Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/C8wAR8Gu8jWYO_nzztXVB_e6kO8.roa
File:                     C8wAR8Gu8jWYO_nzztXVB_e6kO8.roa (raw, json)
Hash identifier:          BcWF5iv2fr5d9ekbejwpHfjGAGvHw73FhvuEyMknZ9I=
Subject key identifier:   0B:CC:00:47:C1:AE:F2:35:98:3B:F9:F3:CE:D5:D5:07:F7:BA:90:EF
Certificate issuer:       /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial:       0182A67756F399C8BA9DABA5CF92B83CB300
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/C8wAR8Gu8jWYO_nzztXVB_e6kO8.roa
Signing time:             Tue 16 Aug 2022 11:43:35 +0000
ROA not before:           Tue 16 Aug 2022 11:43:35 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     147001
IP address blocks:        5.253.36.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:a6:77:56:f3:99:c8:ba:9d:ab:a5:cf:92:b8:3c:b3:00
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
        Validity
            Not Before: Aug 16 11:43:35 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=0bcc0047c1aef235983bf9f3ced5d507f7ba90ef
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:c3:7c:96:1f:0c:4a:ec:f4:4b:9e:fc:e1:8e:
                    b7:66:07:93:78:14:e1:36:b4:d3:d5:bf:05:2a:e8:
                    69:68:78:b6:cc:cf:74:13:f6:8d:c2:6f:8d:3e:ca:
                    06:0d:b3:ad:3e:32:79:7c:6e:17:7d:fb:10:f4:a2:
                    a8:42:10:5e:43:6e:b8:70:a8:92:81:8b:e8:68:b6:
                    46:12:38:bf:04:ca:d7:c4:be:69:97:0e:91:50:3c:
                    34:44:a1:b6:2d:ed:70:8c:ef:23:b9:02:cf:81:de:
                    aa:77:1d:de:c4:4d:4f:9c:79:82:78:45:1f:61:31:
                    1a:df:34:d9:19:9b:80:8f:9d:7a:dc:a6:c6:6d:f0:
                    a3:44:81:c9:be:ff:89:d8:81:c6:95:63:aa:31:fb:
                    9e:bf:df:bb:cc:06:ff:86:12:be:75:ce:81:23:6f:
                    c0:34:8d:9d:e1:b3:cc:3b:c5:14:37:54:16:1b:0a:
                    1b:84:e1:a1:a5:4d:8c:d9:5b:ff:f6:df:60:50:04:
                    40:b0:ad:a5:79:14:6b:27:5a:98:5d:58:92:53:3f:
                    a6:ac:03:53:92:f1:03:e4:2f:1e:36:79:c2:77:58:
                    f7:dc:10:93:d6:ee:25:cc:bc:ad:22:cd:a7:d6:5b:
                    ea:ca:04:1b:6f:72:89:83:be:e2:1a:c8:5a:fe:49:
                    60:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0B:CC:00:47:C1:AE:F2:35:98:3B:F9:F3:CE:D5:D5:07:F7:BA:90:EF
            X509v3 Authority Key Identifier:
                keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/C8wAR8Gu8jWYO_nzztXVB_e6kO8.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  5.253.36.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0d:28:9b:e3:54:a4:ea:89:fd:db:b3:7c:e9:df:9f:db:dc:96:
         c9:db:59:ed:06:9b:a6:64:1c:0d:6e:2d:40:10:cc:03:35:12:
         ce:9f:2a:79:96:7c:c6:57:bf:6c:f2:fd:cc:a9:3a:18:50:96:
         76:5d:f7:bb:8e:6e:8f:2a:0d:c2:d1:62:6e:a6:0e:cb:f5:18:
         a9:dd:07:43:e7:5b:2c:3a:70:b1:43:c8:8e:23:20:76:a6:19:
         d5:0e:be:63:81:6d:86:0e:13:7f:c0:92:02:dc:1e:05:4e:43:
         4a:f3:62:15:9b:77:ba:20:b1:28:7c:a5:e2:83:7d:7f:f3:97:
         49:47:82:e4:05:ce:0d:4d:ee:0b:65:05:66:dd:38:22:37:56:
         87:98:88:bb:af:07:51:96:73:25:23:9c:df:f8:b7:2d:6e:1e:
         91:2c:ea:20:0a:cb:76:dd:8a:e5:2f:ec:d3:2d:eb:ea:a6:8d:
         a3:c3:73:7d:c6:cf:11:22:c1:c7:45:e3:43:d7:ad:5c:17:60:
         19:37:97:98:b1:90:aa:de:90:d3:17:fc:40:27:07:0b:aa:e6:
         ed:2e:60:9d:c0:4f:6d:54:f9:2c:56:34:5c:ad:63:db:62:ce:
         92:72:cb:1b:c5:66:6e:2f:ff:c4:29:a2:d8:3f:e8:68:b5:aa:
         2f:a9:0f:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:19 2024 by rpki-client on console-ams.rpki-client.org