Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/WdEUhrZQUgDi9860xJisjUBYA78.roa
File:                     WdEUhrZQUgDi9860xJisjUBYA78.roa (raw, json)
Hash identifier:          NMOKXfBa9JNt6Ve4Wwbt2UKvBmd+oW8TU1KP8y/OfqY=
Subject key identifier:   59:D1:14:86:B6:50:52:00:E2:F7:CE:B4:C4:98:AC:8D:40:58:03:BF
Certificate issuer:       /CN=b4fa4d081b36887f3e5ca6537f7469eee21d71ae
Certificate serial:       07C55EBA
Authority key identifier: B4:FA:4D:08:1B:36:88:7F:3E:5C:A6:53:7F:74:69:EE:E2:1D:71:AE
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/tPpNCBs2iH8-XKZTf3Rp7uIdca4.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/WdEUhrZQUgDi9860xJisjUBYA78.roa
Signing time:             Sat 01 Jan 2022 08:04:06 +0000
ROA not before:           Sat 01 Jan 2022 08:04:06 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     51094
IP address blocks:        91.216.144.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 130375354 (0x7c55eba)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=b4fa4d081b36887f3e5ca6537f7469eee21d71ae
        Validity
            Not Before: Jan  1 08:04:06 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=59d11486b6505200e2f7ceb4c498ac8d405803bf
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:3d:4d:d6:96:6f:1a:03:ca:7f:f8:a3:6a:c0:
                    1d:42:5f:a6:f7:09:ec:4f:4c:af:b9:77:4c:d2:57:
                    bc:e9:b6:01:50:f5:5a:a9:59:5f:81:4a:2d:01:d4:
                    04:5e:15:00:e1:55:35:76:0d:f9:ac:ba:ec:98:b9:
                    36:f2:c3:ce:24:24:95:b1:70:a8:44:78:0c:26:6b:
                    47:a4:79:a3:39:b0:f9:ce:f4:fa:57:81:9d:db:f7:
                    f2:ab:ac:fc:40:c8:63:d6:9e:95:53:8b:68:17:be:
                    99:23:6e:3f:78:90:66:ce:37:f8:f1:c3:c5:e6:1a:
                    57:9d:8d:4f:bc:9b:d6:23:7e:1f:07:78:eb:ea:4b:
                    a3:c1:73:0c:58:df:81:a2:45:ba:a1:52:2d:b7:e1:
                    3a:c9:86:3c:4d:47:9d:e5:22:81:ae:f6:1c:94:fd:
                    3b:3b:98:7b:59:4f:2c:7f:18:57:b8:5e:50:2b:c4:
                    db:c3:6e:d4:c9:cb:08:82:a7:d3:58:55:97:9d:0d:
                    b4:7e:6f:f2:cf:2b:cd:83:ad:27:0c:51:ca:f3:75:
                    9f:5d:25:f8:39:ef:55:ab:75:a0:39:33:2f:8f:7d:
                    65:d6:fd:0f:57:19:8a:ff:19:70:c7:3f:40:9b:a4:
                    6c:6f:c3:d7:82:56:f5:9b:86:f6:8d:7e:95:3b:78:
                    d8:a9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                59:D1:14:86:B6:50:52:00:E2:F7:CE:B4:C4:98:AC:8D:40:58:03:BF
            X509v3 Authority Key Identifier:
                keyid:B4:FA:4D:08:1B:36:88:7F:3E:5C:A6:53:7F:74:69:EE:E2:1D:71:AE

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPpNCBs2iH8-XKZTf3Rp7uIdca4.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/WdEUhrZQUgDi9860xJisjUBYA78.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/0cfe3e-729f-4418-9cf4-863daecfc2e8/1/tPpNCBs2iH8-XKZTf3Rp7uIdca4.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  91.216.144.0/24

    Signature Algorithm: sha256WithRSAEncryption
         45:2b:56:95:e1:a8:35:a3:65:63:50:3c:ba:2b:c9:bb:b5:a9:
         e4:6d:b0:11:ca:33:7f:69:f0:34:fe:93:0c:e8:12:66:58:3d:
         51:6a:7c:4f:3c:41:f3:6c:7a:f3:07:0c:13:95:79:ee:13:65:
         86:c6:99:76:a7:e0:e1:fe:0e:9c:0b:1c:72:9e:ac:c4:bd:2e:
         49:0e:e9:d8:0c:44:40:49:74:e2:3b:db:f5:04:0e:6c:15:3b:
         95:c8:0e:94:7c:74:55:21:9c:00:0b:a6:1d:08:85:f0:9c:12:
         e1:43:20:fe:85:24:eb:dd:68:e9:36:21:0a:8c:99:2e:d6:e4:
         e9:a8:3f:75:37:60:e2:b8:1d:72:ba:fb:7d:1f:1c:fc:19:33:
         fe:b9:5f:cd:35:af:61:c9:51:6a:19:8c:5b:64:9b:62:35:1b:
         67:3d:51:19:72:91:fc:2c:e8:34:1c:1a:ec:e6:b2:e9:53:29:
         bf:09:1d:9a:bf:64:c1:42:20:88:ae:45:6f:d2:3a:dc:7d:8a:
         6b:b2:8a:74:6d:63:c9:7a:f5:c3:c9:b0:fa:66:53:80:6d:50:
         05:19:21:05:d4:93:cc:dd:05:0c:a6:16:92:32:da:bf:ee:b1:
         15:72:a7:86:12:3b:93:62:c5:b0:13:c6:7e:55:4b:48:f9:2c:
         37:5f:1d:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:28 2024 by rpki-client on console-fra.rpki-client.org