Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/BzIUbnE_Gm_VMI8nLA7dwR3E4MI.roa
File:                     BzIUbnE_Gm_VMI8nLA7dwR3E4MI.roa (raw, json)
Hash identifier:          m6J0cLQK0O/FNLJkljTsmfAMvPpMIXxp9e74IB1lulo=
Subject key identifier:   07:32:14:6E:71:3F:1A:6F:D5:30:8F:27:2C:0E:DD:C1:1D:C4:E0:C2
Certificate issuer:       /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial:       01841A3A7CDD4563964502EEAF2954F56262
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/BzIUbnE_Gm_VMI8nLA7dwR3E4MI.roa
Signing time:             Thu 27 Oct 2022 16:15:51 +0000
ROA not before:           Thu 27 Oct 2022 16:15:51 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     207459
IP address blocks:        185.115.207.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:84:1a:3a:7c:dd:45:63:96:45:02:ee:af:29:54:f5:62:62
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
        Validity
            Not Before: Oct 27 16:15:51 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=0732146e713f1a6fd5308f272c0eddc11dc4e0c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8c:42:68:d1:2e:17:79:85:10:f1:10:26:6c:44:
                    f7:6e:71:f5:d6:09:38:be:77:1e:fa:dd:4a:8c:ae:
                    39:c9:03:2a:2f:9b:4f:f3:4f:be:e0:ce:0f:9c:fd:
                    9f:1c:45:96:e9:d5:74:62:cb:ae:91:fb:e8:96:c1:
                    1e:31:5c:e6:42:43:c4:05:23:cc:f7:df:48:a3:56:
                    08:90:ec:20:68:09:94:16:b5:df:d0:86:92:4f:ed:
                    0a:54:2e:16:8b:c9:0e:fc:4e:37:37:e9:99:f4:a7:
                    cc:5c:12:95:ea:12:21:68:de:a7:b2:7a:61:35:7e:
                    08:20:cd:15:40:a9:bc:36:52:3f:95:3f:6e:b1:74:
                    8a:1e:c4:34:17:76:09:17:44:28:9b:84:74:eb:f5:
                    ab:c3:e3:42:4b:a2:f7:12:6c:b0:a3:25:2d:85:17:
                    1f:fa:e0:26:a3:f1:49:47:e7:d5:0a:77:8c:2c:ee:
                    4c:8d:19:08:f9:13:47:f5:ea:95:cb:ef:e2:06:07:
                    f8:d3:ae:f5:2e:87:1a:db:0c:31:ef:26:a8:ac:c2:
                    40:6d:ee:86:63:4f:54:15:0f:da:8d:12:c3:6e:9a:
                    2c:ac:1a:74:6d:35:53:26:06:fa:85:2c:dc:8d:8d:
                    88:25:27:93:e6:b2:48:6f:e3:86:ae:28:b2:59:33:
                    a4:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                07:32:14:6E:71:3F:1A:6F:D5:30:8F:27:2C:0E:DD:C1:1D:C4:E0:C2
            X509v3 Authority Key Identifier:
                keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/BzIUbnE_Gm_VMI8nLA7dwR3E4MI.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.115.207.0/24

    Signature Algorithm: sha256WithRSAEncryption
         89:67:95:95:47:5c:05:99:97:98:6a:4e:ad:12:d1:6f:cb:36:
         69:c0:60:ad:fc:0c:07:37:89:21:7e:5a:20:12:c1:48:3a:c9:
         d6:24:8e:1e:bc:fd:8b:48:f4:e0:6a:db:99:dc:53:92:91:6e:
         d9:2d:98:19:8b:b4:13:e7:e6:63:af:65:db:f7:a7:5e:01:d4:
         4b:7b:91:c1:69:5f:9f:95:82:a1:ff:8e:d3:d7:41:8b:88:a2:
         bc:b5:db:d3:5b:4a:02:b9:9e:8f:f9:1a:a1:9d:b4:d7:34:b7:
         67:ee:aa:0e:63:b8:3a:b8:af:27:0f:6f:f8:c9:e6:f8:45:6b:
         13:16:1e:25:b7:8e:54:49:c1:f5:23:54:de:d3:7a:cd:c0:4b:
         c1:69:64:0c:51:91:8f:ff:a9:87:f3:02:fc:1a:4f:d1:c7:11:
         8b:95:5a:41:f0:4e:6f:06:09:27:cf:78:d1:73:7a:6d:6f:8b:
         0e:38:59:8a:5b:29:1f:ea:25:8b:d1:91:bc:ce:11:3a:48:64:
         c2:85:40:21:4d:1e:6e:9c:9f:2e:75:87:4a:a4:51:61:63:42:
         77:d0:87:3d:96:e5:60:ad:92:7c:16:eb:06:e4:f1:2b:98:ed:
         97:ad:36:84:fe:d3:91:4f:d5:3d:eb:58:51:ed:f1:a2:43:5a:
         b7:14:8a:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org