Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/Tv8hh5r0s7Uoqqt7htPzMPyWxQw.roa
File: Tv8hh5r0s7Uoqqt7htPzMPyWxQw.roa (raw, json)
Hash identifier: OQnyxLXigmoz3i72t2BOUKk00uWH9/iUmCsQ8wQyHJk=
Subject key identifier: 4E:FF:21:87:9A:F4:B3:B5:28:AA:AB:7B:86:D3:F3:30:FC:96:C5:0C
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: E9AF
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/Tv8hh5r0s7Uoqqt7htPzMPyWxQw.roa
Signing time: Fri 30 Sep 2022 03:24:04 +0000
ROA not before: Fri 30 Sep 2022 03:24:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3130
IP address blocks: 198.180.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59823 (0xe9af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Sep 30 03:24:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4EFF21879AF4B3B528AAAB7B86D3F330FC96C50C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8d:6d:d2:63:1b:05:7e:58:69:54:b6:b0:aa:
8e:3c:30:48:82:fa:90:be:e2:13:ef:f4:44:7c:6f:
99:a9:d8:bd:0d:b2:96:79:2a:75:b6:81:05:63:bb:
10:68:66:4e:26:3d:cb:6c:45:52:68:1d:2a:de:e9:
c0:3a:08:10:b1:0f:ad:72:24:ae:f0:2a:93:28:be:
78:22:59:c4:b6:0b:46:ed:c2:fd:58:4b:73:86:3e:
b9:02:38:16:c4:a2:e6:6b:5a:69:db:75:74:49:c0:
95:f5:25:d1:13:b6:d2:32:d1:8b:20:54:ae:12:28:
9b:73:2c:75:2e:6d:44:c0:b5:ff:a8:cc:cc:76:d5:
5a:0b:ef:f4:77:2a:89:a5:6e:43:7a:f9:cb:f3:4c:
91:ba:86:16:9c:69:94:9a:8f:d2:3d:4e:b2:43:63:
ae:5e:d1:a0:19:a5:ef:8a:19:36:78:12:0e:aa:0e:
8c:19:5d:29:f9:66:c7:97:af:f6:39:f4:03:cf:cf:
f5:a5:44:87:15:68:96:06:0c:f7:e3:ce:81:31:5d:
af:0f:3e:1b:be:e3:1d:13:2c:1a:93:44:ef:eb:dc:
98:0c:51:99:f3:ba:d7:4b:34:7f:9c:dd:52:f1:c2:
55:9e:ae:86:7e:27:3d:f3:67:ec:c2:8d:63:01:ae:
4c:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:FF:21:87:9A:F4:B3:B5:28:AA:AB:7B:86:D3:F3:30:FC:96:C5:0C
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/Tv8hh5r0s7Uoqqt7htPzMPyWxQw.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
198.180.153.0/24
Signature Algorithm: sha256WithRSAEncryption
be:05:54:60:77:a6:56:e4:19:30:1c:57:04:8d:71:cc:49:e3:
47:3a:c0:47:34:40:55:a9:5d:7c:48:3a:31:7c:bd:27:b8:1c:
5f:4b:e3:e6:de:c7:77:83:ca:d5:1c:2b:32:a2:fc:b0:9a:83:
ed:08:c0:c8:72:af:82:2c:69:a9:d0:df:9c:93:82:72:50:17:
fa:dd:55:c8:ce:3c:08:de:6b:35:e6:eb:a3:76:a6:3f:f7:bd:
67:11:4c:e3:f3:74:1c:fd:cf:95:99:1c:e8:23:77:62:59:cd:
45:ba:47:37:5a:ab:fc:66:c4:b5:de:8e:4e:13:ef:02:dc:35:
3e:f3:21:65:62:71:26:fc:43:ba:ec:5e:4c:85:e1:51:5b:2e:
96:48:8f:65:df:58:bb:da:a9:04:b5:f1:91:05:d2:5d:38:88:
40:4a:bb:12:16:35:05:96:63:8f:89:29:da:ed:e4:bb:99:f6:
af:e7:d0:2e:b8:21:d3:df:a7:7e:13:2a:5d:14:10:28:d7:20:
31:9b:fa:c4:29:ec:bf:a7:29:d1:ee:4e:ef:db:24:24:65:0f:
1d:dc:01:76:17:66:f8:51:26:f2:a7:68:db:7a:3d:74:ab:fc:
37:11:26:7e:23:05:e4:07:0d:79:56:a9:e6:eb:08:cc:ea:9c:
bf:81:18:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org