Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/57AmT0MKPEz9WgzPuVQU1zFdwd0.roa
File:                     57AmT0MKPEz9WgzPuVQU1zFdwd0.roa (raw, json)
Hash identifier:          +o8V3n1bl+ssDV6i/4yC+yvBAkc/pgNm7kxGanadcBA=
Subject key identifier:   E7:B0:26:4F:43:0A:3C:4C:FD:5A:0C:CF:B9:54:14:D7:31:5D:C1:DD
Certificate issuer:       /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial:       042EB276
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/57AmT0MKPEz9WgzPuVQU1zFdwd0.roa
Signing time:             Sat 01 Jan 2022 06:03:32 +0000
ROA not before:           Sat 01 Jan 2022 06:03:32 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     34416
IP address blocks:        188.214.26.0/24 maxlen: 24
                          188.215.234.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 70169206 (0x42eb276)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
        Validity
            Not Before: Jan  1 06:03:32 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e7b0264f430a3c4cfd5a0ccfb95414d7315dc1dd
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:b6:1e:3a:8f:52:ae:76:31:09:08:fc:81:74:
                    1f:e7:d3:d8:b3:e9:45:7d:37:03:fa:3d:3a:55:c8:
                    b2:11:71:a5:27:84:78:61:48:96:30:54:34:db:b2:
                    e2:e9:c7:f0:74:32:6c:a6:c6:80:91:89:78:27:4f:
                    ad:32:8f:4d:66:68:f5:d7:11:03:ef:9e:e5:41:22:
                    c3:7e:28:e3:1a:ef:a3:31:b1:8d:30:c6:fe:d4:ff:
                    3f:7f:80:05:8e:a6:81:93:ef:0c:ac:6a:ed:2a:fa:
                    b0:d9:33:e3:ff:0f:24:b5:58:59:52:5b:07:33:ba:
                    84:55:7d:d1:ad:06:f6:7c:ed:2a:d7:9b:06:f2:7c:
                    ad:de:ed:0e:38:f2:c8:86:9d:3b:ec:fa:56:d6:b4:
                    8a:ba:ba:9e:61:f9:32:26:f3:61:ca:96:62:8f:69:
                    db:91:f4:78:be:b4:e4:8a:23:8d:a2:5c:13:85:15:
                    33:92:1b:81:0a:e7:f7:96:08:04:96:b3:d2:bb:d6:
                    8f:91:2f:07:f8:bc:f6:10:5f:69:21:ee:08:73:b0:
                    b0:d7:bc:21:ae:ed:14:bc:44:c7:e1:43:78:b8:4f:
                    d1:84:48:9e:fe:82:e2:ef:94:46:e6:c4:0c:a2:5e:
                    b1:1c:8a:fa:18:14:a1:4d:b3:9f:63:36:0a:59:5c:
                    12:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:B0:26:4F:43:0A:3C:4C:FD:5A:0C:CF:B9:54:14:D7:31:5D:C1:DD
            X509v3 Authority Key Identifier:
                keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/57AmT0MKPEz9WgzPuVQU1zFdwd0.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  188.214.26.0/24
                  188.215.234.0/24

    Signature Algorithm: sha256WithRSAEncryption
         01:f7:2e:48:1f:b1:39:da:3f:c3:75:96:6b:36:08:98:a2:69:
         85:45:66:45:24:7c:4d:2f:21:5a:c4:df:9a:83:fb:64:dc:e2:
         eb:60:ea:96:b4:ea:a7:4b:0f:59:8c:4d:6a:18:93:45:96:1f:
         8b:5a:5c:33:74:13:ff:1c:19:6e:4e:78:9a:1f:da:06:17:4d:
         04:8e:30:43:5f:9b:c1:ed:a1:8f:20:c5:41:fb:1c:d7:fd:2f:
         f0:ad:3d:96:96:26:ef:48:8e:e6:50:d3:a0:3f:47:b8:48:fe:
         aa:6d:9b:36:83:87:8b:e6:98:05:a6:0b:98:09:7c:c5:37:85:
         83:5d:59:bf:a9:21:33:bf:12:0d:73:37:84:bb:15:21:45:5a:
         02:44:66:6e:4d:7d:e6:21:4b:c7:19:a8:26:73:69:a4:54:b8:
         5a:65:68:26:2a:ad:77:b5:e9:19:a4:39:4e:d0:d8:33:60:c6:
         c5:91:0b:af:87:c3:68:b2:53:3c:4c:c2:2f:40:c3:78:9f:18:
         07:19:e5:ed:bd:08:44:e2:ad:ad:1e:90:3d:e4:fd:61:c4:a4:
         aa:b1:67:fa:0b:51:78:33:b1:5e:ae:a7:9f:22:80:e5:02:d4:
         5f:38:25:ba:9e:62:f1:e8:37:d5:b5:05:1d:6b:19:d1:93:20:
         56:bc:6d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:39 2024 by rpki-client on console-fra.rpki-client.org