Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/OzbeEQDy2ySpRf46SDpym9swpJc.roa
File: OzbeEQDy2ySpRf46SDpym9swpJc.roa (raw, json)
Hash identifier: +YOTwdbKYQOR/LlHCVVmB9UAmZr69DH3CealYEQqcw4=
Subject key identifier: 3B:36:DE:11:00:F2:DB:24:A9:45:FE:3A:48:3A:72:9B:DB:30:A4:97
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: 9FA5
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/OzbeEQDy2ySpRf46SDpym9swpJc.roa
Signing time: Sun 29 Aug 2021 23:37:55 +0000
ROA not before: Sun 29 Aug 2021 23:37:54 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 3927
IP address blocks: 198.180.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40869 (0x9fa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Aug 29 23:37:54 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=3B36DE1100F2DB24A945FE3A483A729BDB30A497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:33:e8:87:21:68:cb:b7:16:8f:21:7b:d4:9a:
63:2f:17:f4:6f:77:13:87:70:c3:33:6d:ed:21:17:
10:de:cc:c4:b8:70:0e:d8:9a:25:ae:98:3f:d3:73:
3e:76:f8:9e:1b:17:5b:f1:fc:29:f9:83:d9:bc:df:
2a:9e:e5:45:79:f0:ad:52:a3:4e:ed:ea:68:0d:e7:
26:09:9c:d1:36:f5:db:0d:17:e3:e8:2d:f9:d2:3a:
f8:5f:64:a0:be:f4:ce:9d:f2:ea:90:68:21:3c:32:
b9:ce:f1:a8:76:7e:17:6d:dd:31:41:26:57:82:1f:
05:6e:60:85:0e:bb:c2:67:bb:94:f2:ff:51:d6:2a:
34:aa:86:b5:e0:d2:b3:4e:34:51:d6:67:00:51:f8:
11:35:e5:1f:07:b7:9a:40:1f:80:46:3f:ad:69:ae:
8f:dc:d4:df:1e:11:50:65:5e:7e:ce:05:59:73:b8:
7f:88:1a:c6:7d:71:58:53:1e:09:e8:e9:1b:3d:85:
e0:ea:42:ef:84:b4:cc:11:8c:07:20:2a:ad:20:f8:
a1:81:3c:e9:77:ee:bd:aa:7d:d8:84:8c:09:91:7f:
9f:6d:9c:98:ff:d6:ba:20:4c:13:f6:9f:e5:52:80:
48:d3:d3:34:20:a1:d8:a5:fa:56:0b:5b:10:63:a5:
f5:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:36:DE:11:00:F2:DB:24:A9:45:FE:3A:48:3A:72:9B:DB:30:A4:97
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/OzbeEQDy2ySpRf46SDpym9swpJc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
198.180.150.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:e4:32:d0:23:d1:a9:f3:8a:b2:9b:ab:ea:e6:00:72:5c:09:
3c:0d:4c:a2:00:32:eb:f9:74:17:55:18:7f:15:9d:4c:b5:ae:
6e:4f:8e:f9:1e:d4:f4:fc:e8:01:b4:22:b2:64:16:fd:15:fd:
a3:b1:14:65:dc:00:c0:7b:b0:62:98:4f:cf:64:3f:3d:e0:1a:
04:48:c2:f6:d8:b8:1b:cf:80:df:cd:28:ee:e8:43:f8:e2:66:
63:2b:0a:6d:e6:7a:76:0a:65:02:63:f6:4e:26:c0:f1:cc:01:
03:d3:1f:5c:82:a7:1e:12:5f:96:c1:71:b3:53:66:c4:73:dd:
04:ef:a2:3c:9d:9a:cf:20:32:15:35:63:59:b6:fb:99:7c:44:
9e:16:de:dd:7c:83:f2:31:8a:e6:57:7e:49:c0:53:f8:cf:11:
49:a5:96:f5:95:67:cd:ce:80:df:49:07:17:99:6a:e9:25:d8:
0d:6e:00:e4:2f:b5:92:4b:0b:4c:19:bf:1e:3a:2d:99:5d:ee:
be:1d:af:ba:0c:3e:64:9f:11:fe:3a:e1:16:c7:f0:13:b8:94:
5c:c2:32:c8:d6:3b:f1:9c:07:df:60:56:14:95:6a:7e:36:36:
04:f1:d3:20:e8:77:5e:8b:3e:aa:19:e6:99:47:ee:d4:25:c0:
f4:bd:ec:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org