Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/U-DPanZNsnXtCmMzUbCv1f8eCKo.roa
File:                     U-DPanZNsnXtCmMzUbCv1f8eCKo.roa (raw, json)
Hash identifier:          I0YmULmIm7pkmTxDlkWtUFXEkPV27CunmubMAvHTZpE=
Subject key identifier:   53:E0:CF:6A:76:4D:B2:75:ED:0A:63:33:51:B0:AF:D5:FF:1E:08:AA
Certificate issuer:       /CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
Certificate serial:       0334DD03
Authority key identifier: D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/U-DPanZNsnXtCmMzUbCv1f8eCKo.roa
Signing time:             Sat 01 Jan 2022 09:57:17 +0000
ROA not before:           Sat 01 Jan 2022 09:57:17 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     207429
IP address blocks:        46.37.112.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 53796099 (0x334dd03)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=d3cf0884918a50239ef70518ee9fc04f1aae1929
        Validity
            Not Before: Jan  1 09:57:17 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=53e0cf6a764db275ed0a633351b0afd5ff1e08aa
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:3f:53:35:dd:80:a0:f4:dc:36:9e:2a:94:8f:
                    09:c1:da:79:d8:4a:83:cd:a7:72:e4:4e:29:c4:06:
                    0a:fd:9f:e8:a6:59:99:55:04:a4:a1:4c:79:c5:93:
                    26:32:a6:4f:95:03:57:41:19:cf:87:dd:fe:2b:59:
                    70:9e:b2:06:ef:ef:86:a8:40:9a:84:e5:0c:ce:2a:
                    82:8d:22:20:21:b2:0c:60:4f:ed:b8:7a:bf:29:5a:
                    4f:f6:58:07:1d:84:26:76:06:d6:df:06:c0:45:3a:
                    a2:eb:e4:90:1a:63:a4:d4:91:a4:b7:04:f8:d4:08:
                    ab:dd:56:6b:e5:c1:a9:6c:4d:39:5c:70:9e:ee:95:
                    5a:05:4f:e5:e9:50:37:e8:9d:fe:1a:7f:1e:38:9c:
                    00:c6:ff:0f:61:b3:bc:7f:09:33:96:7d:e4:d4:c8:
                    0b:29:11:98:4e:85:81:fd:f1:01:7e:86:dc:34:51:
                    49:b4:f2:99:76:4f:84:2b:91:5f:a1:a5:fc:92:05:
                    b9:f7:79:2d:42:49:b9:06:32:f1:31:1e:e7:98:86:
                    06:e1:a6:65:7b:8a:c8:9f:1e:e8:8f:ba:85:f7:07:
                    4e:0c:cd:5e:76:6f:39:26:38:fd:4d:01:79:5c:bd:
                    f2:a5:ed:4a:42:2f:61:42:cd:5d:e5:43:9f:e7:fb:
                    23:79
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:E0:CF:6A:76:4D:B2:75:ED:0A:63:33:51:B0:AF:D5:FF:1E:08:AA
            X509v3 Authority Key Identifier:
                keyid:D3:CF:08:84:91:8A:50:23:9E:F7:05:18:EE:9F:C0:4F:1A:AE:19:29

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/088IhJGKUCOe9wUY7p_ATxquGSk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/U-DPanZNsnXtCmMzUbCv1f8eCKo.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/cdff16-458a-47c3-8dfa-231549409720/1/088IhJGKUCOe9wUY7p_ATxquGSk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  46.37.112.0/24

    Signature Algorithm: sha256WithRSAEncryption
         33:fa:62:1c:19:56:21:b8:42:57:91:66:93:ef:91:98:1c:6d:
         0a:f8:f9:62:0f:cd:21:ba:b7:eb:85:94:3a:e2:83:6f:e4:1c:
         ef:a9:2f:19:76:9c:14:d0:68:09:22:ff:f4:4a:a4:af:bb:07:
         99:4d:8d:52:e2:24:72:96:a4:3a:b8:ed:3f:d6:5f:a1:c4:a1:
         a8:a8:d9:a0:2d:2f:d4:90:97:d2:54:34:f0:1c:14:45:f5:fc:
         40:b9:5c:e2:2d:47:10:c4:fb:e2:1e:fb:01:c7:ab:de:cc:9f:
         93:63:ee:c1:a5:c5:b5:df:22:e0:b0:fe:0c:e4:ae:ac:6d:2a:
         11:fb:7e:95:c7:e2:09:91:e9:f8:28:bc:37:27:c8:e0:b7:b9:
         48:70:9c:0e:e8:af:fd:12:5d:d4:34:ff:ad:62:3a:57:b7:3e:
         d7:98:28:61:46:aa:7e:67:68:f3:86:8d:16:32:82:e7:95:1b:
         b5:3c:b2:a9:8f:ce:7f:cf:51:15:f5:ac:ab:1a:94:02:b7:84:
         24:db:ad:43:12:5b:21:46:b7:2f:88:4b:7c:38:bc:85:22:26:
         3f:1c:e2:72:0e:41:0c:a1:e3:1e:01:a6:de:81:b6:3e:06:71:
         b0:d2:86:1d:8d:ab:33:ce:4e:37:a9:dd:9f:14:8f:9b:49:87:
         20:e4:c5:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:54 2024 by rpki-client on console-fra.rpki-client.org