Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/9qAjGwmKrPuS4obDRtwvFyjdABU.roa
File:                     9qAjGwmKrPuS4obDRtwvFyjdABU.roa (raw, json)
Hash identifier:          Nyr5zQR5FFZV0IX84DI4RWEDfzBWexzLC4cwF+KHfRk=
Subject key identifier:   F6:A0:23:1B:09:8A:AC:FB:92:E2:86:C3:46:DC:2F:17:28:DD:00:15
Certificate issuer:       /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial:       01824309B09FD06473F626A826A9B314A5D9
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/9qAjGwmKrPuS4obDRtwvFyjdABU.roa
Signing time:             Thu 28 Jul 2022 04:21:24 +0000
ROA not before:           Thu 28 Jul 2022 04:21:24 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     210546
IP address blocks:        88.218.19.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:82:43:09:b0:9f:d0:64:73:f6:26:a8:26:a9:b3:14:a5:d9
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
        Validity
            Not Before: Jul 28 04:21:24 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=f6a0231b098aacfb92e286c346dc2f1728dd0015
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:41:b3:cb:6d:67:92:b9:06:b4:77:e3:3d:27:
                    63:38:91:b3:18:b2:ec:ce:35:53:59:b6:8f:c8:7b:
                    da:af:82:95:bc:2b:f9:aa:f7:1b:1e:09:8a:8e:d1:
                    bc:7b:c2:84:72:fc:61:c0:85:0f:dc:4c:65:1a:61:
                    e7:fa:1a:4c:76:c2:09:3d:13:e6:8e:e7:e2:ae:3d:
                    25:58:fc:30:0a:dc:86:7d:ae:94:fd:fe:f1:e2:92:
                    ca:ee:d8:fe:86:50:a8:35:60:96:1b:28:c5:6b:a8:
                    36:c7:5b:d8:1c:72:20:62:b1:8c:3f:40:5a:1a:f3:
                    94:fe:ff:45:12:aa:81:55:18:17:35:6f:05:4b:ed:
                    9b:6b:11:b7:5f:69:cd:01:12:8a:ad:82:c8:52:40:
                    8f:10:88:54:19:ae:5c:cb:20:0e:23:0e:88:32:4d:
                    e6:23:ba:87:6d:57:dc:0c:0f:e8:64:c7:bd:f2:4d:
                    48:f2:5a:fb:88:33:63:5c:e8:e4:18:8b:25:de:3a:
                    20:49:0f:32:4f:a3:0f:7f:da:82:14:7e:db:9d:c9:
                    58:51:e8:f6:90:29:77:40:3d:36:c4:d0:2b:22:68:
                    11:10:bf:9b:6e:ba:aa:93:c7:6f:c2:a2:e0:a3:5c:
                    e8:44:b9:ea:85:2a:70:88:23:3c:0a:21:77:89:90:
                    88:07
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:A0:23:1B:09:8A:AC:FB:92:E2:86:C3:46:DC:2F:17:28:DD:00:15
            X509v3 Authority Key Identifier:
                keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/9qAjGwmKrPuS4obDRtwvFyjdABU.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  88.218.19.0/24

    Signature Algorithm: sha256WithRSAEncryption
         33:8b:24:b8:47:0f:32:56:14:fe:a0:d0:cc:6f:11:eb:0f:60:
         ba:9f:ea:7f:96:3f:d6:a8:d9:0d:4d:49:8d:9e:ae:eb:49:59:
         9c:ac:c1:a7:14:ac:bc:76:73:af:c6:17:40:db:d3:68:53:93:
         00:3a:07:c0:57:52:4b:67:c3:81:a2:10:c0:e1:4b:51:2a:e0:
         56:66:cc:eb:a5:3f:80:b3:93:d8:62:06:ff:63:ad:01:c7:f9:
         90:b6:c3:51:94:5f:95:3a:94:b5:c3:70:ca:21:9c:d7:9e:db:
         e3:84:1c:6f:70:23:d7:2c:bb:e0:13:e6:0e:25:20:46:91:5b:
         36:3f:8b:28:1e:aa:da:9d:41:ac:3c:b2:56:9d:60:a4:5c:58:
         5d:8c:f8:87:97:0e:9d:5d:32:3e:94:34:45:60:74:a1:11:e5:
         88:a0:18:db:d6:39:87:50:ea:04:bf:f1:2d:53:99:c3:ce:03:
         94:b6:84:34:48:31:8c:b7:cb:c8:dd:20:22:11:c8:46:d1:52:
         92:8b:5c:c4:0d:88:21:3c:5e:ef:f6:e7:e8:bb:06:9d:78:f1:
         41:d5:a6:94:2e:84:51:42:0d:dc:18:32:fb:a4:65:34:7e:62:
         bc:ad:71:c1:51:e5:28:87:39:50:b2:41:da:00:09:44:e9:2c:
         a9:86:27:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:02 2024 by rpki-client on console-ams.rpki-client.org