27:4f:b9:03:4d:8f:
         ed:e6:e9:ab:ff:1e:54:10:c6:4a:13:7f:11:13:0e:9a:b0:9e:
         0d:01:fd:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:52 2024 by rpki-client on console-ams.rpki-client.org