Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sqcHaj57QHZsImj133gg89iiQ4Y.roa
File:                     sqcHaj57QHZsImj133gg89iiQ4Y.roa (raw, json)
Hash identifier:          mc78BIirJk0fYJjgEO4JqdzkRZAXnSr6UOCBTgmkq4I=
Subject key identifier:   B2:A7:07:6A:3E:7B:40:76:6C:22:68:F5:DF:78:20:F3:D8:A2:43:86
Certificate issuer:       /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial:       018206697258FBA31E2DF913E1A25C454151
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sqcHaj57QHZsImj133gg89iiQ4Y.roa
Signing time:             Sat 16 Jul 2022 09:49:09 +0000
ROA not before:           Sat 16 Jul 2022 09:49:09 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     25184
IP address blocks:        83.147.193.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:06:69:72:58:fb:a3:1e:2d:f9:13:e1:a2:5c:45:41:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
        Validity
            Not Before: Jul 16 09:49:09 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=b2a7076a3e7b40766c2268f5df7820f3d8a24386
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:7e:67:d3:39:61:0c:5f:43:84:9d:2f:60:4d:
                    53:df:49:3f:2a:5c:aa:c5:98:92:7c:b4:da:e8:52:
                    06:b7:4b:11:f4:09:10:e3:06:d8:b6:e9:68:53:28:
                    48:49:66:37:79:24:ef:09:be:70:0b:58:cc:99:d9:
                    be:43:a9:46:33:bc:67:ab:ce:78:3b:f1:89:dc:54:
                    b5:40:c6:1b:48:a8:eb:52:ad:fe:f2:ec:0b:8f:3a:
                    d0:0a:9d:56:c0:4f:70:14:d0:c7:b9:bf:af:a7:2b:
                    6b:98:a4:62:07:ca:d6:6f:0d:cd:60:bc:3e:4a:0b:
                    81:eb:c5:cc:63:e5:0c:89:1c:8d:a8:89:12:15:85:
                    53:c9:4e:a5:96:42:c0:42:68:59:43:68:70:89:e4:
                    fd:1f:90:ed:8d:09:be:41:d1:f4:b1:88:f5:ba:b7:
                    54:b1:d9:c6:d2:f8:00:c7:c3:98:cd:1f:28:e8:14:
                    83:1b:80:b9:a4:b3:ff:e9:a2:14:3f:e9:fb:e0:3f:
                    b4:ac:81:93:fc:ad:cd:a3:d0:a0:39:60:41:03:3e:
                    cf:6f:12:82:55:32:cc:32:8d:2b:f7:5a:09:6d:b0:
                    b1:46:46:99:5e:c8:f2:e8:70:4b:af:60:67:5a:10:
                    28:11:af:aa:f0:2e:ac:73:bf:94:76:93:4b:7d:4e:
                    83:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:A7:07:6A:3E:7B:40:76:6C:22:68:F5:DF:78:20:F3:D8:A2:43:86
            X509v3 Authority Key Identifier:
                keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/sqcHaj57QHZsImj133gg89iiQ4Y.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  83.147.193.0/24

    Signature Algorithm: sha256WithRSAEncryption
         60:00:13:1e:e1:8b:02:21:97:e4:d8:22:84:cd:f9:82:30:a1:
         9f:3a:97:e2:47:8e:c8:2f:c7:4a:24:44:79:be:3d:5b:83:3a:
         04:e0:f1:41:c7:dd:5d:f9:59:72:07:94:e6:b5:12:42:52:d7:
         a2:2c:38:16:ce:6b:d0:b7:48:d5:43:01:5e:f9:64:52:e4:57:
         ed:7a:fc:00:72:e8:2c:84:bb:f7:81:1b:6c:26:a0:27:a6:d9:
         6d:c9:b7:20:25:c1:de:16:e7:9f:ce:f5:de:ce:56:cf:c6:a2:
         cd:13:da:08:7e:85:40:cf:a0:1f:0c:1d:a1:b5:cc:f7:c0:91:
         d5:3e:c6:f8:28:8d:5d:e0:de:73:b0:08:10:43:b0:cc:5a:49:
         cf:75:0f:0e:3d:76:29:c9:f5:e2:27:85:3a:07:94:07:69:1e:
         10:9c:f0:ea:cc:e8:6d:7a:0f:a1:d2:15:c8:b5:f1:df:8a:ad:
         19:df:f6:cc:d7:48:56:5d:f8:a6:23:07:79:95:2b:37:5e:fc:
         35:69:31:af:ad:a3:4a:c2:02:32:70:31:b1:e6:4c:ca:b8:5d:
         f0:75:95:16:cd:e5:fa:64:43:ea:65:5c:76:7a:9b:e8:72:73:
         ba:10:34:7f:6e:8f:a1:79:77:7a:d7:a7:fd:2f:8d:c4:69:17:
         f4:59:05:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:10 2024 by rpki-client on console-fra.rpki-client.org