Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/b1y75xRjxvuz2r6Hmzpxox6QvTY.roa
File:                     b1y75xRjxvuz2r6Hmzpxox6QvTY.roa (raw, json)
Hash identifier:          tjA+2akHA1Vb7Dwwh2hCUN5h1sEFQ/ITM7DzpEO1DT4=
Subject key identifier:   6F:5C:BB:E7:14:63:C6:FB:B3:DA:BE:87:9B:3A:71:A3:1E:90:BD:36
Certificate issuer:       /CN=11e5af4c72869209539b1194597b03fa3a4a554a
Certificate serial:       A97D04
Authority key identifier: 11:E5:AF:4C:72:86:92:09:53:9B:11:94:59:7B:03:FA:3A:4A:55:4A
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/b1y75xRjxvuz2r6Hmzpxox6QvTY.roa
Signing time:             Sat 01 Jan 2022 00:52:58 +0000
ROA not before:           Sat 01 Jan 2022 00:52:58 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     14618
IP address blocks:        193.3.160.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 11107588 (0xa97d04)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=11e5af4c72869209539b1194597b03fa3a4a554a
        Validity
            Not Before: Jan  1 00:52:58 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=6f5cbbe71463c6fbb3dabe879b3a71a31e90bd36
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ee:16:c1:1a:13:38:66:5d:01:5c:93:96:51:b6:
                    f5:78:7c:58:19:4e:2d:f7:9e:17:b5:94:12:c0:b3:
                    c2:b6:67:7c:f3:d4:2e:cc:85:39:53:4d:76:e5:3c:
                    69:0b:06:4f:29:4b:2c:cb:6f:6f:63:ea:30:69:a2:
                    f2:a4:53:c4:4b:98:e5:8f:a4:83:47:15:7e:25:d3:
                    56:e9:46:31:85:92:54:72:d6:19:c3:97:ff:fe:a8:
                    0c:53:fc:ca:98:4a:a0:e1:72:8c:23:a1:d5:a9:ed:
                    3c:a4:18:52:ca:65:5b:3b:ac:e3:df:b2:4a:c2:73:
                    03:87:7e:03:78:d6:80:d0:35:d6:eb:3b:8d:9b:92:
                    0b:3e:cc:f5:ae:17:6d:0e:ed:79:4c:e9:9b:c5:21:
                    ca:93:d3:7f:c8:c1:e7:c2:e6:6a:5c:6e:8c:53:e3:
                    eb:aa:ce:4b:a6:cd:98:7c:49:55:ca:dc:1f:6f:66:
                    6a:91:d3:00:c9:72:94:8c:46:fc:3a:14:da:d8:14:
                    a5:c8:84:c3:ff:61:62:dc:ea:a7:d7:45:d9:d0:56:
                    56:68:ef:9c:57:ec:19:df:e9:13:ab:01:67:0a:26:
                    f5:3b:33:0b:0b:f7:19:97:88:5f:52:19:ba:bd:6e:
                    b3:44:88:dd:3d:6b:39:3d:09:17:f4:c3:37:f4:ee:
                    e1:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6F:5C:BB:E7:14:63:C6:FB:B3:DA:BE:87:9B:3A:71:A3:1E:90:BD:36
            X509v3 Authority Key Identifier:
                keyid:11:E5:AF:4C:72:86:92:09:53:9B:11:94:59:7B:03:FA:3A:4A:55:4A

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EeWvTHKGkglTmxGUWXsD-jpKVUo.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/b1y75xRjxvuz2r6Hmzpxox6QvTY.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/04d708-feea-4e96-94a1-f428b9954ab2/1/EeWvTHKGkglTmxGUWXsD-jpKVUo.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.3.160.0/24

    Signature Algorithm: sha256WithRSAEncryption
         4c:a8:df:74:37:fa:d6:8b:06:e8:2c:9d:3c:88:cf:a2:69:cb:
         9b:f8:df:48:2d:40:18:20:e4:e8:a6:34:7d:d9:ad:49:94:a8:
         39:bb:36:d6:3c:a2:0b:2b:b1:aa:94:d9:80:d2:67:ab:91:18:
         6e:99:9c:fa:56:e4:5e:ab:c8:60:a4:b7:4d:50:0d:41:03:7b:
         5d:d1:de:66:fe:ec:3b:26:c8:4b:3c:b8:41:5f:da:63:bc:1d:
         a6:b1:3c:75:b9:a4:67:34:e6:2f:13:8b:98:08:a7:84:21:d1:
         30:5a:e5:d1:b1:c4:b0:73:61:af:de:ae:49:e8:a2:c6:ba:f4:
         29:72:b1:91:2f:77:b6:4b:b1:be:fb:7e:df:76:e4:96:75:15:
         45:5f:51:90:b4:b2:7c:4c:ea:20:51:2b:9b:1e:f0:e6:0f:a9:
         73:7f:7f:28:c4:2d:33:51:8a:a4:e9:d4:9c:bd:17:2c:84:78:
         7f:e9:af:4e:c9:f7:ec:8c:e4:04:a7:6a:26:de:05:2b:24:70:
         9d:51:a4:32:b6:5e:af:57:ee:43:6c:b8:09:84:41:05:b5:22:
         7f:f0:36:ea:ef:17:6d:f9:ba:bb:87:9d:64:a7:bf:7c:63:d5:
         fb:f8:8c:ea:f3:ba:8e:f1:e1:15:1b:3b:87:18:ed:de:f1:04:
         f5:f5:86:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:13 2024 by rpki-client on console-ams.rpki-client.org