Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/BabckmT-eZEE7uhs5V_B3h2McAQ.roa
File: BabckmT-eZEE7uhs5V_B3h2McAQ.roa (raw, json)
Hash identifier: 1mhYln+A73fnOLJmOSMu8eD3g3cNwcDFA9p2N6kgsAQ=
Subject key identifier: 05:A6:DC:92:64:FE:79:91:04:EE:E8:6C:E5:5F:C1:DE:1D:8C:70:04
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: 9FA3
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/BabckmT-eZEE7uhs5V_B3h2McAQ.roa
Signing time: Sun 29 Aug 2021 23:37:53 +0000
ROA not before: Sun 29 Aug 2021 23:37:53 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 3130
IP address blocks: 147.28.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40867 (0x9fa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Aug 29 23:37:53 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=05A6DC9264FE799104EEE86CE55FC1DE1D8C7004
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b0:03:4f:98:dc:4b:96:a5:a1:92:81:2b:05:
d1:22:2c:7e:ce:dc:3a:6d:1f:7d:c7:d5:9e:e5:78:
08:27:be:2c:bc:c6:5a:5c:62:87:8d:cd:fa:93:de:
8f:73:59:c4:b0:a4:51:8a:41:fc:a2:c7:b8:53:97:
35:7f:1b:2f:23:b7:80:5c:3b:ac:f2:7a:fd:27:9b:
b0:6d:3b:f9:8f:03:f7:3a:6e:a6:b7:c8:91:dc:bf:
88:1c:bd:98:d3:c8:47:de:24:24:a1:7c:6f:d7:8d:
f1:d2:93:d5:98:2c:e6:eb:d9:d7:4b:b7:fc:67:54:
6a:2c:e5:60:3c:97:a0:18:f5:d4:bf:0b:16:6a:77:
b9:97:f2:06:a1:b3:f1:c4:3e:2a:a3:a3:5e:bc:e1:
6a:8c:51:74:51:c5:36:28:ad:38:f2:fd:18:89:a4:
0a:10:1f:28:c6:e0:84:34:12:ec:4f:70:eb:df:71:
ab:53:e8:3c:63:e9:c2:0e:4e:60:c5:94:96:23:ad:
65:b6:4c:56:2e:04:26:80:13:15:99:4c:13:f1:40:
9d:52:39:4e:38:cc:92:51:dc:7a:0b:d7:49:8a:94:
93:6b:ce:47:f5:43:af:47:7f:e1:28:45:00:8f:1d:
85:81:6b:37:fe:80:c1:a2:6d:c8:ec:50:36:cc:43:
61:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:A6:DC:92:64:FE:79:91:04:EE:E8:6C:E5:5F:C1:DE:1D:8C:70:04
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/BabckmT-eZEE7uhs5V_B3h2McAQ.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.0.0/23
Signature Algorithm: sha256WithRSAEncryption
86:31:b5:f4:6c:51:01:12:f3:14:82:2f:90:b5:e5:a4:b4:55:
9e:21:a2:0f:70:d7:4a:45:42:d3:54:3d:3b:59:5a:30:9c:e7:
40:fc:0e:0d:02:d7:60:30:5c:25:85:6a:b8:83:b5:5e:92:d7:
54:da:b2:6f:a3:59:ca:99:51:c8:a4:f0:4a:ab:61:90:27:39:
2e:de:30:75:32:03:c0:88:66:5e:cf:8f:ca:c1:2d:45:14:df:
95:cc:83:19:28:d1:fc:57:71:08:5d:74:ff:d4:e3:66:5d:2c:
48:5f:30:ae:ef:37:98:d2:f2:2e:8a:9d:99:b9:a2:a2:e0:82:
1c:fe:d9:75:5c:37:6c:e1:e2:db:16:39:1d:c2:39:6d:76:63:
aa:3e:84:3d:37:2c:c6:f1:a8:80:57:ef:c8:14:37:09:28:0e:
f9:65:59:05:87:70:ef:34:3f:ce:c2:0b:25:4f:85:51:d3:59:
be:e6:41:76:ec:7c:61:b4:0d:23:f4:5f:82:db:e8:90:42:47:
d4:25:1a:08:f4:1a:99:ee:33:3e:57:7c:24:ab:89:b2:5a:be:
6a:84:b5:6b:86:be:3c:92:27:62:6a:a2:7f:b5:23:49:d8:a4:
17:c0:fb:cc:aa:a6:27:31:e7:2f:d5:62:c5:a3:e3:e1:cb:d6:
7b:a8:42:61
-----BEGIN CERTIFICATE-----
MIIEuTCCA6GgAwIBAgIDAJ+jMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDZk
NmZiZmE5NzUzZGI4ZDg0NjQzM2RiNTM1MWQ5YTllYzA3Yzk2YmQwHhcNMjEwODI5
MjMzNzUzWhcNMjIwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwNUE2REM5MjY0RkU3
OTkxMDRFRUU4NkNFNTVGQzFERTFEOEM3MDA0MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAurADT5jcS5aloZKBKwXRIix+ztw6bR99x9We5XgIJ74svMZa
XGKHjc36k96Pc1nEsKRRikH8ose4U5c1fxsvI7eAXDus8nr9J5uwbTv5jwP3Om6m
t8iR3L+IHL2Y08hH3iQkoXxv143x0pPVmCzm69nXS7f8Z1RqLOVgPJegGPXUvwsW
ane5l/IGobPxxD4qo6NevOFqjFF0UcU2KK048v0YiaQKEB8oxuCENBLsT3Dr33Gr
U+g8Y+nCDk5gxZSWI61ltkxWLgQmgBMVmUwT8UCdUjlOOMySUdx6C9dJipSTa85H
9UOvR3/hKEUAjx2FgWs3/oDBom3I7FA2zENhVwIDAQABo4IB1DCCAdAwHQYDVR0O
BBYEFAWm3JJk/nmRBO7obOVfwd4djHAEMB8GA1UdIwQYMBaAFG1vv6l1PbjYRkM9
tTUdmp7AfJa9MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwUAYDVR0fBEkwRzBF
oEOgQYY/cnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9SR25ldC1PVS9iVy1fcVhVOXVO
aEdRejIxTlIyYW5zQjhscjAuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcw
AoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iVy1f
cVhVOXVOaEdRejIxTlIyYW5zQjhscjAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBigYI
KwYBBQUHAQsEfjB8MEsGCCsGAQUFBzALhj9yc3luYzovL2NhLnJnLm5ldC9ycGtp
L1JHbmV0LU9VL0JhYmNrbVQtZVpFRTd1aHM1Vl9CM2gyTWNBUS5yb2EwLQYIKwYB
BQUHMA2GIWh0dHBzOi8vY2EucmcubmV0L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAZMcADANBgkqhkiG9w0BAQsFAAOCAQEAhjG1
9GxRARLzFIIvkLXlpLRVniGiD3DXSkVC01Q9O1laMJznQPwODQLXYDBcJYVquIO1
XpLXVNqyb6NZyplRyKTwSqthkCc5Lt4wdTIDwIhmXs+PysEtRRTflcyDGSjR/Fdx
CF10/9TjZl0sSF8wru83mNLyLoqdmbmiouCCHP7ZdVw3bOHi2xY5HcI5bXZjqj6E
PTcsxvGogFfvyBQ3CSgO+WVZBYdw7zQ/zsILJU+FUdNZvuZBdux8YbQNI/Rfgtvo
kEJH1CUaCPQame4zPld8JKuJslq+aoS1a4a+PJInYmqif7UjSdikF8D7zKqmJzHn
L9VixaPj4cvWe6hCYQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org