Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/e0StFm20wCc81pNcDnxDid0iw18.roa
File:                     e0StFm20wCc81pNcDnxDid0iw18.roa (raw, json)
Hash identifier:          ucPBbsDt0wsP2xF5rzQCa2FJW7NKubYJzMOU05owBZc=
Subject key identifier:   7B:44:AD:16:6D:B4:C0:27:3C:D6:93:5C:0E:7C:43:89:DD:22:C3:5F
Certificate issuer:       /CN=a1411f56875b4cb7a58cee6cb607ee251cbdf980
Certificate serial:       018340D74F94B3EE3ADDD0127863B08DA812
Authority key identifier: A1:41:1F:56:87:5B:4C:B7:A5:8C:EE:6C:B6:07:EE:25:1C:BD:F9:80
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/oUEfVodbTLeljO5stgfuJRy9-YA.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/e0StFm20wCc81pNcDnxDid0iw18.roa
Signing time:             Thu 15 Sep 2022 11:09:55 +0000
ROA not before:           Thu 15 Sep 2022 11:09:55 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     21430
IP address blocks:        91.234.162.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:40:d7:4f:94:b3:ee:3a:dd:d0:12:78:63:b0:8d:a8:12
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=a1411f56875b4cb7a58cee6cb607ee251cbdf980
        Validity
            Not Before: Sep 15 11:09:55 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=7b44ad166db4c0273cd6935c0e7c4389dd22c35f
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:71:eb:d0:6c:5f:c4:93:08:d2:e8:4e:db:8d:
                    fc:42:40:b2:54:5f:30:a8:1d:3e:35:d3:cc:72:15:
                    0d:80:41:5c:7e:18:c8:8d:f9:41:6a:0b:61:9d:84:
                    11:12:d1:5a:d8:8b:45:2b:65:f1:7f:06:1f:8d:6d:
                    a2:65:a0:c8:d2:1d:8a:4c:b2:cb:2a:9a:b1:c0:1f:
                    bd:2e:2c:ae:a3:6b:c7:50:8b:95:05:d4:3e:44:1a:
                    4e:8d:7e:e4:6d:80:d5:fe:31:e1:0e:f0:59:e8:fd:
                    c3:6e:a9:09:4e:54:47:1f:c3:5a:39:99:ad:e4:a7:
                    cf:c1:09:f0:c5:3b:d3:bf:59:78:c6:85:6b:e0:52:
                    9f:92:72:0a:f3:5b:ab:de:60:ec:64:12:11:30:15:
                    cd:f0:d6:37:2d:d0:ea:f4:9d:12:fc:ef:c7:8b:af:
                    4c:77:03:40:9d:9f:4e:e7:18:6f:fb:24:d1:f3:17:
                    ca:ce:2e:a1:1a:9d:15:af:f0:1f:a7:a4:95:56:d0:
                    eb:65:3a:56:a2:ff:5f:e5:17:d0:30:b3:09:db:fb:
                    e3:91:ca:cb:88:46:3c:a9:dc:8c:57:4d:7e:c4:19:
                    ae:14:f4:5b:dc:6c:5a:2b:a1:2a:a0:cd:e1:5b:2b:
                    c7:ed:b8:75:5e:24:23:cc:05:bc:cd:25:b3:74:2a:
                    b4:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7B:44:AD:16:6D:B4:C0:27:3C:D6:93:5C:0E:7C:43:89:DD:22:C3:5F
            X509v3 Authority Key Identifier:
                keyid:A1:41:1F:56:87:5B:4C:B7:A5:8C:EE:6C:B6:07:EE:25:1C:BD:F9:80

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUEfVodbTLeljO5stgfuJRy9-YA.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/e0StFm20wCc81pNcDnxDid0iw18.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/oUEfVodbTLeljO5stgfuJRy9-YA.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.234.162.0/23

    Signature Algorithm: sha256WithRSAEncryption
         b0:1b:ef:fa:70:63:f2:df:21:e7:26:08:75:86:09:ac:f3:df:
         bb:82:90:c0:2d:f4:9f:e6:71:a2:cc:e1:08:ff:90:83:1d:a0:
         5c:a6:d6:b1:58:f2:2b:81:99:f6:9b:11:71:63:0f:8a:6c:4d:
         07:c4:35:d3:3f:a5:5d:56:1d:37:60:db:c0:14:63:7c:52:9d:
         39:eb:53:45:fe:67:c3:c0:50:32:0f:2c:57:86:c0:02:fd:ef:
         ba:5b:42:c2:4a:45:7b:8f:ba:98:02:f1:c6:cb:ec:f8:d8:a4:
         03:88:1e:57:4a:fb:9e:b4:49:3b:5d:26:d8:af:85:6f:41:a8:
         35:b3:16:d6:00:fc:9f:6c:05:bc:a8:c4:cb:c5:d4:a5:8b:6e:
         35:45:1a:b2:78:7b:f0:ab:ae:50:3f:58:3a:1e:14:ea:32:4c:
         a2:b3:32:80:37:f9:3d:69:5b:bf:6e:fc:3e:18:53:0d:ea:e6:
         17:9b:ec:a9:b2:00:0f:f8:32:61:59:52:4a:15:47:1d:31:3e:
         de:38:2f:5c:be:f8:d7:5e:88:61:3d:15:70:c9:6a:c1:b5:38:
         cb:43:93:20:c6:15:31:73:81:7d:34:b4:c9:fd:43:f3:aa:97:
         2a:09:5a:ab:4c:d9:39:cf:48:c1:49:7d:da:71:37:bd:a8:a3:
         a9:9c:5e:d5
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYNA10+Us+463dASeGOwjagSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGExNDExZjU2ODc1YjRjYjdhNThjZWU2Y2I2MDdlZTI1MWNi
ZGY5ODAwHhcNMjIwOTE1MTEwOTU1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YjQ0YWQxNjZkYjRjMDI3M2NkNjkzNWMwZTdjNDM4OWRkMjJjMzVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3Hr0GxfxJMI0uhO2438QkCyVF8w
qB0+NdPMchUNgEFcfhjIjflBagthnYQREtFa2ItFK2XxfwYfjW2iZaDI0h2KTLLL
KpqxwB+9Liyuo2vHUIuVBdQ+RBpOjX7kbYDV/jHhDvBZ6P3DbqkJTlRHH8NaOZmt
5KfPwQnwxTvTv1l4xoVr4FKfknIK81ur3mDsZBIRMBXN8NY3LdDq9J0S/O/Hi69M
dwNAnZ9O5xhv+yTR8xfKzi6hGp0Vr/Afp6SVVtDrZTpWov9f5RfQMLMJ2/vjkcrL
iEY8qdyMV01+xBmuFPRb3GxaK6EqoM3hWyvH7bh1XiQjzAW8zSWzdCq0VwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHtErRZttMAnPNaTXA58Q4ndIsNfMB8GA1UdIwQY
MBaAFKFBH1aHW0y3pYzubLYH7iUcvfmAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb1VFZlZvZGJUTGVsak81c3RnZnVKUnk5LVlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYy9jOThiODctMTg1Ny00NGJkLThiMGMt
NzhkODMzZTQxNDZhLzEvZTBTdEZtMjB3Q2M4MXBOY0RueERpZDBpdzE4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYy9jOThiODctMTg1Ny00NGJkLThiMGMtNzhkODMzZTQxNDZh
LzEvb1VFZlZvZGJUTGVsak81c3RnZnVKUnk5LVlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBW+qiMA0G
CSqGSIb3DQEBCwUAA4IBAQCwG+/6cGPy3yHnJgh1hgms89+7gpDALfSf5nGizOEI
/5CDHaBcptaxWPIrgZn2mxFxYw+KbE0HxDXTP6VdVh03YNvAFGN8Up0561NF/mfD
wFAyDyxXhsAC/e+6W0LCSkV7j7qYAvHGy+z42KQDiB5XSvuetEk7XSbYr4VvQag1
sxbWAPyfbAW8qMTLxdSli241RRqyeHvwq65QP1g6HhTqMkyiszKAN/k9aVu/bvw+
GFMN6uYXm+ypsgAP+DJhWVJKFUcdMT7eOC9cvvjXXohhPRVwyWrBtTjLQ5MgxhUx
c4F9NLTJ/UPzqpcqCVqrTNk5z0jBSX3acTe9qKOpnF7V
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:10 2024 by rpki-client on console-fra.rpki-client.org