Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/wjfZgEV7BLp_nkX444V7IEHkrhs.roa
File: wjfZgEV7BLp_nkX444V7IEHkrhs.roa (raw, json)
Hash identifier: KZZpTHkkipIkmgIiHfeuYPbjyjT218DJCNZ91RZDt0Y=
Subject key identifier: C2:37:D9:80:45:7B:04:BA:7F:9E:45:F8:E3:85:7B:20:41:E4:AE:1B
Certificate issuer: /CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Certificate serial: D627
Authority key identifier: 6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/wjfZgEV7BLp_nkX444V7IEHkrhs.roa
Signing time: Fri 17 Jun 2022 00:05:09 +0000
ROA not before: Fri 17 Jun 2022 00:05:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203274
IP address blocks: 198.133.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54823 (0xd627)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d6fbfa9753db8d846433db5351d9a9ec07c96bd
Validity
Not Before: Jun 17 00:05:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=C237D980457B04BA7F9E45F8E3857B2041E4AE1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:af:71:cd:69:ca:cd:8c:a2:ee:82:b3:2a:97:
f3:94:aa:fb:8c:fa:8f:7b:97:e6:66:5e:ed:10:a1:
51:07:6f:20:3e:ed:22:86:d7:31:8a:60:5a:c9:08:
4c:df:11:d8:05:3d:e6:81:08:3f:19:04:bc:7f:1b:
93:29:5a:73:79:e8:eb:69:87:a8:df:57:ee:ea:80:
b3:9f:a9:23:4d:79:35:ed:ba:ae:0c:cb:de:c7:63:
09:7f:e3:12:0b:3c:4b:d8:bf:44:eb:90:fa:c0:31:
cd:25:12:a0:ef:c1:68:39:48:65:5c:87:20:41:26:
41:79:b4:17:6e:33:39:b9:f6:1c:fe:c9:f3:a0:bb:
8f:2d:3e:43:3c:b6:fb:00:77:50:2a:e5:af:89:03:
1a:86:6f:85:de:a7:76:54:c9:10:91:21:ee:2c:f3:
99:15:83:07:b4:45:29:b7:a7:87:a5:42:3c:ba:f0:
86:8b:d1:6e:6f:22:bc:51:38:dd:16:40:dd:be:8a:
ee:f6:f6:f5:34:2d:fd:3d:42:e3:20:1c:75:7d:46:
03:e9:1b:57:d9:68:fb:16:c4:aa:eb:76:78:61:38:
e2:9f:cd:4e:31:92:09:df:c6:cb:e9:53:4e:06:80:
11:ea:c6:0d:f0:4a:d2:0f:87:38:44:27:ff:b7:1b:
ac:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:37:D9:80:45:7B:04:BA:7F:9E:45:F8:E3:85:7B:20:41:E4:AE:1B
X509v3 Authority Key Identifier:
keyid:6D:6F:BF:A9:75:3D:B8:D8:46:43:3D:B5:35:1D:9A:9E:C0:7C:96:BD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/bW-_qXU9uNhGQz21NR2ansB8lr0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bW-_qXU9uNhGQz21NR2ansB8lr0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/wjfZgEV7BLp_nkX444V7IEHkrhs.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
198.133.206.0/24
Signature Algorithm: sha256WithRSAEncryption
07:ed:aa:b5:dc:82:a6:d9:83:53:19:4e:3d:33:c1:bb:0f:e0:
b9:9d:33:db:db:b0:1f:ce:1f:e8:cd:b6:b7:5e:51:41:a8:b1:
d3:2d:40:f3:a0:31:a7:d3:34:f8:61:ea:1f:f8:e9:ac:d2:72:
bf:4f:4d:0d:dc:bc:cd:33:7d:45:9a:48:60:37:b6:fe:47:bc:
0c:b9:ab:74:9a:72:cc:57:8e:71:24:b0:04:91:c4:85:e7:cb:
96:5f:61:f7:d2:86:29:63:87:90:98:5a:8e:8d:5a:48:a0:e3:
46:dc:41:77:1c:87:55:02:24:6f:0c:57:db:29:10:2e:53:15:
79:42:ff:01:b7:2e:01:e5:6a:d7:38:f1:33:ab:a9:44:df:2b:
63:5e:3d:d5:68:70:8c:84:44:cf:1a:03:65:41:67:e8:68:c8:
33:6f:81:72:b6:fa:00:b1:20:3c:6f:31:90:fc:9c:c3:ac:ec:
41:00:7d:4f:af:d9:1f:40:d7:0d:86:cf:93:8a:9f:9d:ac:5c:
ea:f2:2b:37:e1:c7:3f:69:fc:02:44:cd:0b:17:02:dc:5d:5f:
ba:19:56:f3:d7:c9:bb:61:a6:fd:cb:1d:5e:79:89:77:e1:64:
05:9e:09:99:a1:a3:62:3b:ac:fd:b9:be:a4:ad:58:e1:e2:92:
40:20:d2:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org