Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wgDKzggurKlDWNOBa62t5stgn9k.roa
File:                     wgDKzggurKlDWNOBa62t5stgn9k.roa (raw, json)
Hash identifier:          eOl+h5/NASQ7mLPq7T135rfUhx9t8awjpUqvTPjdA4I=
Subject key identifier:   C2:00:CA:CE:08:2E:AC:A9:43:58:D3:81:6B:AD:AD:E6:CB:60:9F:D9
Certificate issuer:       /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial:       055A8D4F
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wgDKzggurKlDWNOBa62t5stgn9k.roa
Signing time:             Wed 01 Jun 2022 11:53:20 +0000
ROA not before:           Wed 01 Jun 2022 11:53:20 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     202766
IP address blocks:        94.198.47.0/24 maxlen: 24
                          94.198.46.0/24 maxlen: 24
                          89.42.70.0/24 maxlen: 24
                          185.242.175.0/24 maxlen: 24
                          178.19.44.0/24 maxlen: 24
                          178.19.47.0/24 maxlen: 24
                          80.66.112.0/23 maxlen: 23
                          185.229.212.0/22 maxlen: 22
                          185.229.213.0/24 maxlen: 24
                          185.229.212.0/24 maxlen: 24
                          80.66.116.0/24 maxlen: 24
                          80.66.115.0/24 maxlen: 24
                          80.66.114.0/24 maxlen: 24
                          185.229.215.0/24 maxlen: 24
                          185.229.214.0/24 maxlen: 24
                          80.66.121.0/24 maxlen: 24
                          80.66.120.0/24 maxlen: 24
                          89.44.150.0/24 maxlen: 24
                          178.19.33.0/24 maxlen: 24
                          178.19.32.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 89820495 (0x55a8d4f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
        Validity
            Not Before: Jun  1 11:53:20 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=c200cace082eaca94358d3816badade6cb609fd9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:62:30:eb:4c:b8:c8:75:73:9d:a3:a0:fe:0f:
                    73:78:0b:a7:64:e3:7f:e2:22:a4:67:35:e0:29:62:
                    fd:d5:6b:e2:cd:13:e9:09:db:1f:ba:f7:26:bc:86:
                    a6:88:f5:53:64:90:59:7a:9d:1f:3f:53:02:fc:c4:
                    a2:39:10:84:22:12:37:77:47:c8:d8:63:9a:fa:d1:
                    25:11:8d:80:05:85:f0:35:46:30:25:56:96:85:87:
                    3a:ba:9c:98:be:d2:a3:a0:3b:f3:1d:fb:83:17:6b:
                    cd:27:01:c2:88:74:f1:81:c7:cd:9c:ab:46:8f:4c:
                    bc:9d:95:de:7a:0a:03:4f:eb:b4:47:cd:b7:6d:ec:
                    6f:57:49:99:3c:27:dc:9a:84:86:18:bb:15:cb:6d:
                    f4:c1:9a:74:15:75:37:e3:72:6c:0a:34:ed:6d:38:
                    2a:87:8f:89:5f:f9:76:2f:b6:96:d2:6a:2a:17:45:
                    bc:56:7e:8e:0b:f2:a4:5d:d0:23:87:d7:d9:c0:1d:
                    60:a3:86:cd:c7:bb:a5:8d:36:e2:06:1d:9a:b3:f9:
                    e3:35:0a:20:26:81:69:9f:b8:aa:24:f8:85:d5:06:
                    2e:7a:b6:51:d7:63:27:a1:25:00:0f:ac:ae:ec:74:
                    ad:db:2d:15:b3:f5:77:af:93:41:12:e4:6f:ec:df:
                    b4:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C2:00:CA:CE:08:2E:AC:A9:43:58:D3:81:6B:AD:AD:E6:CB:60:9F:D9
            X509v3 Authority Key Identifier:
                keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/wgDKzggurKlDWNOBa62t5stgn9k.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  80.66.112.0-80.66.116.255
                  80.66.120.0/23
                  89.42.70.0/24
                  89.44.150.0/24
                  94.198.46.0/23
                  178.19.32.0/23
                  178.19.44.0/24
                  178.19.47.0/24
                  185.229.212.0/22
                  185.242.175.0/24

    Signature Algorithm: sha256WithRSAEncryption
         33:7e:4d:8b:94:06:d1:e1:70:3f:9b:1f:8b:45:05:db:85:b1:
         98:e4:dd:ad:8a:11:8c:7a:95:27:8f:45:8a:48:a0:0c:0a:dd:
         80:66:c8:69:8e:65:25:ee:f5:99:dd:85:a5:df:a3:eb:f2:c8:
         0e:01:23:97:24:03:83:1d:29:8d:3b:0f:8d:99:4f:f3:ae:a3:
         3b:98:f2:98:26:a4:f3:c6:13:8d:39:a4:e1:9b:89:b2:d5:71:
         b4:14:5b:ed:9f:0c:cd:f5:db:c6:9b:fa:41:c1:14:63:6d:bb:
         cc:97:a3:a4:eb:b6:39:8b:04:b6:33:7d:36:0c:1c:89:e3:44:
         7a:62:ef:e6:8e:e8:52:03:f1:da:b0:55:78:82:78:85:24:29:
         6b:48:2f:96:90:6a:a6:7c:7c:eb:41:a7:90:b8:8d:ea:ae:c3:
         65:54:30:dc:a6:da:3f:f5:58:0d:c8:4d:da:48:59:c0:d2:71:
         1b:93:0b:3b:3a:f1:f1:5b:f0:c6:d7:34:49:a4:ef:64:97:e1:
         64:7e:4a:53:b8:8e:2e:b8:0f:72:ca:6e:d7:56:a7:19:b2:0e:
         ea:48:19:b3:4b:4b:92:a7:09:ca:da:1a:dc:c5:3c:2b:53:c8:
         93:01:a0:49:83:07:ce:79:63:56:0f:71:1b:c8:8c:94:6a:4b:
         73:10:c6:3b
-----BEGIN CERTIFICATE-----
MIIFLTCCBBWgAwIBAgIEBVqNTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTM0YzQ5ZmNmYThhNDUwNDFkOTVlZDRkOGQ0ZmM2OWM3MjdhNDY3MB4XDTIyMDYw
MTExNTMyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzIwMGNhY2UwODJl
YWNhOTQzNThkMzgxNmJhZGFkZTZjYjYwOWZkOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMBiMOtMuMh1c52joP4Pc3gLp2Tjf+IipGc14Cli/dVr4s0T
6QnbH7r3JryGpoj1U2SQWXqdHz9TAvzEojkQhCISN3dHyNhjmvrRJRGNgAWF8DVG
MCVWloWHOrqcmL7So6A78x37gxdrzScBwoh08YHHzZyrRo9MvJ2V3noKA0/rtEfN
t23sb1dJmTwn3JqEhhi7Fctt9MGadBV1N+NybAo07W04KoePiV/5di+2ltJqKhdF
vFZ+jgvypF3QI4fX2cAdYKOGzce7pY024gYdmrP54zUKICaBaZ+4qiT4hdUGLnq2
UddjJ6ElAA+srux0rdstFbP1d6+TQRLkb+zftPMCAwEAAaOCAkcwggJDMB0GA1Ud
DgQWBBTCAMrOCC6sqUNY04Frra3my2Cf2TAfBgNVHSMEGDAWgBQFNMSfz6ikUEHZ
XtTY1PxpxyekZzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JUVEVuOC1vcEZCQjJWN1UyTlQ4YWNjbnBHYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWEvMGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8x
L3dnREt6Z2d1cktsRFdOT0JhNjJ0NXN0Z245ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEv
MGNjYmRhLWQ2ZjEtNDUyNy04MTA2LWNkN2UwNmNiYjUzMS8xL0JUVEVuOC1vcEZC
QjJWN1UyTlQ4YWNjbnBHYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBd
BggrBgEFBQcBBwEB/wROMEwwSgQCAAEwRDAMAwQEUEJwAwQAUEJ0AwQBUEJ4AwQA
WSpGAwQAWSyWAwQBXsYuAwQBshMgAwQAshMsAwQAshMvAwQCueXUAwQAufKvMA0G
CSqGSIb3DQEBCwUAA4IBAQAzfk2LlAbR4XA/mx+LRQXbhbGY5N2tihGMepUnj0WK
SKAMCt2AZshpjmUl7vWZ3YWl36Pr8sgOASOXJAODHSmNOw+NmU/zrqM7mPKYJqTz
xhONOaThm4my1XG0FFvtnwzN9dvGm/pBwRRjbbvMl6Ok67Y5iwS2M302DByJ40R6
Yu/mjuhSA/HasFV4gniFJClrSC+WkGqmfHzrQaeQuI3qrsNlVDDcpto/9VgNyE3a
SFnA0nEbkws7OvHxW/DG1zRJpO9kl+FkfkpTuI4uuA9yym7XVqcZsg7qSBmzS0uS
pwnK2hrcxTwrU8iTAaBJgwfOeWNWD3EbyIyUaktzEMY7
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:35 2024 by rpki-client on console-ams.rpki-client.org