Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/92SOJ0B1S4CHksiMXKgy8hT46uo.roa
File:                     92SOJ0B1S4CHksiMXKgy8hT46uo.roa (raw, json)
Hash identifier:          g6GU+WO5+iHjdbXp3RIBG3mAcyGx+5qqc9fU++oYY7Q=
Subject key identifier:   F7:64:8E:27:40:75:4B:80:87:92:C8:8C:5C:A8:32:F2:14:F8:EA:EA
Certificate issuer:       /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial:       1B353639
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/92SOJ0B1S4CHksiMXKgy8hT46uo.roa
Signing time:             Mon 23 May 2022 07:14:28 +0000
ROA not before:           Mon 23 May 2022 07:14:28 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     8708
IP address blocks:        217.156.14.0/24 maxlen: 24
                          193.231.227.0/24 maxlen: 24
                          193.231.233.0/24 maxlen: 24
                          193.231.236.0/24 maxlen: 24
                          193.231.238.0/24 maxlen: 24
                          81.181.112.0/24 maxlen: 24
                          193.231.252.0/24 maxlen: 24
                          80.96.219.0/24 maxlen: 24
                          193.231.184.0/24 maxlen: 24
                          193.231.187.0/24 maxlen: 24
                          193.231.188.0/24 maxlen: 24
                          193.231.189.0/24 maxlen: 24
                          194.102.134.0/24 maxlen: 24
                          80.97.149.0/24 maxlen: 24
                          80.97.147.0/24 maxlen: 24
                          80.97.148.0/24 maxlen: 24
                          81.180.27.0/24 maxlen: 24
                          81.181.128.0/24 maxlen: 24
                          81.181.167.0/24 maxlen: 24
                          80.96.67.0/24 maxlen: 24
                          80.96.79.0/24 maxlen: 24
                          80.96.12.0/24 maxlen: 24
                          193.230.217.0/24 maxlen: 24
                          194.102.229.0/24 maxlen: 24
                          80.96.51.0/24 maxlen: 24
                          80.96.47.0/24 maxlen: 24
                          193.231.108.0/24 maxlen: 24
                          193.226.116.0/24 maxlen: 24
                          193.226.125.0/24 maxlen: 24
                          193.226.127.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 456472121 (0x1b353639)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
        Validity
            Not Before: May 23 07:14:28 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=f7648e2740754b808792c88c5ca832f214f8eaea
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:91:82:fc:6d:89:d0:24:53:77:05:81:13:cc:c2:
                    5d:13:93:2e:72:94:b2:2b:cb:62:fd:bd:74:1c:34:
                    23:a8:c0:d9:08:d9:94:52:96:2e:ad:cd:38:29:f6:
                    71:97:96:2b:2e:f0:75:ed:4f:65:4a:f8:55:15:09:
                    e6:05:31:1c:b1:32:7d:ab:a5:dd:c0:81:19:52:75:
                    b6:5f:e7:bc:bb:e7:e5:a8:83:59:73:39:b3:0e:38:
                    b4:82:2b:48:3f:b8:66:ed:fb:ee:ee:7b:df:c5:e4:
                    46:ce:d0:32:e2:51:8a:24:a3:b2:92:41:4f:8f:9a:
                    d0:25:44:08:b2:3a:82:43:c3:af:2e:72:ab:1e:31:
                    3f:e7:43:3c:6a:43:04:cd:aa:03:bf:c8:b6:7c:2c:
                    5b:09:05:c9:b6:4c:5b:1a:3b:0f:85:c2:73:98:12:
                    24:37:1d:87:2b:55:73:00:ab:45:34:09:9a:f2:7a:
                    5a:9c:72:d8:36:bc:74:e1:aa:86:1a:3f:db:15:68:
                    60:1d:df:7c:00:97:b2:8e:d9:aa:9d:44:72:49:4a:
                    a3:d0:29:79:cd:fc:b7:c2:51:b5:51:8a:e3:65:27:
                    b5:c0:bd:fd:5e:d8:88:02:3a:b5:50:97:0d:a9:45:
                    97:9d:cc:9b:61:c7:ed:6e:7c:8b:60:c7:40:29:6a:
                    e8:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:64:8E:27:40:75:4B:80:87:92:C8:8C:5C:A8:32:F2:14:F8:EA:EA
            X509v3 Authority Key Identifier:
                keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/92SOJ0B1S4CHksiMXKgy8hT46uo.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  80.96.12.0/24
                  80.96.47.0/24
                  80.96.51.0/24
                  80.96.67.0/24
                  80.96.79.0/24
                  80.96.219.0/24
                  80.97.147.0-80.97.149.255
                  81.180.27.0/24
                  81.181.112.0/24
                  81.181.128.0/24
                  81.181.167.0/24
                  193.226.116.0/24
                  193.226.125.0/24
                  193.226.127.0/24
                  193.230.217.0/24
                  193.231.108.0/24
                  193.231.184.0/24
                  193.231.187.0-193.231.189.255
                  193.231.227.0/24
                  193.231.233.0/24
                  193.231.236.0/24
                  193.231.238.0/24
                  193.231.252.0/24
                  194.102.134.0/24
                  194.102.229.0/24
                  217.156.14.0/24

    Signature Algorithm: sha256WithRSAEncryption
         9a:c3:79:b5:9d:d4:61:53:3d:84:ba:71:78:1f:cb:07:42:f9:
         76:85:1d:57:6d:14:1c:e0:46:8a:e5:52:a6:a1:5a:55:02:de:
         20:80:f8:fd:3c:a1:14:6d:53:07:36:a3:d8:cb:44:b2:3a:d5:
         0b:a3:c1:1c:c4:89:58:48:17:08:c9:e9:d9:c8:57:81:98:6a:
         c3:96:3e:38:ec:3d:f7:3b:b5:90:68:81:91:b8:bf:a6:f9:b2:
         c2:c6:2f:66:d8:e5:79:5b:d7:5e:9e:2e:dc:4b:a9:a7:98:a5:
         d9:5a:43:d9:53:a1:10:c1:68:7e:8c:1b:3f:eb:60:c5:60:07:
         35:16:f6:2c:72:65:89:62:d6:3f:70:41:83:7c:79:de:84:83:
         54:db:bf:77:bb:6e:24:6e:e9:a9:8d:98:e0:b2:22:02:a4:ea:
         1e:a8:7c:8e:89:af:67:c6:41:a4:56:99:5e:df:93:cc:35:b7:
         40:7a:0a:b5:92:47:6d:ba:ee:75:9f:e1:ad:a0:d9:63:02:fd:
         a8:b7:7b:33:37:6c:0f:72:5b:70:d5:25:2d:79:72:33:ed:0f:
         1f:f2:24:90:8e:08:1b:7d:64:d2:be:93:02:54:3b:7b:4f:f6:
         88:f7:0a:bb:5c:71:2b:70:35:e4:00:21:0a:8b:31:eb:65:25:
         11:4f:8e:ba
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org