Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ij767dc2ex6L6MprV46dEBPYJ94.roa
File: ij767dc2ex6L6MprV46dEBPYJ94.roa (raw, json)
Hash identifier: /JySF4pvUAgv+5Uywiae8dJjs+izoTQ6f7Qkw6sCz3M=
Subject key identifier: 8A:3E:FA:ED:D7:36:7B:1E:8B:E8:CA:6B:57:8E:9D:10:13:D8:27:DE
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: E9B1
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ij767dc2ex6L6MprV46dEBPYJ94.roa
Signing time: Fri 30 Sep 2022 03:24:05 +0000
ROA not before: Fri 30 Sep 2022 03:24:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3130
IP address blocks: 147.28.0.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59825 (0xe9b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Sep 30 03:24:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8A3EFAEDD7367B1E8BE8CA6B578E9D1013D827DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:df:b6:14:d3:40:0a:d7:28:af:fc:e1:25:57:
8b:65:2b:be:b8:1d:29:c2:f8:1f:a6:24:bc:da:38:
93:d5:5e:af:40:a4:49:14:93:81:40:9a:40:1e:a7:
a8:bf:04:14:e5:49:1a:14:56:7d:34:8b:d6:75:e2:
c8:d6:03:17:43:01:9c:07:4d:25:30:cf:15:df:a0:
5e:ca:70:e9:3c:9a:45:53:d4:e7:50:3f:b9:79:ab:
3a:57:8b:18:e3:98:47:67:ff:65:89:65:50:a6:53:
12:a9:8b:62:04:ce:bd:bd:bb:38:5a:11:9e:4e:58:
9e:27:fe:2d:a4:70:07:54:69:4f:f2:53:cf:26:49:
43:e6:72:25:63:cc:75:ed:70:61:05:ee:55:29:db:
35:bf:45:36:46:0b:e1:b0:cb:03:72:8c:59:a5:97:
27:cd:5e:58:a4:eb:bc:a7:c6:39:58:a2:cd:4b:7e:
0c:d0:25:44:13:72:8b:01:dd:6a:50:fe:f7:67:0e:
3b:e7:85:39:2f:af:a8:29:2b:f9:9e:de:a0:cc:af:
b9:c0:2f:c3:a4:b4:55:15:c1:70:ed:03:a7:a7:f8:
9a:86:e9:1b:9a:cc:fc:0f:e8:dd:da:20:59:57:a6:
f5:7b:36:16:01:72:76:9b:84:cb:d9:de:1c:3f:8b:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:3E:FA:ED:D7:36:7B:1E:8B:E8:CA:6B:57:8E:9D:10:13:D8:27:DE
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ij767dc2ex6L6MprV46dEBPYJ94.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.0.0/23
Signature Algorithm: sha256WithRSAEncryption
c9:f3:91:a1:c5:f6:0f:34:b7:8f:a9:65:0a:fd:43:f0:06:b5:
b9:b1:3d:40:8e:e4:76:89:3e:13:14:9f:ae:19:2e:13:40:d2:
29:c4:01:3e:2a:2b:7b:4c:5a:c3:51:33:f6:d9:30:8e:47:93:
82:12:10:f1:af:9a:c7:18:a6:4a:9e:f7:61:92:40:b7:5a:90:
9b:72:3b:f4:44:89:96:6c:ee:82:cb:21:15:de:41:04:3a:82:
3e:0c:45:b1:4b:0b:9d:e4:4d:84:5d:2f:65:82:81:da:d1:21:
99:31:82:b3:f4:4f:fd:9f:39:c6:ec:1d:71:61:d3:4a:f2:47:
37:f4:4e:24:6f:b7:e4:3e:f3:dd:7a:4f:27:82:90:a0:e8:c4:
82:81:95:05:4e:37:49:3c:b1:62:33:76:ed:96:b4:cf:e6:51:
7a:aa:c9:4e:e6:75:13:99:4a:21:55:75:14:b5:60:5b:00:d7:
07:81:70:ba:2b:44:cf:6a:04:d1:e8:9d:bd:af:46:49:a9:ab:
79:3a:69:8d:c6:fa:92:1a:07:69:cd:8c:d7:c5:63:b3:91:22:
c0:85:7c:96:9d:21:be:65:95:08:55:a2:3f:1e:57:d9:d1:8e:
b5:42:dc:da:fa:4a:f1:88:17:c1:8e:ee:39:98:d9:29:ec:0f:
20:30:3f:d8
-----BEGIN CERTIFICATE-----
MIIEuTCCA6GgAwIBAgIDAOmxMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDZk
NmZiZmE5NzUzZGI4ZDg0NjQzM2RiNTM1MWQ5YTllYzA3Yzk2YmQwHhcNMjIwOTMw
MDMyNDA1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg4QTNFRkFFREQ3MzY3
QjFFOEJFOENBNkI1NzhFOUQxMDEzRDgyN0RFMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAzt+2FNNACtcor/zhJVeLZSu+uB0pwvgfpiS82jiT1V6vQKRJ
FJOBQJpAHqeovwQU5UkaFFZ9NIvWdeLI1gMXQwGcB00lMM8V36BeynDpPJpFU9Tn
UD+5eas6V4sY45hHZ/9liWVQplMSqYtiBM69vbs4WhGeTlieJ/4tpHAHVGlP8lPP
JklD5nIlY8x17XBhBe5VKds1v0U2RgvhsMsDcoxZpZcnzV5YpOu8p8Y5WKLNS34M
0CVEE3KLAd1qUP73Zw4754U5L6+oKSv5nt6gzK+5wC/DpLRVFcFw7QOnp/iahukb
msz8D+jd2iBZV6b1ezYWAXJ2m4TL2d4cP4vYhwIDAQABo4IB1DCCAdAwHQYDVR0O
BBYEFIo++u3XNnsei+jKa1eOnRAT2CfeMB8GA1UdIwQYMBaAFG1vv6l1PbjYRkM9
tTUdmp7AfJa9MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwUAYDVR0fBEkwRzBF
oEOgQYY/cnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9SR25ldC1PVS9iVy1fcVhVOXVO
aEdRejIxTlIyYW5zQjhscjAuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEFBQcw
AoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iVy1f
cVhVOXVOaEdRejIxTlIyYW5zQjhscjAuY2VyMA4GA1UdDwEB/wQEAwIHgDCBigYI
KwYBBQUHAQsEfjB8MEsGCCsGAQUFBzALhj9yc3luYzovL2NhLnJnLm5ldC9ycGtp
L1JHbmV0LU9VL2lqNzY3ZGMyZXg2TDZNcHJWNDZkRUJQWUo5NC5yb2EwLQYIKwYB
BQUHMA2GIWh0dHBzOi8vY2EucmcubmV0L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEF
BQcBBwEB/wQQMA4wDAQCAAEwBgMEAZMcADANBgkqhkiG9w0BAQsFAAOCAQEAyfOR
ocX2DzS3j6llCv1D8Aa1ubE9QI7kdok+ExSfrhkuE0DSKcQBPiore0xaw1Ez9tkw
jkeTghIQ8a+axximSp73YZJAt1qQm3I79ESJlmzugsshFd5BBDqCPgxFsUsLneRN
hF0vZYKB2tEhmTGCs/RP/Z85xuwdcWHTSvJHN/ROJG+35D7z3XpPJ4KQoOjEgoGV
BU43STyxYjN27Za0z+ZReqrJTuZ1E5lKIVV1FLVgWwDXB4FwuitEz2oE0eidva9G
SamreTppjcb6khoHac2M18Vjs5EiwIV8lp0hvmWVCFWiPx5X2dGOtULc2vpK8YgX
wY7uOZjZKewPIDA/2A==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org