Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/nx2Uk10FGIyb1VkadCiBp_cmeng.roa
File: nx2Uk10FGIyb1VkadCiBp_cmeng.roa (raw, json)
Hash identifier: pVYzXHTl2A7OCJ5VjhYs0Kg/28l+GXSH4Bs+yENgS7w=
Subject key identifier: 9F:1D:94:93:5D:05:18:8C:9B:D5:59:1A:74:28:81:A7:F7:26:7A:78
Certificate issuer: /CN=8d4dd2d06d920e403933fdb2cd1984893552579c
Certificate serial: 012D86EF
Authority key identifier: 8D:4D:D2:D0:6D:92:0E:40:39:33:FD:B2:CD:19:84:89:35:52:57:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jU3S0G2SDkA5M_2yzRmEiTVSV5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/nx2Uk10FGIyb1VkadCiBp_cmeng.roa
Signing time: Wed 23 Feb 2022 08:59:08 +0000
ROA not before: Wed 23 Feb 2022 08:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39280
IP address blocks: 81.21.80.0/21 maxlen: 21
81.21.80.0/20 maxlen: 20
81.21.88.0/21 maxlen: 21
93.184.224.0/21 maxlen: 21
93.184.224.0/20 maxlen: 20
93.184.232.0/21 maxlen: 21
46.228.176.0/21 maxlen: 21
46.228.176.0/20 maxlen: 20
46.228.184.0/21 maxlen: 21
185.41.202.0/23 maxlen: 23
185.41.200.0/23 maxlen: 23
185.41.200.0/22 maxlen: 22
46.18.64.0/21 maxlen: 21
46.18.64.0/22 maxlen: 22
46.18.68.0/22 maxlen: 22
89.219.38.0/23 maxlen: 23
89.219.44.0/22 maxlen: 22
89.219.40.0/22 maxlen: 22
89.219.40.0/21 maxlen: 21
89.219.48.0/20 maxlen: 20
89.219.48.0/21 maxlen: 21
89.219.56.0/21 maxlen: 21
89.219.36.0/23 maxlen: 23
89.219.36.0/22 maxlen: 22
89.219.172.0/22 maxlen: 22
89.219.172.0/23 maxlen: 23
89.219.176.0/21 maxlen: 21
89.219.176.0/20 maxlen: 20
89.219.174.0/23 maxlen: 23
89.219.184.0/21 maxlen: 21
2a03:ba40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19760879 (0x12d86ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d4dd2d06d920e403933fdb2cd1984893552579c
Validity
Not Before: Feb 23 08:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f1d94935d05188c9bd5591a742881a7f7267a78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e3:74:38:da:7b:0f:09:83:3b:13:1c:f3:0e:
56:58:46:94:55:75:64:f0:2c:cc:c3:d8:d5:c2:c3:
38:16:e3:b9:48:50:cd:b4:13:81:51:a8:5b:b3:8d:
6d:96:f8:fe:d0:3a:51:5b:46:16:6a:be:db:f4:53:
13:a2:61:9f:46:f1:b0:05:b0:4e:b1:85:6a:c4:02:
6b:f4:2f:5a:79:1e:b2:20:c0:12:29:c2:68:16:65:
db:8f:9e:3b:08:3f:42:5e:23:30:5b:f6:ab:9b:30:
d2:ef:b4:cc:ad:87:ba:3d:52:2c:44:83:1f:75:69:
b6:54:ab:d4:b7:70:b5:cf:a8:e2:2d:c4:6e:9d:cf:
32:31:f9:9a:4a:89:c3:e9:21:27:f2:ab:39:5b:16:
b2:7f:0c:24:1c:57:2f:cc:6c:05:83:a8:47:4f:5b:
f0:55:f8:96:4c:4d:4d:7f:fb:6e:83:d5:d7:e7:65:
cf:79:c1:8d:e4:e7:9b:a3:90:db:c6:7b:20:ca:43:
82:51:cd:be:6d:ab:7d:83:bb:09:68:02:fa:b4:43:
92:2e:bf:40:ee:69:01:34:41:2e:d8:f8:2d:4a:56:
54:15:9a:9e:3c:9a:de:67:ea:8f:d8:a6:8b:6b:99:
7a:58:ba:5d:b1:27:36:ef:96:d0:9d:b0:fa:36:02:
9f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:1D:94:93:5D:05:18:8C:9B:D5:59:1A:74:28:81:A7:F7:26:7A:78
X509v3 Authority Key Identifier:
keyid:8D:4D:D2:D0:6D:92:0E:40:39:33:FD:B2:CD:19:84:89:35:52:57:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jU3S0G2SDkA5M_2yzRmEiTVSV5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/nx2Uk10FGIyb1VkadCiBp_cmeng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/f621a7-e080-4255-926d-32ff31ceec8b/1/jU3S0G2SDkA5M_2yzRmEiTVSV5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.18.64.0/21
46.228.176.0/20
81.21.80.0/20
89.219.36.0-89.219.63.255
89.219.172.0-89.219.191.255
93.184.224.0/20
185.41.200.0/22
IPv6:
2a03:ba40::/32
Signature Algorithm: sha256WithRSAEncryption
a1:b3:7d:21:40:2e:8e:e3:f8:f9:00:41:d9:e8:74:85:90:0e:
41:1c:73:a4:a5:c3:df:dc:5b:85:53:57:ae:24:ca:2d:48:51:
2d:ed:f4:78:c5:cc:18:4c:e7:1a:bc:2d:4c:08:81:28:2b:03:
81:92:f8:75:ac:15:49:24:3c:2e:76:fd:58:53:91:c4:9c:5e:
35:d4:32:c0:fb:66:54:80:23:c1:c1:7b:2c:f6:c3:b3:b6:49:
5c:45:73:cb:47:ab:f6:67:79:29:21:13:4a:1b:a0:75:62:51:
e3:d6:28:15:bd:15:da:2b:9a:b4:5f:6e:a3:97:8c:3c:67:c0:
97:88:36:27:d1:30:91:1c:5f:fe:0e:55:8e:eb:95:7c:cb:1a:
7c:b7:c4:75:87:3e:8e:8d:5f:18:66:1c:86:d4:2b:14:4e:64:
09:2a:0f:6a:a9:36:29:34:8e:61:63:60:93:7a:bd:ba:9c:17:
7a:7e:22:67:3e:a4:62:7c:7b:a9:af:04:88:43:15:8b:2e:42:
18:a8:28:91:a5:05:6d:b1:a2:ce:4a:0e:5d:42:f7:fc:2e:8d:
87:a8:28:1a:8c:24:22:ba:b1:44:04:0d:91:10:4a:5b:7c:fd:
3c:5e:89:a1:54:fd:4d:9e:1f:f1:39:1f:bf:92:32:06:f3:45:
70:9d:c6:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:24 2024 by rpki-client on console-ams.rpki-client.org