Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mGkxxuaR5NEjUTvwn_3cI9DXB2Y.roa
File: mGkxxuaR5NEjUTvwn_3cI9DXB2Y.roa (raw, json)
Hash identifier: 1H7zXNr7rUZcC0GU4Mf/DaWKtccOFPWirkHDo2cbQU0=
Subject key identifier: 98:69:31:C6:E6:91:E4:D1:23:51:3B:F0:9F:FD:DC:23:D0:D7:07:66
Certificate issuer: /CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Certificate serial: 5725A1
Authority key identifier: 86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mGkxxuaR5NEjUTvwn_3cI9DXB2Y.roa
Signing time: Tue 05 Apr 2022 12:04:57 +0000
ROA not before: Tue 05 Apr 2022 12:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51407
IP address blocks: 82.163.58.0/23 maxlen: 23
82.163.56.0/23 maxlen: 23
82.163.56.0/21 maxlen: 21
82.163.60.0/23 maxlen: 23
82.163.64.0/21 maxlen: 21
82.163.64.0/23 maxlen: 23
82.163.62.0/23 maxlen: 23
82.163.66.0/23 maxlen: 23
82.163.70.0/23 maxlen: 23
82.163.68.0/23 maxlen: 23
82.163.170.0/23 maxlen: 23
82.163.168.0/21 maxlen: 21
82.163.168.0/23 maxlen: 23
82.163.172.0/23 maxlen: 23
82.163.174.0/23 maxlen: 23
82.163.98.0/23 maxlen: 23
82.163.96.0/23 maxlen: 23
82.163.96.0/20 maxlen: 20
82.163.100.0/23 maxlen: 23
82.163.104.0/23 maxlen: 23
82.163.102.0/23 maxlen: 23
82.163.110.0/23 maxlen: 23
82.163.108.0/23 maxlen: 23
82.163.106.0/23 maxlen: 23
185.86.140.0/24 maxlen: 24
78.143.226.0/23 maxlen: 23
78.143.224.0/20 maxlen: 20
78.143.224.0/23 maxlen: 23
78.143.228.0/23 maxlen: 23
78.143.232.0/23 maxlen: 23
78.143.230.0/23 maxlen: 23
78.143.234.0/23 maxlen: 23
78.143.238.0/23 maxlen: 23
78.143.236.0/23 maxlen: 23
82.163.226.0/23 maxlen: 23
82.163.224.0/21 maxlen: 21
82.163.224.0/23 maxlen: 23
82.163.230.0/23 maxlen: 23
82.163.228.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5711265 (0x5725a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86cce06e70df970d90abfe3cbe7fa882f467b1e4
Validity
Not Before: Apr 5 12:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=986931c6e691e4d123513bf09ffddc23d0d70766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:71:47:18:af:4b:b7:fa:e8:4b:bf:ef:76:f9:
ba:f8:9a:4f:09:39:8d:b6:dc:a8:c2:20:e1:56:ba:
ed:a4:bd:a2:9a:b2:29:50:f8:25:93:19:58:73:51:
7f:b0:da:4b:25:51:31:6b:ad:bc:ae:f8:80:11:1b:
ec:8b:c4:4d:79:94:cc:12:24:39:e8:e6:05:1e:e2:
06:af:dc:82:22:1c:4a:f2:0e:9c:84:aa:7e:0b:4b:
c5:29:cd:04:0a:b5:c7:0d:d4:a3:ba:10:be:ce:65:
0b:15:82:de:37:87:34:c2:99:0e:e7:2f:c2:d5:e2:
9c:25:cb:b8:7f:56:d1:0b:7b:c1:ae:cb:b4:be:1f:
c8:88:81:f1:04:8e:db:09:87:28:f8:d6:3e:12:aa:
0f:18:53:04:39:71:b9:8b:28:1b:74:b9:ca:d5:68:
45:df:61:92:26:fc:0c:cd:47:62:98:2f:f6:f5:a1:
aa:3f:be:1e:54:bc:fd:ee:e9:dc:95:b0:a7:14:75:
e1:53:3b:e8:8f:ba:e5:0b:e4:b8:50:28:e3:96:2e:
d0:b3:14:1f:80:d6:56:94:69:7e:dc:3a:e1:99:c9:
b7:f2:40:22:ac:6a:58:d0:d2:65:fb:90:21:c4:47:
43:7e:7a:a2:30:6b:4a:00:56:e4:5c:87:fd:5f:f6:
71:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:69:31:C6:E6:91:E4:D1:23:51:3B:F0:9F:FD:DC:23:D0:D7:07:66
X509v3 Authority Key Identifier:
keyid:86:CC:E0:6E:70:DF:97:0D:90:AB:FE:3C:BE:7F:A8:82:F4:67:B1:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hszgbnDflw2Qq_48vn-ogvRnseQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/mGkxxuaR5NEjUTvwn_3cI9DXB2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/66f05c-741c-4720-bc7e-89714a7e8d58/1/hszgbnDflw2Qq_48vn-ogvRnseQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.143.224.0/20
82.163.56.0-82.163.71.255
82.163.96.0/20
82.163.168.0/21
82.163.224.0/21
185.86.140.0/24
Signature Algorithm: sha256WithRSAEncryption
56:87:eb:72:30:c3:ae:7a:02:94:c3:87:98:98:f4:6b:13:e2:
4c:ac:8f:fd:62:97:64:af:26:5d:d7:b6:da:37:3c:92:4c:53:
2a:86:3d:2e:40:7b:91:a7:d1:c8:f4:5c:bc:06:0d:b2:d3:8d:
62:98:3c:d3:aa:0d:1c:bf:0d:6e:a7:59:53:4e:57:2c:05:1b:
90:07:e4:22:b8:70:5e:47:08:89:ad:da:63:0f:fd:9f:e0:2b:
1a:98:fa:87:a5:ac:c7:9b:4b:fe:a3:f7:1c:0c:5a:b1:f1:81:
36:dd:4e:27:8f:6e:ba:85:ca:58:52:a3:b9:30:1e:6f:58:c8:
52:ae:29:e9:be:9e:44:b2:ae:78:69:54:ce:a1:95:b3:62:7d:
f7:5c:8b:9e:6b:a5:38:07:59:e1:53:c5:fc:87:cb:0c:27:7c:
d1:e9:17:65:56:f7:d0:27:88:0c:ed:44:7a:dc:7d:11:05:5b:
9e:02:de:2e:57:18:7d:49:12:81:a8:38:24:72:2f:f2:5b:d8:
0b:a4:fd:c1:41:11:91:f5:6f:71:ad:ef:cc:dc:34:45:93:5c:
06:00:df:20:a5:f0:f0:4e:c6:8f:52:0a:c5:21:e6:fb:19:21:
98:07:af:5a:d7:2c:cc:56:b9:f7:ad:88:78:e1:32:f3:16:df:
3c:d5:1b:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:47 2024 by rpki-client on console-ams.rpki-client.org