Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/UZNVncO0EEZvOfaGTKJ_6L5wnRg.roa
File:                     UZNVncO0EEZvOfaGTKJ_6L5wnRg.roa (raw, json)
Hash identifier:          +tmsAhOI0vDDZB4f/hf215A6PH5pm+jz2+7T3nK/dEE=
Subject key identifier:   51:93:55:9D:C3:B4:10:46:6F:39:F6:86:4C:A2:7F:E8:BE:70:9D:18
Certificate issuer:       /CN=5fba6255dedaa1a1b6b17cb8ea91e02d412b8718
Certificate serial:       0183CF8225381EFC6DEE755CCFB8C94215F1
Authority key identifier: 5F:BA:62:55:DE:DA:A1:A1:B6:B1:7C:B8:EA:91:E0:2D:41:2B:87:18
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/X7piVd7aoaG2sXy46pHgLUErhxg.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/UZNVncO0EEZvOfaGTKJ_6L5wnRg.roa
Signing time:             Thu 13 Oct 2022 04:02:36 +0000
ROA not before:           Thu 13 Oct 2022 04:02:36 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     395003
IP address blocks:        193.46.74.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:cf:82:25:38:1e:fc:6d:ee:75:5c:cf:b8:c9:42:15:f1
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5fba6255dedaa1a1b6b17cb8ea91e02d412b8718
        Validity
            Not Before: Oct 13 04:02:36 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=5193559dc3b410466f39f6864ca27fe8be709d18
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:5e:72:89:91:30:b6:e9:43:90:c4:92:00:fb:
                    5c:fd:5a:eb:48:27:5d:4d:7c:c0:e5:8d:6e:27:51:
                    33:a4:cc:66:00:5d:93:b0:88:cd:58:ee:8b:4a:cf:
                    81:ab:12:50:0a:25:2e:f7:ad:b7:b1:5c:bc:97:aa:
                    ed:47:d2:20:6e:3a:6e:cf:1c:81:b3:92:83:94:c1:
                    9d:c3:58:8a:81:bc:3f:dd:77:a5:e9:2e:18:fa:27:
                    cb:23:8a:52:19:7e:f9:bb:8e:f6:cd:f6:23:bf:11:
                    1e:c9:d2:38:90:7d:14:26:f1:3d:ec:94:26:53:84:
                    e3:38:b8:b4:8b:85:da:1c:b1:20:74:75:9c:4b:36:
                    19:7b:a2:75:66:92:3e:05:0e:4a:b0:c6:67:7e:ba:
                    63:97:1f:a8:09:fc:80:d8:37:0f:32:ce:c3:1a:6e:
                    d5:95:0e:48:83:4a:1c:cd:00:b5:c2:51:4a:c5:9b:
                    c9:78:83:55:1e:c0:3c:83:cd:b1:8d:60:52:19:25:
                    29:a8:16:fb:ac:fa:f8:d9:33:bd:55:62:f6:02:b9:
                    ea:9c:db:be:5b:32:b3:e3:ef:d2:f8:8f:5b:ee:86:
                    0d:a7:78:28:39:67:81:62:ac:6e:7e:40:b1:5e:8d:
                    16:e3:25:fe:e1:b7:6c:8d:b3:c4:d2:69:e1:85:db:
                    f7:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:93:55:9D:C3:B4:10:46:6F:39:F6:86:4C:A2:7F:E8:BE:70:9D:18
            X509v3 Authority Key Identifier:
                keyid:5F:BA:62:55:DE:DA:A1:A1:B6:B1:7C:B8:EA:91:E0:2D:41:2B:87:18

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X7piVd7aoaG2sXy46pHgLUErhxg.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/UZNVncO0EEZvOfaGTKJ_6L5wnRg.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/91a770-828d-4e2b-bd81-61e512ba25b7/1/X7piVd7aoaG2sXy46pHgLUErhxg.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.46.74.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5b:82:ec:61:a9:4b:82:b8:18:c3:85:9b:e4:10:ba:14:86:70:
         e9:f3:ff:ee:fa:bf:ec:49:21:2e:df:9f:e4:c6:24:ec:e6:5d:
         55:4a:84:93:4b:a3:8b:2f:d4:6b:0a:ee:aa:6d:93:e7:e4:c4:
         11:2a:e1:d1:dc:b3:3d:2f:9f:9f:65:67:d6:57:ee:3a:7e:47:
         ba:49:79:fb:6b:dd:aa:b0:95:43:25:7d:72:71:bc:8b:0c:d5:
         ee:85:9b:14:f9:47:bc:ce:0f:d5:72:9b:cf:f6:77:43:fa:22:
         2a:b7:c2:44:30:fb:b0:c8:98:ae:5c:1b:57:be:d0:de:52:85:
         51:b0:1b:ec:16:fc:10:23:c0:7a:6f:24:5b:99:15:32:e8:53:
         f8:c4:ad:7b:dd:32:4c:f4:44:95:74:66:71:73:28:bc:4a:99:
         77:9a:9b:1b:fd:2b:45:93:2c:22:39:1f:31:e7:df:64:3b:a5:
         35:f1:10:10:28:9d:6c:6e:88:67:5c:aa:c7:9d:25:24:14:43:
         a5:22:02:b9:ef:81:15:11:7d:02:71:ac:71:46:15:ed:45:66:
         e2:ed:b2:5d:1f:ed:30:1e:5e:6a:c0:a3:95:e2:ec:14:05:67:
         ea:76:35:f6:46:be:48:0b:ef:53:24:2c:18:02:79:d2:ef:b5:
         29:93:d3:24
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPPgiU4Hvxt7nVcz7jJQhXxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDVmYmE2MjU1ZGVkYWExYTFiNmIxN2NiOGVhOTFlMDJkNDEy
Yjg3MTgwHhcNMjIxMDEzMDQwMjM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MTkzNTU5ZGMzYjQxMDQ2NmYzOWY2ODY0Y2EyN2ZlOGJlNzA5ZDE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2l5yiZEwtulDkMSSAPtc/VrrSCdd
TXzA5Y1uJ1EzpMxmAF2TsIjNWO6LSs+BqxJQCiUu9623sVy8l6rtR9IgbjpuzxyB
s5KDlMGdw1iKgbw/3Xel6S4Y+ifLI4pSGX75u472zfYjvxEeydI4kH0UJvE97JQm
U4TjOLi0i4XaHLEgdHWcSzYZe6J1ZpI+BQ5KsMZnfrpjlx+oCfyA2DcPMs7DGm7V
lQ5Ig0oczQC1wlFKxZvJeINVHsA8g82xjWBSGSUpqBb7rPr42TO9VWL2ArnqnNu+
WzKz4+/S+I9b7oYNp3goOWeBYqxufkCxXo0W4yX+4bdsjbPE0mnhhdv3AwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFGTVZ3DtBBGbzn2hkyif+i+cJ0YMB8GA1UdIwQY
MBaAFF+6YlXe2qGhtrF8uOqR4C1BK4cYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWDdwaVZkN2FvYUcyc1h5NDZwSGdMVUVyaHhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83YS85MWE3NzAtODI4ZC00ZTJiLWJkODEt
NjFlNTEyYmEyNWI3LzEvVVpOVm5jTzBFRVp2T2ZhR1RLSl82TDV3blJnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83YS85MWE3NzAtODI4ZC00ZTJiLWJkODEtNjFlNTEyYmEyNWI3
LzEvWDdwaVZkN2FvYUcyc1h5NDZwSGdMVUVyaHhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwS5KMA0G
CSqGSIb3DQEBCwUAA4IBAQBbguxhqUuCuBjDhZvkELoUhnDp8//u+r/sSSEu35/k
xiTs5l1VSoSTS6OLL9RrCu6qbZPn5MQRKuHR3LM9L5+fZWfWV+46fke6SXn7a92q
sJVDJX1ycbyLDNXuhZsU+Ue8zg/VcpvP9ndD+iIqt8JEMPuwyJiuXBtXvtDeUoVR
sBvsFvwQI8B6byRbmRUy6FP4xK173TJM9ESVdGZxcyi8Spl3mpsb/StFkywiOR8x
599kO6U18RAQKJ1sbohnXKrHnSUkFEOlIgK574EVEX0CcaxxRhXtRWbi7bJdH+0w
Hl5qwKOV4uwUBWfqdjX2Rr5IC+9TJCwYAnnS77Upk9Mk
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:19 2024 by rpki-client on console-ams.rpki-client.org