Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/VUN0UQ8K2v8suCBc7zeih5i0maA.roa
File:                     VUN0UQ8K2v8suCBc7zeih5i0maA.roa (raw, json)
Hash identifier:          p+JpKj9+gGvAY5CFbebMnfoapKJsdu6Tc0cVyVh/DSQ=
Subject key identifier:   55:43:74:51:0F:0A:DA:FF:2C:B8:20:5C:EF:37:A2:87:98:B4:99:A0
Certificate issuer:       /CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
Certificate serial:       01849ECD77587F767C250A219EFFA8920FE4
Authority key identifier: F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/VUN0UQ8K2v8suCBc7zeih5i0maA.roa
Signing time:             Tue 22 Nov 2022 10:06:16 +0000
ROA not before:           Tue 22 Nov 2022 10:06:16 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     35470
IP address blocks:        213.187.240.0/21 maxlen: 24
                          89.31.98.0/23 maxlen: 24
                          89.31.96.0/21 maxlen: 24
                          81.4.84.0/22 maxlen: 24
                          178.18.80.0/20 maxlen: 24
                          31.3.96.0/21 maxlen: 24
                          85.10.188.0/22 maxlen: 22
                          141.138.192.0/20 maxlen: 24
                          193.138.204.0/22 maxlen: 24
                          141.138.207.0/24 maxlen: 24
                          185.3.208.0/22 maxlen: 24
                          85.10.176.0/22 maxlen: 24
                          85.10.184.0/22 maxlen: 22
                          185.110.172.0/22 maxlen: 24
                          93.191.128.0/21 maxlen: 24
                          93.191.134.0/24 maxlen: 24
                          83.96.216.0/22 maxlen: 24
                          83.96.220.0/22 maxlen: 24
                          83.96.236.0/22 maxlen: 24
                          83.96.240.0/22 maxlen: 24
                          83.96.244.0/22 maxlen: 24
                          83.96.252.0/22 maxlen: 24
                          185.110.200.0/22 maxlen: 24
                          79.170.88.0/21 maxlen: 24
                          185.96.4.0/22 maxlen: 24
                          83.96.204.0/22 maxlen: 24
                          83.96.200.0/22 maxlen: 24
                          83.96.212.0/22 maxlen: 24
                          185.21.188.0/22 maxlen: 24
                          37.230.96.0/21 maxlen: 24
                          194.60.207.0/24 maxlen: 24
                          37.34.48.0/21 maxlen: 24
                          85.222.224.0/21 maxlen: 24
                          85.222.224.0/22 maxlen: 24
                          2a02:348:59::/48 maxlen: 48
                          2a02:348:b4::/48 maxlen: 48
                          2a02:348:8f::/48 maxlen: 48
                          2a02:348:c8::/48 maxlen: 48
                          2a02:348:a3::/48 maxlen: 48
                          2a02:348:7e::/48 maxlen: 48
                          2a02:348:81::/48 maxlen: 48
                          2a02:348:1001::/48 maxlen: 48
                          2a02:348:37::/48 maxlen: 48
                          2a02:348:92::/48 maxlen: 48
                          2a02:348:95::/48 maxlen: 48
                          2a02:348:15::/48 maxlen: 48
                          2a02:348:70::/48 maxlen: 48
                          2a02:348:4b::/48 maxlen: 48
                          2a02:348:89::/48 maxlen: 48
                          2a02:348:9a::/48 maxlen: 48
                          2a02:348:78::/48 maxlen: 48
                          2a02:348:53::/48 maxlen: 48
                          2a02:348:b1::/48 maxlen: 48
                          2a02:348:8c::/48 maxlen: 48
                          2a02:348:a0::/48 maxlen: 48
                          2a02:348:7b::/48 maxlen: 48
                          2a02:348:56::/48 maxlen: 48
                          2a02:348:79::/48 maxlen: 48
                          2a02:348:54::/48 maxlen: 48
                          2a02:348:8a::/48 maxlen: 48
                          2a02:348:8d::/48 maxlen: 48
                          2a02:348:1e::/48 maxlen: 48
                          2a02:348:a1::/48 maxlen: 48
                          2a02:348:7c::/48 maxlen: 48
                          2a02:348:57::/48 maxlen: 48
                          2a02:348:32::/48 maxlen: 48
                          2a02:348:b2::/48 maxlen: 48
                          2a02:348:35::/48 maxlen: 48
                          2a02:348:90::/48 maxlen: 48
                          2a02:348:46::/48 maxlen: 48
                          2a02:348:29::/48 maxlen: 48
                          2a02:348:84::/48 maxlen: 48
                          2a02:348:5f::/48 maxlen: 48
                          2a02:348:ba::/48 maxlen: 48
                          2a02:348:3a::/48 maxlen: 48
                          2a02:348:98::/48 maxlen: 48
                          2a02:348:73::/48 maxlen: 48
                          2a02:348:ac::/48 maxlen: 48
                          2a02:348:87::/48 maxlen: 48
                          2a02:348:62::/48 maxlen: 48
                          2a02:348:9b::/48 maxlen: 48
                          2a02:348:76::/48 maxlen: 48
                          2a02:348:99::/48 maxlen: 48
                          2a02:348:74::/48 maxlen: 48
                          2a02:348:4f::/48 maxlen: 48
                          2a02:348:88::/48 maxlen: 48
                          2a02:348:63::/48 maxlen: 48
                          2a02:348:9c::/48 maxlen: 48
                          2a02:348:77::/48 maxlen: 48
                          2a02:348:55::/48 maxlen: 48
                          2a02:348:8b::/48 maxlen: 48
                          2a02:348:7f::/48 maxlen: 48
                          2a02:348:5a::/48 maxlen: 48
                          2a02:348:5d::/48 maxlen: 48
                          2a02:348:38::/48 maxlen: 48
                          2a02:348:6e::/48 maxlen: 48
                          2a02:348:71::/48 maxlen: 48
                          2a02:348:4c::/48 maxlen: 48
                          2a02:348:82::/48 maxlen: 48
                          2a02:348:85::/48 maxlen: 48
                          2a02:348::/32 maxlen: 32
                          2a02:348:60::/48 maxlen: 48
                          2a02:348:bb::/48 maxlen: 48
                          2a02:348:3b::/48 maxlen: 48
                          2a02:348:96::/48 maxlen: 48
                          2a02:348:b9::/48 maxlen: 48
                          2a02:348:39::/48 maxlen: 48
                          2a02:348:94::/48 maxlen: 48
                          2a02:348:14::/48 maxlen: 48
                          2a02:348:6f::/48 maxlen: 48
                          2a02:348:28::/48 maxlen: 48
                          2a02:348:3::/48 maxlen: 48
                          2a02:348:83::/48 maxlen: 48
                          2a02:348:5e::/48 maxlen: 48
                          2a02:348:61::/48 maxlen: 48
                          2a02:348:bc::/48 maxlen: 48
                          2a02:348:3c::/48 maxlen: 48
                          2a02:348:97::/48 maxlen: 48
                          2a02:348:75::/48 maxlen: 48
                          2a02:348:50::/48 maxlen: 48
                          2a02:348:86::/48 maxlen: 48
                          2a02:348:7d::/48 maxlen: 48
                          2a02:348:58::/48 maxlen: 48
                          2a02:348:33::/48 maxlen: 48
                          2a02:348:b3::/48 maxlen: 48
                          2a02:348:8e::/48 maxlen: 48
                          2a02:348:91::/48 maxlen: 48
                          2a02:348:47::/48 maxlen: 48
                          2a02:348:a2::/48 maxlen: 48
                          2a02:348:80::/48 maxlen: 48
                          2a02:348:5b::/48 maxlen: 48
                          2a02:348:36::/48 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:84:9e:cd:77:58:7f:76:7c:25:0a:21:9e:ff:a8:92:0f:e4
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=f51369ccbf86b1e84e1aeb46e6d336d39f752ae7
        Validity
            Not Before: Nov 22 10:06:16 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=554374510f0adaff2cb8205cef37a28798b499a0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:84:1c:ba:73:b7:dd:d4:ad:e4:67:f1:c1:93:6d:
                    0c:90:17:3e:e9:81:4d:f0:97:87:9e:05:83:d2:cb:
                    7d:1c:01:3c:0b:14:d2:53:71:30:1e:61:5c:45:b7:
                    a6:38:f3:33:c7:39:1e:df:ea:18:a9:92:1d:fd:18:
                    66:32:2d:1e:33:42:09:ef:cd:ef:24:8f:54:cc:f8:
                    b3:6d:76:65:b4:62:62:a3:e3:c5:75:06:4b:4a:ee:
                    68:88:20:10:78:fb:d2:9a:34:20:e8:17:47:16:2f:
                    27:55:b0:52:8c:0c:35:6f:73:f5:44:3d:af:71:f9:
                    0d:69:d2:ca:13:64:ad:61:a6:0c:4c:3f:54:63:b5:
                    01:71:2f:41:c7:81:9a:54:1e:e7:95:a7:7d:2a:c2:
                    98:5d:ce:a0:8a:3e:f1:83:bf:f5:b9:1d:2e:b0:e7:
                    17:2e:8a:68:13:08:e1:3b:d6:1e:20:d4:f5:a3:4b:
                    a6:f2:56:29:2c:14:04:99:22:4f:93:c8:08:f3:e7:
                    d4:7f:06:f8:d0:84:ae:a4:3f:0d:1c:4a:c9:53:f3:
                    53:1a:3c:80:cb:68:e8:1b:a7:d1:2f:38:22:df:ba:
                    85:d5:20:81:49:6c:5d:26:5b:10:d9:55:78:48:20:
                    e8:84:6c:8f:e3:ad:51:02:e0:6b:f7:75:75:3b:50:
                    94:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                55:43:74:51:0F:0A:DA:FF:2C:B8:20:5C:EF:37:A2:87:98:B4:99:A0
            X509v3 Authority Key Identifier:
                keyid:F5:13:69:CC:BF:86:B1:E8:4E:1A:EB:46:E6:D3:36:D3:9F:75:2A:E7

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9RNpzL-GsehOGutG5tM20591Kuc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/VUN0UQ8K2v8suCBc7zeih5i0maA.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/2d5bdf-5265-49b8-8afe-2b920bde3990/1/9RNpzL-GsehOGutG5tM20591Kuc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  31.3.96.0/21
                  37.34.48.0/21
                  37.230.96.0/21
                  79.170.88.0/21
                  81.4.84.0/22
                  83.96.200.0/21
                  83.96.212.0-83.96.223.255
                  83.96.236.0-83.96.247.255
                  83.96.252.0/22
                  85.10.176.0/22
                  85.10.184.0/21
                  85.222.224.0/21
                  89.31.96.0/21
                  93.191.128.0/21
                  141.138.192.0/20
                  178.18.80.0/20
                  185.3.208.0/22
                  185.21.188.0/22
                  185.96.4.0/22
                  185.110.172.0/22
                  185.110.200.0/22
                  193.138.204.0/22
                  194.60.207.0/24
                  213.187.240.0/21
                IPv6:
                  2a02:348::/32

    Signature Algorithm: sha256WithRSAEncryption
         96:84:5e:41:6d:2f:c9:a6:35:e6:a6:6b:64:07:42:82:b3:c5:
         55:ec:1e:87:3b:41:c4:3f:c8:4c:81:24:cc:2a:24:79:b0:ce:
         45:73:dc:cf:db:9a:80:ab:da:35:ff:5b:2e:0e:c8:3d:7e:19:
         be:0a:12:7a:11:95:89:53:2d:49:cf:2a:36:74:7a:2d:d0:b3:
         86:d7:33:06:84:a3:75:61:74:22:db:ed:cb:72:00:b1:97:e5:
         67:c0:6a:dd:11:87:aa:68:ae:e0:c3:c4:91:c3:72:2c:28:aa:
         46:4c:f6:cb:16:69:42:ae:8a:51:c2:b8:2f:cb:6b:af:24:5f:
         83:1b:69:87:f2:80:4b:da:79:ac:44:34:66:ad:8f:d7:bb:e1:
         7e:40:bf:ae:b5:77:a2:3a:75:94:fd:8c:c3:5d:2c:cd:00:b6:
         35:62:6b:18:8e:e1:28:50:ce:7b:a1:e2:ee:b8:c8:f1:f8:0b:
         b7:7b:1a:6d:4e:66:b3:8e:40:a1:d9:75:4d:fe:22:40:f0:95:
         d9:f3:68:63:d8:06:0d:ba:86:5d:bd:7d:c3:e8:03:e1:6b:1f:
         24:3f:57:80:da:98:35:59:11:77:1c:de:bb:05:ba:b5:3f:25:
         58:65:98:3f:0a:58:b7:7f:f2:ec:7b:00:17:b3:70:08:fa:9f:
         bd:ca:af:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org