Route Origin Authorization

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36332e302f32342d3234203d3e20323037323739.roa
File:                     3138352e3133302e36332e302f32342d3234203d3e20323037323739.roa (raw, json)
Hash identifier:          9suayzHLwvE5ULKDuL9bsRaTlTZXj6qTYv8Tun0CqYU=
Subject key identifier:   AA:DB:67:12:B5:77:45:23:12:C3:0D:D7:DA:F6:A6:85:05:D6:F5:35
Certificate issuer:       /CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
Certificate serial:       18CB37474B1582226A1E5F2F4224EAB26133DA0C
Authority key identifier: 3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36332e302f32342d3234203d3e20323037323739.roa
Signing time:             Fri 24 Feb 2023 11:06:47 +0000
ROA not before:           Fri 24 Feb 2023 11:01:47 +0000
ROA not after:            Fri 23 Feb 2024 11:06:47 +0000
asID:                     207279
IP address blocks:        185.130.63.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            18:cb:37:47:4b:15:82:22:6a:1e:5f:2f:42:24:ea:b2:61:33:da:0c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3e870b9a7003c4fd9c51bd354a9defa3fb77b4a9
        Validity
            Not Before: Feb 24 11:01:47 2023 GMT
            Not After : Feb 23 11:06:47 2024 GMT
        Subject: CN=AADB6712B577452312C30DD7DAF6A68505D6F535
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:c8:6a:30:bc:ef:d4:6d:96:0c:55:45:be:55:
                    2c:95:29:94:07:5d:17:dc:74:78:05:fa:4b:f1:ee:
                    81:ae:dc:21:01:52:35:5d:4c:9b:f4:cc:65:08:67:
                    78:9b:c4:29:b0:63:88:f4:44:dd:ea:9a:b2:76:dc:
                    f6:2a:45:c9:8e:be:2f:cc:9f:77:5c:f0:90:3e:22:
                    1d:42:82:08:7a:22:93:aa:c8:16:c2:f9:c5:97:47:
                    f5:c8:8f:7e:05:0e:6d:de:25:25:b1:2d:ee:61:ab:
                    d7:b0:ed:d9:df:a9:50:81:02:cf:62:6a:23:51:e7:
                    05:0d:78:85:4c:3b:16:a6:f7:49:cd:05:03:7c:d8:
                    f0:8b:58:c7:06:53:be:ce:ae:a0:df:f1:60:fe:5d:
                    d1:a2:9f:e6:5e:11:2e:4b:a7:a3:27:e9:d5:5b:42:
                    52:19:bf:b2:42:25:48:98:f9:b9:f7:d1:e1:3c:3e:
                    40:17:00:62:1a:20:c5:47:69:66:16:13:46:78:74:
                    9e:bd:16:18:71:c3:77:2b:73:ab:06:1f:40:04:98:
                    a2:c8:1c:87:97:d9:23:c0:34:46:1f:4f:49:83:db:
                    f7:18:28:93:28:a3:1a:56:2b:fb:1b:2d:c8:43:15:
                    c9:cc:dd:81:df:cc:59:6e:02:54:3b:73:4f:c2:44:
                    03:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:DB:67:12:B5:77:45:23:12:C3:0D:D7:DA:F6:A6:85:05:D6:F5:35
            X509v3 Authority Key Identifier:
                keyid:3E:87:0B:9A:70:03:C4:FD:9C:51:BD:35:4A:9D:EF:A3:FB:77:B4:A9

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3E870B9A7003C4FD9C51BD354A9DEFA3FB77B4A9.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PocLmnADxP2cUb01Sp3vo_t3tKk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c5d18e82-4d68-45a6-a5df-cac115ad2279/0/3138352e3133302e36332e302f32342d3234203d3e20323037323739.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  185.130.63.0/24

    Signature Algorithm: sha256WithRSAEncryption
         11:bd:20:a5:b7:00:43:70:1f:18:ff:14:f2:9b:25:a4:52:95:
         45:3f:1e:db:3c:d8:03:ba:7c:fb:ce:1c:af:9d:57:7d:d5:82:
         cb:74:8a:59:40:3a:c5:79:a1:a6:f4:d7:1c:a3:97:19:28:12:
         62:c3:75:01:66:b0:f5:a8:c8:36:a5:e9:45:4c:a0:bb:9b:36:
         4d:5c:8e:f6:59:6a:58:d1:56:90:e1:cb:58:ed:a4:70:73:58:
         03:c8:24:fc:3c:eb:63:2a:9e:2b:77:76:af:4f:a6:67:df:d1:
         f4:05:b9:ac:5d:80:a8:d0:38:2b:aa:b0:36:fe:1b:62:ce:25:
         37:7b:a2:72:02:9d:cc:9a:9b:d5:08:4b:30:e5:b4:66:1c:45:
         76:9c:f8:78:6d:0b:0c:4f:0e:48:96:71:ac:97:22:f6:cb:03:
         59:a9:76:0a:06:f1:35:ef:75:9e:67:ba:71:a8:fb:e1:17:aa:
         f7:df:82:cd:52:ec:90:75:55:be:5a:33:13:20:86:95:a6:31:
         db:a0:ae:1d:e2:b1:38:f2:2d:40:94:50:39:db:f8:ed:f5:f2:
         d7:7a:de:31:27:35:6f:dc:ef:ef:23:2e:4b:14:79:72:3c:c0:
         6f:83:ea:d4:55:30:80:d9:40:96:be:ce:c6:29:d0:68:c3:a4:
         9c:33:5d:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org