Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/ed7yJ68Mhc3xnm85Mqrx8Gpf_aU.roa
File:                     ed7yJ68Mhc3xnm85Mqrx8Gpf_aU.roa (raw, json)
Hash identifier:          o/PzK2pZmnDYHksYXN0pLrlQ+QnUKy+CYjVMROyJAsg=
Subject key identifier:   79:DE:F2:27:AF:0C:85:CD:F1:9E:6F:39:32:AA:F1:F0:6A:5F:FD:A5
Certificate issuer:       /CN=fad7100e77ed9119d66e2321bb6711d7e760982b
Certificate serial:       443AA0C8
Authority key identifier: FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/ed7yJ68Mhc3xnm85Mqrx8Gpf_aU.roa
Signing time:             Sat 01 Jan 2022 09:54:49 +0000
ROA not before:           Sat 01 Jan 2022 09:54:49 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     34086
IP address blocks:        80.158.0.0/17 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1144692936 (0x443aa0c8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fad7100e77ed9119d66e2321bb6711d7e760982b
        Validity
            Not Before: Jan  1 09:54:49 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=79def227af0c85cdf19e6f3932aaf1f06a5ffda5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:64:bd:87:4f:86:09:3f:5e:ec:95:f7:93:0f:
                    69:cd:86:8c:72:0f:87:4a:7f:b5:77:95:89:fe:82:
                    e4:de:3f:de:62:4c:c7:ef:06:16:7f:af:e8:bb:da:
                    cb:79:b5:a4:8e:5d:c4:85:f3:a2:df:12:86:70:1a:
                    8c:d6:51:4b:6b:ea:a3:14:59:58:98:c7:c6:06:ce:
                    dd:ec:a2:01:ee:a7:80:f4:b8:87:9d:8b:fa:b2:3f:
                    f5:36:e2:75:d3:7c:58:ed:4a:e4:d0:09:31:23:8a:
                    8b:ec:9e:5d:f8:dc:88:d2:4e:30:52:54:db:0c:05:
                    ee:55:20:fa:fe:4e:7a:6a:df:bb:87:a0:5c:22:16:
                    6a:59:d3:b1:29:c1:e1:35:43:68:64:be:54:49:49:
                    7a:22:70:b5:b2:de:4c:20:54:5c:41:24:7c:ca:16:
                    c7:b7:50:80:3c:95:20:47:27:80:05:c4:d8:f7:82:
                    6e:95:fa:e9:e7:b9:75:b2:f6:ec:d8:74:d6:9c:55:
                    51:20:66:bf:6d:cf:0e:40:09:cc:ad:65:f0:70:26:
                    74:fc:79:b4:cc:a8:86:b5:91:46:97:2e:fc:dc:05:
                    f3:b2:5a:bb:ca:44:33:59:72:24:e1:84:31:4c:03:
                    62:bb:6b:31:45:4a:0e:b5:1b:23:3e:7e:29:a8:71:
                    98:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                79:DE:F2:27:AF:0C:85:CD:F1:9E:6F:39:32:AA:F1:F0:6A:5F:FD:A5
            X509v3 Authority Key Identifier:
                keyid:FA:D7:10:0E:77:ED:91:19:D6:6E:23:21:BB:67:11:D7:E7:60:98:2B

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tcQDnftkRnWbiMhu2cR1-dgmCs.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/ed7yJ68Mhc3xnm85Mqrx8Gpf_aU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/01d411-d915-4277-8fe2-76b0dda2bf3e/1/1-tcQDnftkRnWbiMhu2cR1-dgmCs.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  80.158.0.0/17

    Signature Algorithm: sha256WithRSAEncryption
         4b:ca:f1:37:a0:c0:95:30:c4:c0:d2:97:7b:13:39:a9:dd:a3:
         d7:d4:b5:e0:73:dc:1d:85:67:ad:d0:49:7a:38:87:21:27:cb:
         39:86:67:35:47:fd:ff:78:13:54:63:01:dd:06:05:b7:c9:86:
         c9:b2:59:e9:07:09:98:74:d2:f9:44:47:15:b7:fc:88:83:7d:
         81:74:c7:c4:02:16:01:f3:31:67:b4:79:71:eb:7a:20:d1:cf:
         8b:a8:1f:16:11:67:32:cf:6a:67:8e:7e:f8:27:e1:55:56:3b:
         6e:10:3c:6a:e3:97:d1:a0:7f:7a:b8:98:89:2c:12:b4:01:cd:
         60:1d:74:65:98:b9:96:84:94:05:e0:04:d4:e6:d2:d6:a8:eb:
         58:82:3b:8f:d5:dc:93:ec:1f:fd:dd:01:3a:83:65:f2:43:6a:
         a6:21:88:35:ef:00:40:b8:e6:66:c5:b6:66:96:fd:35:66:67:
         8d:92:f3:26:45:ef:09:fc:35:e6:98:ed:0c:3e:b9:83:77:73:
         bc:06:86:c6:b3:83:da:09:d5:e0:3e:44:1f:7f:52:90:a2:3c:
         82:59:d5:f9:70:b7:2d:5c:00:1a:ad:2d:fb:bf:43:e5:27:c7:
         67:7d:50:00:28:29:6f:0d:53:33:b5:6b:5f:2b:94:02:20:d2:
         1f:8a:26:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:26 2024 by rpki-client on console-ams.rpki-client.org