Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/R7C7Lzxrh7cfwfv4QHGTdQI4JNI.roa
File:                     R7C7Lzxrh7cfwfv4QHGTdQI4JNI.roa (raw, json)
Hash identifier:          hWqJV80vmGf7Y/ArxjU2FzVZ8jd7X3yUlxOcEXJUF50=
Subject key identifier:   47:B0:BB:2F:3C:6B:87:B7:1F:C1:FB:F8:40:71:93:75:02:38:24:D2
Certificate issuer:       /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial:       018215E95C81466666E2D63C0C8A0BDAED18
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/R7C7Lzxrh7cfwfv4QHGTdQI4JNI.roa
Signing time:             Tue 19 Jul 2022 10:03:11 +0000
ROA not before:           Tue 19 Jul 2022 10:03:11 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     57207
IP address blocks:        188.255.134.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:15:e9:5c:81:46:66:66:e2:d6:3c:0c:8a:0b:da:ed:18
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
        Validity
            Not Before: Jul 19 10:03:11 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=47b0bb2f3c6b87b71fc1fbf840719375023824d2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8d:0d:3c:7a:f4:6e:c4:4a:f2:bd:89:4e:a2:72:
                    c4:d5:ce:fa:47:55:8b:c5:46:3b:3e:71:5f:81:c4:
                    3f:3b:fe:b3:12:f4:c3:57:2c:53:f7:eb:22:67:b4:
                    dc:7c:57:90:e9:49:06:b4:fb:2c:c3:53:c8:35:cd:
                    2a:8f:4b:cd:84:48:99:82:40:6b:b2:b2:f1:ce:79:
                    d6:1f:39:dd:75:9c:96:6e:44:de:c8:5b:34:37:29:
                    88:2c:32:7c:cd:c4:67:c7:90:dc:d0:c4:2c:73:a6:
                    7d:df:09:e8:9d:9c:c1:09:08:70:2c:96:8c:2f:98:
                    ce:e1:d0:a7:4f:1a:7e:e2:a5:d8:e3:d4:91:bc:f4:
                    28:07:54:08:6c:de:b4:1b:8d:9e:88:05:67:a8:9a:
                    5d:25:d4:74:99:38:97:6a:f8:9b:d1:b2:ca:bb:45:
                    58:c3:8d:2a:5e:cd:78:e8:5c:8b:0d:64:31:45:a1:
                    0e:44:2e:c1:39:62:12:d8:84:2b:06:31:83:06:6c:
                    bc:97:6b:5b:b1:ca:3a:86:c8:bf:0b:8c:12:8d:9b:
                    24:0c:e7:43:c5:52:03:f6:90:91:b0:71:e6:a5:ef:
                    cd:b1:d3:84:33:bf:e8:7d:56:2f:22:db:0a:73:7d:
                    f6:8b:99:a2:5f:87:d6:1f:99:5a:7a:df:79:be:e0:
                    d1:fd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                47:B0:BB:2F:3C:6B:87:B7:1F:C1:FB:F8:40:71:93:75:02:38:24:D2
            X509v3 Authority Key Identifier:
                keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/R7C7Lzxrh7cfwfv4QHGTdQI4JNI.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  188.255.134.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3d:7f:27:d5:b8:10:09:5f:5c:a3:85:76:24:41:6e:7a:a8:85:
         3f:da:ac:30:c0:c7:88:79:e8:04:a9:7a:79:17:16:2c:6c:3c:
         cf:be:50:03:a7:e1:9b:4b:44:4c:52:81:56:00:94:80:c2:2b:
         c3:a8:8a:10:39:69:b9:3d:50:78:50:f2:37:78:65:fb:74:9a:
         8f:36:d7:29:bf:9c:8f:f8:96:21:67:ed:96:30:3e:6e:ae:93:
         09:3b:c8:ab:54:cb:bd:90:97:4c:fc:2e:20:7b:41:47:81:e2:
         cb:7a:e0:f9:ac:41:30:c8:77:f1:78:59:a5:e4:aa:aa:ba:4b:
         36:55:50:70:e3:b4:d0:d3:d2:d6:c0:bd:c5:e1:76:58:20:94:
         90:a3:44:82:97:16:02:1c:b6:6e:b4:75:ab:21:f0:50:94:f6:
         2b:4d:2a:36:4b:b7:8e:53:9c:22:62:87:ef:66:76:d2:25:ab:
         c1:ba:61:bd:b5:16:28:27:02:3b:9e:2f:c5:b0:12:35:ca:fd:
         3f:c1:66:02:4e:73:07:8f:73:e0:66:a8:18:ca:01:a6:c6:91:
         0b:e8:cd:14:b8:9a:77:8a:b6:55:79:ba:00:0d:f5:9d:26:7b:
         28:3e:e5:59:dd:2f:43:36:63:8d:ed:7c:5d:bd:b0:ac:72:ab:
         57:67:27:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:04 2024 by rpki-client on console-ams.rpki-client.org