Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/e93812-227b-409e-b555-afa3b0bea0b7/1/SMcbsXlyrelltoz9uTxmLUXOpig.roa
File:                     SMcbsXlyrelltoz9uTxmLUXOpig.roa (raw, json)
Hash identifier:          vRz+58l1Kiffv35MXLayMdBeRq4t0ohAvEGA72YlgIo=
Subject key identifier:   48:C7:1B:B1:79:72:AD:E9:65:B6:8C:FD:B9:3C:66:2D:45:CE:A6:28
Certificate issuer:       /CN=8fa73a7cc1e4d37f764036877c4281da8b00907f
Certificate serial:       0183F3F484879950EE680DC67681FC78ACEF
Authority key identifier: 8F:A7:3A:7C:C1:E4:D3:7F:76:40:36:87:7C:42:81:DA:8B:00:90:7F
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/j6c6fMHk0392QDaHfEKB2osAkH8.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/0e/e93812-227b-409e-b555-afa3b0bea0b7/1/SMcbsXlyrelltoz9uTxmLUXOpig.roa
Signing time:             Thu 20 Oct 2022 05:53:51 +0000
ROA not before:           Thu 20 Oct 2022 05:53:51 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     206591
IP address blocks:        185.181.179.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:f3:f4:84:87:99:50:ee:68:0d:c6:76:81:fc:78:ac:ef
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8fa73a7cc1e4d37f764036877c4281da8b00907f
        Validity
            Not Before: Oct 20 05:53:51 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=48c71bb17972ade965b68cfdb93c662d45cea628
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:f5:f2:99:cd:b5:28:eb:34:b0:5f:60:44:05:
                    5c:5b:d0:52:34:56:c3:22:61:ca:0c:b2:36:19:8a:
                    46:1e:0f:0d:54:12:4d:1b:66:9b:47:88:47:d8:cf:
                    87:c7:51:ed:0d:f8:b5:aa:4d:93:65:0c:4f:ce:4b:
                    e2:9a:c5:df:3c:6e:4f:85:ba:8d:e8:82:07:95:ad:
                    a9:66:e1:01:47:84:aa:5b:d7:58:d8:6a:34:ac:80:
                    43:f1:fe:bf:31:b1:e3:c3:d2:73:05:aa:e6:0e:fe:
                    a7:b2:7e:27:95:95:64:60:9e:42:5f:82:d2:16:d7:
                    cd:42:99:6a:61:4c:03:d7:f2:ec:d8:82:0b:58:a1:
                    d9:61:11:19:c3:8e:0e:c6:6c:61:6d:6d:32:f5:e5:
                    4a:bd:de:9e:7d:ee:90:87:9f:26:ce:dc:26:29:21:
                    9d:ef:6f:ca:df:e9:74:42:96:44:ed:4f:3d:cb:03:
                    99:bb:e4:67:49:52:94:ae:01:2e:73:21:74:ef:37:
                    7b:46:b6:86:79:d5:e2:dc:f2:bb:67:1b:5e:b9:8f:
                    2a:65:cb:4b:76:40:21:69:8d:97:f6:2f:dd:81:75:
                    96:3e:40:44:d3:df:f3:9d:84:c8:5c:dc:c9:8d:4b:
                    d8:f1:7c:c1:d2:14:8b:54:d5:32:1c:e9:a5:c2:21:
                    a7:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:C7:1B:B1:79:72:AD:E9:65:B6:8C:FD:B9:3C:66:2D:45:CE:A6:28
            X509v3 Authority Key Identifier:
                keyid:8F:A7:3A:7C:C1:E4:D3:7F:76:40:36:87:7C:42:81:DA:8B:00:90:7F

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j6c6fMHk0392QDaHfEKB2osAkH8.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/e93812-227b-409e-b555-afa3b0bea0b7/1/SMcbsXlyrelltoz9uTxmLUXOpig.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/e93812-227b-409e-b555-afa3b0bea0b7/1/j6c6fMHk0392QDaHfEKB2osAkH8.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.181.179.0/24

    Signature Algorithm: sha256WithRSAEncryption
         22:78:a0:fa:03:de:fb:b5:a3:4f:d2:32:c9:e4:b9:3b:1f:0a:
         6a:6c:ff:9e:da:e8:2d:2a:1c:24:5d:c6:cf:90:de:8c:d3:8d:
         66:cf:40:a4:9a:e4:c4:cb:74:af:48:c0:80:f4:ed:be:cc:7d:
         f0:1f:cf:38:62:be:c7:58:d0:15:1e:7b:58:84:ba:7b:de:68:
         d6:b0:df:ec:e2:d1:fe:e8:8f:17:dc:81:63:4a:4a:a9:ab:52:
         d6:f1:bd:ed:6e:cc:7c:6e:93:87:a1:ff:e3:24:fb:30:34:c6:
         6d:93:72:fe:2c:7c:61:ac:94:39:51:4d:18:0c:7f:4d:bd:8d:
         f5:19:6f:02:b0:84:3d:e9:32:82:d0:c6:de:13:35:8a:d0:a8:
         f3:4c:42:7a:cf:ba:63:ea:31:4f:c4:b7:3b:ed:e2:76:4a:26:
         45:ff:5c:44:70:88:cf:0e:51:d1:1c:3a:ab:c8:71:df:cf:d9:
         0a:bf:0f:d1:d1:95:de:24:24:3a:ce:79:74:6d:d1:d8:7c:2c:
         68:91:55:22:04:4e:e0:a2:e7:97:c3:fc:a2:7c:3b:08:11:50:
         b7:52:a4:2b:52:c8:24:6c:63:32:2e:bf:92:ef:cb:b9:c8:96:
         ec:3d:62:ab:43:66:c5:a7:2c:34:25:4f:83:dc:8c:09:49:23:
         0f:09:fa:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:10 2024 by rpki-client on console-ams.rpki-client.org