Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/e6YNyptt_fSfCVUmm5xAD6ymPrk.roa
File:                     e6YNyptt_fSfCVUmm5xAD6ymPrk.roa (raw, json)
Hash identifier:          zpTiuDftQfK9PIJzHjLi68KoYHmU/YaYoWKvJZMZAt4=
Subject key identifier:   7B:A6:0D:CA:9B:6D:FD:F4:9F:09:55:26:9B:9C:40:0F:AC:A6:3E:B9
Certificate issuer:       /CN=a5ae8a3d8bdaabf4765fda79d55eca8c69c8bf2c
Certificate serial:       6C55E2
Authority key identifier: A5:AE:8A:3D:8B:DA:AB:F4:76:5F:DA:79:D5:5E:CA:8C:69:C8:BF:2C
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/pa6KPYvaq_R2X9p51V7KjGnIvyw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/e6YNyptt_fSfCVUmm5xAD6ymPrk.roa
Signing time:             Sat 01 Jan 2022 03:00:58 +0000
ROA not before:           Sat 01 Jan 2022 03:00:58 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     14618
IP address blocks:        91.237.175.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7099874 (0x6c55e2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a5ae8a3d8bdaabf4765fda79d55eca8c69c8bf2c
        Validity
            Not Before: Jan  1 03:00:58 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=7ba60dca9b6dfdf49f0955269b9c400faca63eb9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:47:cc:ec:3d:6b:91:b3:0c:bb:f1:3a:ca:4d:
                    7d:3f:c2:a2:91:93:4a:00:27:26:64:14:7d:5d:36:
                    c0:09:6c:75:64:1f:87:af:94:70:8c:54:43:68:97:
                    01:b2:ce:bb:e4:93:a4:71:e6:ce:20:70:85:2c:5f:
                    9a:0b:ac:13:e1:4d:0e:f4:42:e9:51:e1:bd:d5:fa:
                    41:95:51:40:e5:d9:c3:7e:eb:16:df:74:13:3c:86:
                    e8:49:9a:e9:5e:10:84:e3:99:e3:b3:85:7c:28:0d:
                    2d:54:6d:67:d1:30:84:14:9f:3c:8b:f8:a2:e3:cb:
                    c1:e1:82:6b:26:1e:df:90:d1:21:3f:e9:16:b5:be:
                    6f:d5:1f:46:31:cf:3a:39:5f:20:04:d0:08:3b:d9:
                    79:a9:75:57:c7:b1:a7:67:cb:5f:25:58:10:96:c7:
                    01:19:0c:3d:08:90:58:8b:b6:be:d9:18:39:9f:0d:
                    6c:21:45:83:9f:24:79:e1:aa:55:ee:5b:c4:00:14:
                    d4:db:47:a6:c7:bf:43:bd:5b:bf:fe:81:73:49:df:
                    6e:45:0e:c5:a6:ef:ca:cf:96:18:6f:12:31:76:17:
                    7e:6e:2f:1e:cd:bd:da:3d:d6:32:10:f6:9e:88:2c:
                    04:fb:1f:51:7b:73:13:7e:a7:f6:cd:42:cf:ce:99:
                    67:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:A6:0D:CA:9B:6D:FD:F4:9F:09:55:26:9B:9C:40:0F:AC:A6:3E:B9
            X509v3 Authority Key Identifier:
                keyid:A5:AE:8A:3D:8B:DA:AB:F4:76:5F:DA:79:D5:5E:CA:8C:69:C8:BF:2C

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pa6KPYvaq_R2X9p51V7KjGnIvyw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/e6YNyptt_fSfCVUmm5xAD6ymPrk.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0d280c-9d88-4aea-b521-416f85ee237b/1/pa6KPYvaq_R2X9p51V7KjGnIvyw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.237.175.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5f:59:1a:df:64:ec:d1:43:d1:6d:aa:28:0e:36:37:3c:dd:59:
         19:d1:10:30:36:a6:6e:98:8e:84:00:dc:f6:01:32:cf:c0:fe:
         5b:84:5d:f5:82:6a:1b:a1:6a:46:da:c7:23:47:8e:c1:df:9f:
         97:26:32:9d:25:d3:6a:72:de:d3:19:18:5d:b9:0e:fa:38:c7:
         b7:b1:e0:42:40:23:6a:95:da:49:b8:29:e1:cf:99:4e:2a:50:
         e6:e4:af:6c:5a:e4:fe:89:91:78:96:06:87:66:90:3f:21:b5:
         b2:38:9f:97:27:fe:41:3a:c9:2c:aa:ae:82:43:9d:21:cb:d9:
         0d:a2:93:dd:10:47:48:09:a0:ca:51:fd:41:6c:19:5b:83:35:
         7d:b5:69:3e:68:ca:fc:fb:9e:9d:d3:e5:a4:51:15:67:41:e8:
         45:49:f0:c4:83:21:60:dd:49:48:91:0a:a9:c4:c9:48:18:50:
         07:4a:5d:06:86:99:4c:b4:d4:ce:90:61:7f:78:7e:d5:47:3a:
         ce:9e:0c:71:aa:a8:ae:77:00:7a:75:b1:b9:d8:a0:a8:8f:9e:
         aa:92:25:f3:1f:1e:19:bc:9d:e6:81:e1:ad:5c:b0:68:11:73:
         e3:4a:dd:9f:f5:ce:01:5f:1d:3f:68:6a:ab:2f:8c:ff:75:a1:
         d1:58:ac:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-fra.rpki-client.org