Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/UhhPiuTVm91amjgdvPGeFoXES5k.roa
File: UhhPiuTVm91amjgdvPGeFoXES5k.roa (raw, json)
Hash identifier: 87tIQvsePbeGSawvMhDbbCMCsCFT5Pc+ynRlduFJiVY=
Subject key identifier: 52:18:4F:8A:E4:D5:9B:DD:5A:9A:38:1D:BC:F1:9E:16:85:C4:4B:99
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: 9FA0
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/UhhPiuTVm91amjgdvPGeFoXES5k.roa
Signing time: Sun 29 Aug 2021 23:37:53 +0000
ROA not before: Sun 29 Aug 2021 23:37:53 +0000
ROA not after: Fri 01 Jul 2022 00:00:00 +0000
asID: 3130
IP address blocks: 198.180.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40864 (0x9fa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Aug 29 23:37:53 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=52184F8AE4D59BDD5A9A381DBCF19E1685C44B99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:00:10:80:50:fa:8f:be:82:d6:22:18:d0:1d:
39:8f:f0:c0:a3:84:ac:c2:41:b8:36:50:e3:c4:25:
bf:80:dc:29:43:e5:b9:53:ea:8f:db:40:c9:d3:42:
fb:8d:65:53:8c:71:79:f8:4f:04:5f:f7:9f:75:6a:
13:28:99:e4:f4:12:bf:c7:f3:9d:36:7f:07:f1:31:
ae:0f:f5:85:5f:da:b4:bd:9c:70:65:fd:1c:a9:5b:
7d:9c:15:89:9b:51:01:99:10:5f:8d:ec:07:77:15:
cc:00:e4:9e:77:79:cb:38:5f:ad:52:ea:9f:f9:b2:
5d:8f:fc:a8:71:12:4b:ab:fd:b1:27:c8:68:5f:5e:
0d:07:95:02:b5:0d:75:32:e5:51:1f:b6:39:bb:d8:
d3:4b:e2:c6:6d:99:63:7a:00:c7:95:ac:16:a6:8f:
8e:16:03:ae:87:e2:2f:a1:4d:79:da:7c:43:9b:17:
2d:2a:3a:06:d1:da:b8:1e:83:75:cd:bd:d5:05:14:
cd:3d:9f:e2:87:61:6a:c4:6a:e7:7e:2e:61:4e:67:
8f:c1:1b:d2:7c:c5:0a:dd:94:d9:d3:c3:e5:17:7f:
e1:bd:f0:8f:78:66:7f:3b:7a:b7:a2:ef:67:4d:09:
84:1a:36:de:3a:d5:cf:2f:d2:94:48:24:75:91:04:
a7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:18:4F:8A:E4:D5:9B:DD:5A:9A:38:1D:BC:F1:9E:16:85:C4:4B:99
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/UhhPiuTVm91amjgdvPGeFoXES5k.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
198.180.151.0/24
Signature Algorithm: sha256WithRSAEncryption
83:1f:7e:2b:67:b7:bd:3a:c3:64:fd:de:ea:d7:70:b1:64:dd:
74:36:12:59:73:dd:ea:19:74:c3:32:e9:d5:c3:d5:86:d4:d7:
cd:f4:29:fa:52:fd:5b:48:37:c4:e6:a1:3d:df:9b:05:6d:3c:
64:94:ee:1f:dd:1f:ea:51:d9:f1:4c:95:58:4a:d6:f4:de:4d:
4b:d9:09:aa:6f:24:25:06:63:9f:59:03:77:f1:42:f0:41:65:
63:2a:9e:70:e9:81:05:17:c9:8d:e3:2b:5f:ea:5e:8c:68:de:
e7:46:0f:9f:61:f2:86:cd:f8:0c:51:f0:e4:d4:d6:74:58:92:
92:2b:50:a4:9e:03:b9:00:83:9d:ed:39:13:f4:94:31:52:ea:
ba:3c:0d:4d:67:44:39:1e:46:0a:c7:26:78:11:c1:68:ba:26:
89:f3:96:73:3c:6c:60:f6:a6:a8:66:58:1c:21:e7:54:b0:39:
e2:c6:72:67:74:9b:61:ba:d0:34:9d:d3:e8:d5:a6:5d:df:10:
9b:e4:b4:e2:6f:24:c6:0b:c3:c5:15:db:c7:bb:ad:53:47:3d:
75:a2:d4:60:15:19:7c:cf:ee:7a:41:95:1c:ca:eb:ba:2f:45:
9e:c3:60:80:00:4b:6c:f6:1f:98:64:6c:4d:37:c8:28:44:31:
fb:2a:70:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org