Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/9062e2-95ae-4656-b2ee-984a8eb51e45/1/4we_AqrJdOTEcIWkmraq5z5MFrY.roa
File:                     4we_AqrJdOTEcIWkmraq5z5MFrY.roa (raw, json)
Hash identifier:          8+kuyhPIVD4FH9E138rmWYOsahAzphqRoIRnkk/nzQ4=
Subject key identifier:   E3:07:BF:02:AA:C9:74:E4:C4:70:85:A4:9A:B6:AA:E7:3E:4C:16:B6
Certificate issuer:       /CN=32cb3c05d6a2c51c2ff52dd9dcb9e2b55c4048f9
Certificate serial:       093549C7
Authority key identifier: 32:CB:3C:05:D6:A2:C5:1C:2F:F5:2D:D9:DC:B9:E2:B5:5C:40:48:F9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Mss8BdaixRwv9S3Z3LnitVxASPk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/33/9062e2-95ae-4656-b2ee-984a8eb51e45/1/4we_AqrJdOTEcIWkmraq5z5MFrY.roa
Signing time:             Sat 01 Jan 2022 03:56:17 +0000
ROA not before:           Sat 01 Jan 2022 03:56:17 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     202054
IP address blocks:        185.14.56.0/22 maxlen: 24
                          46.16.132.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 154487239 (0x93549c7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=32cb3c05d6a2c51c2ff52dd9dcb9e2b55c4048f9
        Validity
            Not Before: Jan  1 03:56:17 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=e307bf02aac974e4c47085a49ab6aae73e4c16b6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:26:f6:d7:98:59:53:20:03:a7:f1:51:d6:c8:
                    9e:b3:b4:1f:fe:1d:0d:f8:7f:05:04:a5:56:24:6c:
                    01:3a:46:68:ed:60:51:dd:d7:0c:9d:1f:13:41:5e:
                    2a:66:64:3c:c2:19:fd:3e:a7:8f:28:8c:98:8b:a6:
                    ad:7c:de:47:59:f2:4f:28:a9:bc:db:f7:63:4f:4b:
                    6d:51:8a:0c:b8:7b:18:e7:52:bf:76:6c:e4:67:c5:
                    6f:2c:be:44:91:35:66:a8:44:a6:60:44:93:e8:89:
                    19:c7:d0:e9:6e:df:ac:30:e4:57:6d:0c:4a:68:00:
                    07:e5:72:d1:48:03:6c:5b:ea:83:52:62:b7:56:d7:
                    5d:a6:c4:18:4e:5d:98:27:05:ff:34:8f:dc:ce:1b:
                    e9:88:00:17:30:6d:ae:da:05:54:41:bc:60:30:c5:
                    37:58:66:e4:55:9e:d5:ca:54:e9:4a:90:32:db:cb:
                    9f:2c:13:83:af:b1:67:ac:66:c7:f1:08:a3:9f:21:
                    8a:4a:1a:7f:45:fa:1f:4a:0e:ee:69:43:06:8a:5d:
                    88:9c:be:d6:c4:24:38:2e:f1:35:86:f7:44:64:95:
                    99:04:4c:50:fa:72:af:cb:21:8e:36:c8:04:a0:21:
                    7f:6c:7d:03:1a:3a:cf:17:9b:e9:ad:99:6a:fc:c7:
                    6b:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:07:BF:02:AA:C9:74:E4:C4:70:85:A4:9A:B6:AA:E7:3E:4C:16:B6
            X509v3 Authority Key Identifier:
                keyid:32:CB:3C:05:D6:A2:C5:1C:2F:F5:2D:D9:DC:B9:E2:B5:5C:40:48:F9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mss8BdaixRwv9S3Z3LnitVxASPk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9062e2-95ae-4656-b2ee-984a8eb51e45/1/4we_AqrJdOTEcIWkmraq5z5MFrY.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/33/9062e2-95ae-4656-b2ee-984a8eb51e45/1/Mss8BdaixRwv9S3Z3LnitVxASPk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  46.16.132.0/22
                  185.14.56.0/22

    Signature Algorithm: sha256WithRSAEncryption
         26:72:0b:96:cb:31:b8:62:1d:bc:64:4c:63:f7:65:4a:d3:2d:
         1e:f2:38:e3:23:36:bc:8f:65:c5:28:96:f2:ff:7c:96:71:9f:
         37:6d:c5:8f:19:83:a1:64:91:cb:f7:52:c0:97:d2:bd:69:af:
         fe:dc:06:ba:96:18:9a:83:30:55:5a:90:98:81:5e:38:42:b9:
         78:c1:c2:20:dd:b0:67:08:91:89:fe:d0:16:fd:fa:dd:05:85:
         3a:40:5f:2a:0a:3b:f1:aa:1f:e4:68:e8:f7:19:eb:42:a8:dc:
         7f:dd:f4:e9:e2:b6:e6:29:a4:85:00:98:57:41:e3:16:f4:1f:
         43:e4:1e:dc:70:80:f1:dc:ee:71:09:ec:b0:89:e8:8a:0a:49:
         56:2d:3d:a9:fe:ab:57:05:3f:d2:5b:4a:f9:e2:06:d1:67:af:
         a9:0c:e1:97:22:91:14:b9:86:f5:ea:86:31:7a:62:3d:7b:d6:
         62:c2:da:47:d3:9d:98:f0:6b:3e:c2:70:27:4b:a7:89:8b:c0:
         39:f5:f0:b8:d0:91:41:66:16:f7:d8:47:af:e0:49:8f:02:6f:
         13:7f:dd:87:8e:63:65:63:0d:ea:68:c7:a1:38:a5:e7:2e:76:
         bf:dd:6c:c6:05:3f:48:82:25:70:3b:60:da:81:9c:fc:c2:c1:
         fd:29:f6:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:52 2024 by rpki-client on console-fra.rpki-client.org