Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/yZx4dxHB0KFLYqgXLbrI7je4zJU.roa
File:                     yZx4dxHB0KFLYqgXLbrI7je4zJU.roa (raw, json)
Hash identifier:          18L26ZgaASGV3XlxzgrGZqIdRdY6jwBzuYNSMo9NfHY=
Subject key identifier:   C9:9C:78:77:11:C1:D0:A1:4B:62:A8:17:2D:BA:C8:EE:37:B8:CC:95
Certificate issuer:       /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial:       0183F0A1FE744B369765A47C525CF9143A77
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/yZx4dxHB0KFLYqgXLbrI7je4zJU.roa
Signing time:             Wed 19 Oct 2022 14:24:51 +0000
ROA not before:           Wed 19 Oct 2022 14:24:51 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     60721
IP address blocks:        193.178.31.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:f0:a1:fe:74:4b:36:97:65:a4:7c:52:5c:f9:14:3a:77
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
        Validity
            Not Before: Oct 19 14:24:51 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=c99c787711c1d0a14b62a8172dbac8ee37b8cc95
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:8b:36:80:33:ee:08:d4:3c:6f:bc:4b:01:3b:7f:
                    82:fc:cb:5e:44:47:83:51:d9:f6:4e:10:30:31:ab:
                    9e:55:3a:71:7a:af:9c:d3:cb:6d:57:00:84:c5:ae:
                    d7:bd:8a:9c:98:6b:91:7a:60:d5:42:6d:0b:bd:bf:
                    19:e3:b9:51:f6:85:69:1f:99:86:fd:ef:92:21:91:
                    04:f1:eb:0c:36:aa:e1:1d:51:70:c9:da:4d:11:c3:
                    0b:99:be:97:ee:b1:6e:ba:97:cf:a5:37:0b:cf:5f:
                    b7:4f:72:11:f2:68:da:ef:20:15:79:67:54:e1:8b:
                    57:c0:5a:54:63:9b:11:3a:28:e3:28:b9:58:8b:20:
                    39:50:fe:fc:6d:58:da:f7:8d:f4:a5:90:10:38:8a:
                    6e:08:8d:5a:40:a9:6c:69:1c:3c:0f:e4:a0:8e:80:
                    14:93:a7:66:38:bd:1f:f7:7b:0d:71:b2:72:b7:f4:
                    3e:79:0a:24:30:8c:e1:42:94:48:af:22:62:0e:7b:
                    9c:5b:4b:b7:a8:86:c7:a0:dd:fb:25:f8:8d:d6:e4:
                    66:83:1e:5e:ea:72:e3:5b:84:3e:26:ce:53:e7:8d:
                    ad:e0:67:41:dc:9c:e7:01:f1:62:0e:f9:c2:b3:b3:
                    8d:af:c3:41:a8:9f:5f:4e:21:17:7c:cc:bb:f6:26:
                    ca:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C9:9C:78:77:11:C1:D0:A1:4B:62:A8:17:2D:BA:C8:EE:37:B8:CC:95
            X509v3 Authority Key Identifier:
                keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/yZx4dxHB0KFLYqgXLbrI7je4zJU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.178.31.0/24

    Signature Algorithm: sha256WithRSAEncryption
         62:89:9d:cf:d9:9e:87:0c:63:93:cc:64:e9:b0:76:46:7f:22:
         8b:b1:1c:9e:9b:12:47:bd:82:ba:d8:00:42:24:95:22:1c:7e:
         a8:32:67:23:ef:86:c2:da:23:06:14:f5:13:fe:30:e8:a3:f4:
         28:e1:72:21:f0:c2:5e:0b:ee:35:80:c7:77:a6:71:95:57:3b:
         a2:0c:20:a5:56:b7:bf:dc:ef:89:71:05:03:f1:bc:8e:ee:ba:
         1b:90:12:9b:39:ef:ed:24:d2:f0:e3:ff:69:35:1a:0b:59:59:
         6c:10:29:13:3d:f1:97:6f:ef:6e:f2:33:f9:03:5d:14:44:12:
         92:52:c6:9d:a7:60:6a:02:60:5b:d1:6e:fe:77:a5:50:37:e8:
         78:d2:69:b3:1c:7f:65:32:78:4e:4d:26:93:e0:ea:2e:e0:ab:
         15:07:1a:e8:a0:27:4e:c4:32:c8:83:05:69:aa:c0:06:1b:9b:
         18:16:02:73:ea:ae:c5:56:fc:69:71:c7:b7:60:c1:1b:65:d7:
         91:99:21:85:79:21:ff:34:b5:06:e3:ae:8b:64:9f:d5:2d:ca:
         8b:51:e9:ae:15:a6:79:26:17:5c:0f:6a:32:10:81:a9:0f:6a:
         98:26:ee:eb:11:74:8d:7c:33:8a:27:b1:be:b0:d6:59:94:1b:
         8b:c6:43:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:22 2024 by rpki-client on console-fra.rpki-client.org