Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/JcMphyjs8KtUTM4K9qAb0Tlp81c.roa
File:                     JcMphyjs8KtUTM4K9qAb0Tlp81c.roa (raw, json)
Hash identifier:          w0RnMXJB+o3W8XRQIdxt/wWc96vkbk/zJSmjb/q6P18=
Subject key identifier:   25:C3:29:87:28:EC:F0:AB:54:4C:CE:0A:F6:A0:1B:D1:39:69:F3:57
Certificate issuer:       /CN=fae16b493d2a12897caf4757bb18a02eec2cde17
Certificate serial:       1B0ABB5D
Authority key identifier: FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/JcMphyjs8KtUTM4K9qAb0Tlp81c.roa
Signing time:             Sat 01 Jan 2022 09:53:23 +0000
ROA not before:           Sat 01 Jan 2022 09:53:23 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     29447
IP address blocks:        83.158.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 453688157 (0x1b0abb5d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=fae16b493d2a12897caf4757bb18a02eec2cde17
        Validity
            Not Before: Jan  1 09:53:23 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=25c3298728ecf0ab544cce0af6a01bd13969f357
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:31:cb:3a:86:8a:7d:d7:4f:47:63:31:55:61:
                    72:d6:a0:87:c6:17:bd:6d:9b:1d:c4:ad:71:a5:e6:
                    43:9d:26:0e:e9:20:68:bb:18:33:1a:56:ae:61:7a:
                    1e:9f:22:83:3b:e0:57:a2:a2:52:91:5e:5d:b9:8e:
                    75:73:02:ba:e6:19:c9:76:78:09:36:47:a9:0f:a1:
                    c0:91:4f:9f:61:30:09:a5:ec:49:29:02:1d:ec:1f:
                    4b:b6:f8:7d:84:69:59:f5:c1:8d:93:07:ae:13:73:
                    3a:4b:29:2d:17:2b:09:d4:6c:2e:b3:b3:1c:ec:e9:
                    b2:1f:22:59:1c:17:fb:4d:81:7b:6e:ad:97:5a:30:
                    09:48:84:70:37:5a:56:a8:57:5e:18:ea:19:63:7a:
                    aa:75:ca:64:47:64:8a:f1:a8:0f:b0:c9:70:ce:e0:
                    54:9a:dc:75:9a:b5:9d:1d:b0:2a:9a:2a:9e:56:fa:
                    6d:30:d2:73:09:89:1f:ae:a6:e3:c9:cd:e7:f7:f1:
                    00:bc:3c:9c:17:12:96:e7:31:36:b2:70:b8:95:3b:
                    1b:82:18:5f:4d:60:7d:3b:a5:2d:16:11:68:50:58:
                    9e:f1:6e:14:0e:b8:45:39:e3:19:b7:c1:9a:e0:38:
                    62:98:5f:50:94:8d:cc:bf:cd:06:39:96:c7:cd:b0:
                    7f:c9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                25:C3:29:87:28:EC:F0:AB:54:4C:CE:0A:F6:A0:1B:D1:39:69:F3:57
            X509v3 Authority Key Identifier:
                keyid:FA:E1:6B:49:3D:2A:12:89:7C:AF:47:57:BB:18:A0:2E:EC:2C:DE:17

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-uFrST0qEol8r0dXuxigLuws3hc.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/JcMphyjs8KtUTM4K9qAb0Tlp81c.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/293d36-9da2-4405-8de3-4afd8254ae43/1/1-uFrST0qEol8r0dXuxigLuws3hc.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  83.158.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         85:4d:eb:87:1f:da:59:94:ec:52:33:b6:8c:54:65:d8:a9:3b:
         8a:c4:ac:93:62:80:aa:60:af:2f:35:8f:60:7d:f5:b4:f4:03:
         06:20:1f:30:2c:ec:a8:f4:41:62:a4:b3:39:59:59:df:47:76:
         8f:34:c3:dc:1e:ec:8c:2b:c3:32:32:f0:7f:79:cb:4c:8c:e8:
         20:73:52:12:49:70:fb:96:1f:48:e5:01:92:25:38:69:59:77:
         72:81:c7:da:67:51:22:eb:2a:fe:08:53:44:98:5b:42:6a:22:
         94:87:bf:58:66:93:f6:15:57:89:6c:90:a3:88:e9:8d:a2:69:
         2c:c0:7a:62:b2:79:bd:aa:aa:15:43:9a:05:73:d8:e0:9f:40:
         c9:39:10:7d:2c:6f:6c:d0:5f:14:9b:ea:3c:b1:43:8e:b4:07:
         3f:5c:4d:f5:b9:a5:e7:76:b4:05:50:cc:ac:24:b9:cc:b9:9e:
         75:5e:b9:3a:68:f4:71:3f:27:79:42:56:d9:7f:b6:60:eb:58:
         d1:22:5d:11:a3:c5:3c:c2:db:62:d9:ed:cd:93:8d:b4:b5:ac:
         1f:26:69:15:73:c0:1b:17:1b:4b:d4:e9:1e:3b:c4:cc:40:06:
         e4:8c:65:6e:2e:b1:e5:06:d6:4e:4a:07:5b:55:43:b4:cd:7f:
         ec:12:61:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:14 2024 by rpki-client on console-ams.rpki-client.org