Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/dColDvexlofDXDkKldKMHp4UF08.roa
File:                     dColDvexlofDXDkKldKMHp4UF08.roa (raw, json)
Hash identifier:          aKSSSGWPnhH4iuB3Q6N/BbQr2wnyKA9tOh5nhMGFq3E=
Subject key identifier:   74:2A:25:0E:F7:B1:96:87:C3:5C:39:0A:95:D2:8C:1E:9E:14:17:4F
Certificate issuer:       /CN=77eda8f726a69b504de994943b0a5f2308c2a96b
Certificate serial:       025CFA
Authority key identifier: 77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/dColDvexlofDXDkKldKMHp4UF08.roa
Signing time:             Wed 09 Feb 2022 12:29:12 +0000
ROA not before:           Wed 09 Feb 2022 12:29:12 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     7473
IP address blocks:        193.103.148.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 154874 (0x25cfa)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=77eda8f726a69b504de994943b0a5f2308c2a96b
        Validity
            Not Before: Feb  9 12:29:12 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=742a250ef7b19687c35c390a95d28c1e9e14174f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b0:cd:89:f0:3f:22:db:3b:34:7a:13:7d:74:a8:
                    d7:3c:2a:0e:52:0a:99:fd:ec:2c:be:4d:ff:99:9d:
                    5e:d1:16:d8:c2:77:ba:0b:8d:2f:e6:87:c3:36:21:
                    95:bc:3b:b9:eb:4c:10:52:d6:b5:46:37:51:2e:e4:
                    44:3e:be:57:bf:d7:56:73:97:49:2d:82:03:af:64:
                    28:d6:4d:81:7a:22:74:8b:5d:e8:91:70:42:cf:07:
                    d3:43:af:6a:3c:f4:de:f6:a3:d7:f3:8a:bc:67:e2:
                    3a:27:fc:ec:05:79:4b:c1:5c:18:0f:41:29:66:bc:
                    97:4f:68:1e:25:cc:2e:9f:dc:31:9e:aa:fc:a5:f4:
                    59:66:1d:73:41:b7:a8:a6:3a:1d:d6:65:5d:40:c3:
                    e9:39:9b:47:f8:f3:d9:a1:af:2d:24:45:f1:e4:8e:
                    6e:51:d5:d9:a4:db:4c:83:bb:b6:16:02:93:ac:61:
                    68:23:02:fa:1f:c3:4b:d8:af:68:dc:16:ff:d2:3f:
                    e6:3d:f6:39:3d:fd:01:c6:50:02:d5:5d:53:78:c4:
                    dd:a5:05:92:4b:b5:a7:8c:7f:d5:8d:b7:9e:e0:bc:
                    5c:b1:8f:c4:8d:f1:d8:5a:6f:7f:6c:af:62:67:ad:
                    57:3c:85:df:7d:2f:c1:bb:fc:d4:28:d8:d5:e9:16:
                    60:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:2A:25:0E:F7:B1:96:87:C3:5C:39:0A:95:D2:8C:1E:9E:14:17:4F
            X509v3 Authority Key Identifier:
                keyid:77:ED:A8:F7:26:A6:9B:50:4D:E9:94:94:3B:0A:5F:23:08:C2:A9:6B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d-2o9yamm1BN6ZSUOwpfIwjCqWs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/dColDvexlofDXDkKldKMHp4UF08.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/32/7276f3-c88e-4819-9e59-6084cfc6e4c4/1/d-2o9yamm1BN6ZSUOwpfIwjCqWs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.103.148.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4a:3a:f2:40:10:c0:09:82:74:a2:31:7e:f1:59:20:4d:32:32:
         93:d7:c5:c6:9a:85:c9:ba:4d:aa:f5:8b:7c:b7:ac:c7:e6:d0:
         bc:af:e3:0c:52:85:7c:de:ea:c8:da:97:a0:ba:01:6d:d6:0c:
         f1:ac:81:f2:04:fa:5f:5e:f1:89:49:6d:02:0b:b2:6b:88:08:
         10:98:8b:7c:65:62:0c:61:42:c6:e4:a3:b6:6d:80:ae:01:c8:
         ef:eb:db:38:57:49:e8:a3:81:8c:cb:19:83:aa:80:f7:d5:86:
         36:9e:82:28:85:99:28:57:40:6f:44:02:8a:0d:0b:c0:aa:c8:
         ec:11:8a:dd:43:3a:d9:48:27:05:8a:06:4c:ca:e4:9d:3b:96:
         ff:8e:c0:96:9e:27:e1:7d:c6:0c:a7:59:b8:fa:dc:8d:8b:ba:
         a6:19:c9:ec:e5:4f:74:15:4f:8f:0a:f1:27:0d:29:ef:1f:9e:
         77:98:04:c6:06:b3:34:2d:4b:4e:2d:20:4b:56:b8:bb:6f:1c:
         43:29:3f:90:08:c0:7c:b5:c3:74:16:3d:8e:76:09:75:6e:41:
         1d:80:b5:be:ba:0a:c2:bc:65:87:fc:47:49:02:95:2c:33:64:
         b0:24:c6:eb:4a:c6:f3:c4:36:6b:9e:40:62:96:48:ce:0b:07:
         2e:ef:22:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:42 2024 by rpki-client on console-fra.rpki-client.org