Route Origin Authorization

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/oMS0a9m17qBPbWnuXZese9JWEFI.roa
File:                     oMS0a9m17qBPbWnuXZese9JWEFI.roa (raw, json)
Hash identifier:          wQTxr3OccyxYsCbl7oQL5VkvAKCE0DV5EkL2+qkQvJY=
Subject key identifier:   A0:C4:B4:6B:D9:B5:EE:A0:4F:6D:69:EE:5D:97:AC:7B:D2:56:10:52
Certificate issuer:       /CN=875fc80242d2e69ebd0f22b5e3cc457594ae90ac
Certificate serial:       01834B96F29A79D95844CFAB80E6D9A38E37
Authority key identifier: 87:5F:C8:02:42:D2:E6:9E:BD:0F:22:B5:E3:CC:45:75:94:AE:90:AC
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/h1_IAkLS5p69DyK148xFdZSukKw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/oMS0a9m17qBPbWnuXZese9JWEFI.roa
Signing time:             Sat 17 Sep 2022 13:15:27 +0000
ROA not before:           Sat 17 Sep 2022 13:15:27 +0000
ROA not after:            Sat 01 Jul 2023 00:00:00 +0000
asID:                     209181
IP address blocks:        193.169.59.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:83:4b:96:f2:9a:79:d9:58:44:cf:ab:80:e6:d9:a3:8e:37
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=875fc80242d2e69ebd0f22b5e3cc457594ae90ac
        Validity
            Not Before: Sep 17 13:15:27 2022 GMT
            Not After : Jul  1 00:00:00 2023 GMT
        Subject: CN=a0c4b46bd9b5eea04f6d69ee5d97ac7bd2561052
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:fd:5e:5d:57:47:34:04:87:32:3d:8e:55:22:
                    99:87:bf:c4:8e:7d:fd:7d:42:f8:36:59:5c:20:99:
                    02:68:e4:1f:c5:9f:7f:0b:c6:0e:ea:6a:83:30:d5:
                    82:14:43:00:fb:3b:0c:13:1b:ef:93:f6:31:9d:3b:
                    84:06:0e:f3:f3:6c:c3:01:0b:28:3d:c2:63:33:07:
                    a9:b7:b4:68:d7:2c:cb:b4:60:dd:42:59:26:0d:50:
                    c4:b2:9c:fa:98:34:b9:45:ae:2b:39:b8:e6:40:c8:
                    c8:54:b1:ba:f0:b8:49:65:3d:d7:a4:37:39:f1:89:
                    9c:0a:b6:b3:5e:95:07:5f:80:83:92:07:50:fe:9a:
                    7d:03:c4:84:39:89:a0:02:a1:d0:65:b7:98:72:74:
                    ae:12:74:9f:fd:5c:69:51:64:95:ae:a0:68:46:8c:
                    80:03:eb:f0:f2:f5:c9:bf:2f:d6:03:9a:2c:7f:19:
                    5e:75:ab:c8:07:ed:e6:6a:71:dc:40:0a:11:82:8b:
                    7e:46:b7:ec:d6:31:6d:57:c8:ea:43:11:f4:e1:ed:
                    ba:40:9c:e9:50:99:23:d9:aa:bd:65:1c:80:c6:dc:
                    70:86:cd:5a:1c:32:1a:f5:bc:a2:c8:07:e3:3e:64:
                    f0:df:6a:bb:19:bc:7b:69:c8:18:21:1a:20:7e:15:
                    52:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A0:C4:B4:6B:D9:B5:EE:A0:4F:6D:69:EE:5D:97:AC:7B:D2:56:10:52
            X509v3 Authority Key Identifier:
                keyid:87:5F:C8:02:42:D2:E6:9E:BD:0F:22:B5:E3:CC:45:75:94:AE:90:AC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1_IAkLS5p69DyK148xFdZSukKw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/oMS0a9m17qBPbWnuXZese9JWEFI.roa

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/h1_IAkLS5p69DyK148xFdZSukKw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  193.169.59.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ab:0d:64:ae:4f:23:e7:3f:28:c5:05:0d:52:43:96:f5:e5:0a:
         25:ad:dd:06:05:61:39:9d:29:c4:d5:ca:3c:64:89:4a:a9:fc:
         52:1f:b1:2d:61:22:fa:b0:68:03:97:97:15:ae:99:45:07:f7:
         d1:ed:84:b3:7b:56:c4:2d:ee:4c:07:97:17:03:9b:db:b4:92:
         62:32:37:b2:c1:5c:87:10:62:87:b8:1b:17:ad:5c:99:04:45:
         5a:37:af:3d:f8:d5:a3:08:83:9b:19:57:f3:31:16:13:31:7e:
         bb:cd:4b:54:f3:29:59:9d:94:2d:51:19:d1:76:60:10:5c:21:
         c5:ce:1e:a3:1b:5f:5e:a3:97:03:49:4a:e0:30:66:ab:82:47:
         e5:b6:c7:08:b1:7f:46:a0:7b:3b:75:16:d7:a8:1c:5d:94:9d:
         b9:98:3e:38:55:5b:8f:d6:7e:78:64:71:01:18:72:ba:1b:88:
         2a:66:e4:bf:6c:83:56:00:6f:7a:26:be:be:04:0b:71:c7:0f:
         83:9c:ce:7e:77:9d:5e:bc:ad:2b:27:bb:39:e4:dc:f2:90:5c:
         29:fe:b7:e3:2f:7f:2f:5f:e9:82:8b:0b:f8:9d:38:3b:b2:f3:
         37:d3:9e:7f:c6:e1:ae:ea:91:15:eb:b9:d2:b5:47:02:86:08:
         d9:66:8c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:58 2024 by rpki-client on console-ams.rpki-client.org