Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/VNscMJo1rZQbGLlrBmVyqOKnxGc.roa
File: VNscMJo1rZQbGLlrBmVyqOKnxGc.roa (raw, json)
Hash identifier: BPjNj8Wo9XlMvinqdG25K3Gu/NmZ7njYfnVBWCi0FZ4=
Subject key identifier: 54:DB:1C:30:9A:35:AD:94:1B:18:B9:6B:06:65:72:A8:E2:A7:C4:67
Certificate issuer: /CN=aef20efc0ae4013e6f4867c15f2377b235095b86
Certificate serial: 039EB908
Authority key identifier: AE:F2:0E:FC:0A:E4:01:3E:6F:48:67:C1:5F:23:77:B2:35:09:5B:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rvIO_ArkAT5vSGfBXyN3sjUJW4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/VNscMJo1rZQbGLlrBmVyqOKnxGc.roa
Signing time: Sat 01 Jan 2022 04:58:45 +0000
ROA not before: Sat 01 Jan 2022 04:58:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48102
IP address blocks: 91.210.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60733704 (0x39eb908)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aef20efc0ae4013e6f4867c15f2377b235095b86
Validity
Not Before: Jan 1 04:58:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=54db1c309a35ad941b18b96b066572a8e2a7c467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:f2:8b:bc:2f:a0:7c:5d:8d:df:22:05:91:68:
45:63:95:83:cc:e1:bd:55:4e:62:bd:1f:3a:85:b5:
32:1a:fb:98:ab:bf:89:cd:a0:bb:cd:bd:38:f5:e4:
e7:e3:39:df:d3:80:53:e3:0c:75:01:fa:99:f5:ab:
33:80:00:01:52:52:d8:2d:34:2c:43:86:99:3f:6b:
e1:ed:de:48:a7:1f:06:5f:7d:eb:64:b2:35:af:88:
7a:85:38:95:69:25:5b:35:4f:16:94:87:6d:bd:a1:
f9:15:55:1b:e4:b5:34:a6:da:f1:19:e4:47:e6:67:
8b:d6:f8:99:69:58:b7:83:41:ea:e7:fe:c6:e9:70:
a3:62:62:71:4d:f2:0c:21:64:76:91:ab:9e:a9:5e:
09:3d:bd:ac:70:45:af:af:77:c8:5b:f6:39:25:d3:
e2:f6:dc:7a:fe:d0:78:b0:56:7e:33:36:84:06:94:
68:52:39:aa:54:4a:0b:1d:fd:37:36:9e:9a:78:dc:
b8:69:a2:53:d8:fb:45:32:1d:56:48:63:cf:0d:03:
22:93:f1:14:98:37:8a:ee:7a:cc:40:9d:e1:7e:de:
06:c1:c4:95:5d:8c:59:f7:dd:38:09:68:a6:15:69:
b1:a1:bf:83:a0:bf:80:98:b9:4c:a3:a7:c0:f9:46:
f6:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DB:1C:30:9A:35:AD:94:1B:18:B9:6B:06:65:72:A8:E2:A7:C4:67
X509v3 Authority Key Identifier:
keyid:AE:F2:0E:FC:0A:E4:01:3E:6F:48:67:C1:5F:23:77:B2:35:09:5B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rvIO_ArkAT5vSGfBXyN3sjUJW4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/VNscMJo1rZQbGLlrBmVyqOKnxGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/rvIO_ArkAT5vSGfBXyN3sjUJW4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.4.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:a1:6d:85:2f:2c:84:be:22:8e:b1:4c:05:99:8e:3c:48:6f:
a1:8b:43:e1:41:77:af:64:98:eb:79:94:15:fb:86:ca:ed:9a:
24:a5:e9:7d:96:54:17:9f:b3:63:71:c2:31:f1:c7:56:b5:fc:
42:39:17:a0:90:6c:37:a5:e1:47:db:c3:80:ac:d0:21:bc:1f:
18:b9:1d:cb:1c:63:f3:54:df:0e:ed:18:bc:27:07:4c:4f:e8:
a6:4a:0d:7c:b2:61:01:06:73:cf:c0:04:8e:d7:d5:c8:07:67:
83:d8:4e:e1:ec:fb:a0:67:da:f7:8d:b4:92:69:15:e4:78:9f:
4b:eb:ff:f1:2c:21:fe:24:1e:7b:de:66:15:17:0a:c5:94:72:
fd:c3:29:63:42:0d:da:1a:b8:11:a7:69:9c:c7:a0:b9:5b:19:
eb:8f:75:59:fc:08:57:16:25:c7:31:50:47:84:c7:ee:0b:68:
41:01:96:10:28:fd:95:cf:e0:03:f1:1f:7a:55:49:97:82:ae:
56:78:0d:25:72:f1:73:c2:71:62:48:be:38:7a:0a:b8:4c:b9:
81:1c:4d:5c:06:fc:11:c3:aa:03:3e:5d:98:83:98:ad:2a:85:
35:fd:7d:a1:0e:6a:3f:e5:54:22:54:b3:27:f5:67:e3:bb:2c:
42:eb:53:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org