Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/RxwUFWLa0dlehg-zvLrVD_Ki_VI.roa
File:                     RxwUFWLa0dlehg-zvLrVD_Ki_VI.roa (raw, json)
Hash identifier:          1FYSNAh+NDGIimPfZLxObyf/fsTT4n8/UYHJGqRt4rk=
Subject key identifier:   47:1C:14:15:62:DA:D1:D9:5E:86:0F:B3:BC:BA:D5:0F:F2:A2:FD:52
Certificate issuer:       /CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
Certificate serial:       0184F282FC27669037459650927776B629C3
Authority key identifier: 53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/RxwUFWLa0dlehg-zvLrVD_Ki_VI.roa
Signing time:             Thu 08 Dec 2022 16:13:01 +0000
ROA not before:           Thu 08 Dec 2022 16:13:01 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     16509
IP address blocks:        2a13:5241::/32 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:84:f2:82:fc:27:66:90:37:45:96:50:92:77:76:b6:29:c3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53b46ab79b9fc58f5dc4cf29d72dc5267ec3edde
        Validity
            Not Before: Dec  8 16:13:01 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=471c141562dad1d95e860fb3bcbad50ff2a2fd52
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:6a:a1:b8:8f:62:56:85:e4:75:2b:a4:73:94:
                    fa:b1:9c:8f:84:9e:7f:ad:38:ab:c8:11:0d:57:e7:
                    08:7a:cb:17:ce:d6:e8:12:00:ee:cf:e2:6b:1e:9c:
                    19:ad:5d:48:2d:ed:98:e4:c1:ab:80:81:79:6c:51:
                    ac:3e:b1:87:f7:02:d0:2d:6d:2f:c9:91:d4:cf:40:
                    97:0f:7a:7b:36:ed:63:2f:fd:76:f5:4a:ab:e3:f1:
                    56:2e:b0:f1:40:eb:81:61:a8:ea:85:f1:20:ac:e0:
                    cc:3a:80:13:14:4f:0e:44:ca:a3:80:f6:4a:7b:39:
                    0c:74:d2:49:3a:16:34:49:e9:22:c9:70:db:70:9f:
                    a2:1a:ea:04:21:ee:ec:3f:b1:2f:81:a9:89:51:30:
                    4e:a1:67:53:77:50:ab:a9:4e:bd:53:dc:e5:d7:c3:
                    88:e1:77:af:a1:0b:d2:ca:ab:b0:ce:3d:e9:87:3c:
                    33:e5:4b:85:98:13:4f:59:62:e4:e5:08:0d:58:7a:
                    ba:9d:a7:78:20:b8:c1:33:5f:13:18:b9:b8:07:9f:
                    bf:c5:ea:57:e5:6b:fa:88:78:fe:5e:85:66:e8:58:
                    1d:d2:35:01:d7:db:bc:de:97:2a:39:51:5f:e6:84:
                    56:d5:b3:90:83:10:cb:21:ee:48:b4:ab:f5:cc:dd:
                    e8:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:1C:14:15:62:DA:D1:D9:5E:86:0F:B3:BC:BA:D5:0F:F2:A2:FD:52
            X509v3 Authority Key Identifier:
                keyid:53:B4:6A:B7:9B:9F:C5:8F:5D:C4:CF:29:D7:2D:C5:26:7E:C3:ED:DE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/RxwUFWLa0dlehg-zvLrVD_Ki_VI.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/ac9af6-7fc3-4d13-a594-060a4738091d/1/U7Rqt5ufxY9dxM8p1y3FJn7D7d4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a13:5241::/32

    Signature Algorithm: sha256WithRSAEncryption
         7c:f5:d7:0c:3b:cf:47:cf:29:10:8f:74:76:1d:50:ab:2c:18:
         2f:4d:f6:02:89:34:39:8f:92:35:2f:cf:28:ea:68:2f:c8:70:
         10:31:00:e9:28:c9:9b:11:11:9a:6f:a2:a2:67:0a:1d:74:f8:
         30:9f:43:3a:b8:c0:03:3e:62:85:a2:1c:4a:67:a9:c8:39:ef:
         b0:53:45:50:03:7e:1a:15:32:3a:04:a3:d8:cc:20:0f:ae:f7:
         bd:a1:fb:9e:16:01:5c:86:02:4c:b3:32:4d:a0:00:01:f7:29:
         bb:73:3e:fb:66:91:99:f4:d8:2b:29:a8:08:59:9a:ec:7d:7e:
         42:58:75:69:92:12:e7:bc:2f:cb:66:77:7c:b2:39:a7:c5:8e:
         a5:d5:4e:87:0f:1f:0e:30:17:7e:86:ce:4d:b1:6d:4f:8a:2e:
         44:65:f0:2e:c4:18:8c:79:2b:e2:ff:4b:b4:8f:35:fe:4a:28:
         a2:68:dc:d6:e7:57:0e:29:ef:79:35:da:16:2f:08:98:68:03:
         08:53:0c:bb:64:c1:7e:c6:e1:ab:fe:e2:4d:b1:8b:20:a5:54:
         31:00:ce:fd:34:c6:55:2d:36:34:f9:8b:f2:bc:d3:b3:ad:dd:
         e0:30:6f:f2:c8:db:35:85:0c:e8:e3:53:3b:54:d5:60:39:ee:
         db:d2:51:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:34 2024 by rpki-client on console-fra.rpki-client.org