Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/EefH5eVa1VdRA4VVphKBAlxcU_M.roa
File:                     EefH5eVa1VdRA4VVphKBAlxcU_M.roa (raw, json)
Hash identifier:          TRPqfHdDBKkIy1PK4ld3E+99nN4T3UWpQ1JM9MXhlfE=
Subject key identifier:   11:E7:C7:E5:E5:5A:D5:57:51:03:85:55:A6:12:81:02:5C:5C:53:F3
Certificate issuer:       /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial:       01823B4265B270ED88E00CCE4544C823FC08
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/EefH5eVa1VdRA4VVphKBAlxcU_M.roa
Signing time:             Tue 26 Jul 2022 16:06:23 +0000
ROA not before:           Tue 26 Jul 2022 16:06:23 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     211237
IP address blocks:        185.63.33.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:3b:42:65:b2:70:ed:88:e0:0c:ce:45:44:c8:23:fc:08
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
        Validity
            Not Before: Jul 26 16:06:23 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=11e7c7e5e55ad55751038555a61281025c5c53f3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:c7:52:70:26:98:58:cf:d1:e5:bc:ef:32:fb:
                    8c:cd:74:7d:70:5e:5d:ca:06:fe:47:63:6a:75:f0:
                    91:d6:46:7d:74:d1:88:2d:9b:8b:42:5a:b6:2e:31:
                    53:74:b1:b4:93:e3:8c:5b:30:dd:2b:00:ae:1d:d8:
                    ae:a6:05:a2:35:29:ae:60:08:4f:ba:2d:c2:95:05:
                    85:7e:7d:98:8f:49:14:b1:95:ef:44:44:75:74:db:
                    0c:89:b6:c3:44:d0:0a:70:85:e5:27:cb:00:b1:af:
                    48:28:fa:a9:19:f1:40:52:87:46:6e:c5:cf:55:8f:
                    b0:f6:66:44:8f:cf:22:34:43:69:d0:78:19:dd:7c:
                    a2:5f:1e:2d:55:d1:11:aa:23:21:0e:fc:cf:7e:6d:
                    21:aa:90:2e:a2:d6:10:61:08:74:38:7d:3b:c9:53:
                    e9:7c:19:f1:a1:21:41:aa:ec:01:ff:7b:ce:c2:df:
                    14:04:09:bf:54:dd:9a:07:c8:8c:f4:fa:e0:f7:5f:
                    8c:10:8f:3c:02:7b:3d:23:b5:ab:01:af:95:d6:41:
                    fa:71:f6:05:54:60:6d:38:a2:37:9c:a4:8c:06:46:
                    10:08:e4:91:96:1d:3b:3f:d0:70:73:c1:44:8e:0c:
                    cc:4f:18:83:5f:ae:b5:f5:b9:a5:c7:53:ce:31:fe:
                    82:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                11:E7:C7:E5:E5:5A:D5:57:51:03:85:55:A6:12:81:02:5C:5C:53:F3
            X509v3 Authority Key Identifier:
                keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/EefH5eVa1VdRA4VVphKBAlxcU_M.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.63.33.0/24

    Signature Algorithm: sha256WithRSAEncryption
         21:04:61:d6:1a:a0:69:33:07:86:9f:7b:e0:cc:d9:b5:00:56:
         02:de:62:92:ae:0d:12:63:71:bc:b7:fa:cc:a9:a2:f1:53:6a:
         4b:aa:54:fc:81:dd:77:9d:1d:ed:dd:38:72:53:5b:e1:50:75:
         d4:f8:3c:77:d6:73:71:e9:f6:7a:70:cc:07:e7:34:d8:4a:4a:
         54:47:ae:ae:51:00:88:34:f1:df:c6:c0:dc:c4:67:e4:3e:ba:
         f8:14:be:97:43:7e:4c:78:9c:0b:cf:23:60:de:37:6b:90:04:
         34:0f:5d:d0:dc:ee:c2:e2:b2:8e:50:87:e9:d9:2c:81:1c:fb:
         8e:fc:c1:bf:3c:56:14:af:f6:2a:80:58:c6:7d:b6:9c:cc:01:
         33:2b:12:e8:e2:05:4d:22:86:c8:48:01:22:27:dd:53:bb:c7:
         97:00:cf:66:85:af:56:07:01:dc:c3:f5:b2:ed:98:75:7d:90:
         36:9f:52:f2:43:0b:cb:0b:c2:61:6d:94:82:d5:22:2f:cb:89:
         6a:a9:9b:a1:3b:1e:14:16:ea:54:4d:bc:2b:95:57:a7:65:8c:
         ac:ab:92:99:f4:ce:66:b6:7f:b4:3e:dc:55:20:64:f3:05:2b:
         1e:cd:3b:7f:14:eb:fd:3d:7f:32:ae:04:51:13:26:dc:2f:08:
         be:f0:52:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org