Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/2mhBdvRvF0YdKrvceEZxBVewdzw.roa
File: 2mhBdvRvF0YdKrvceEZxBVewdzw.roa (raw, json)
Hash identifier: s1UJSP5IJks7XHWtoidJQv3E/0T7ds7Y0CmY/w+Ss54=
Subject key identifier: DA:68:41:76:F4:6F:17:46:1D:2A:BB:DC:78:46:71:05:57:B0:77:3C
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47AA
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2mhBdvRvF0YdKrvceEZxBVewdzw.roa
Signing time: Sun 08 May 2022 00:30:08 +0000
ROA not before: Sun 08 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18346 (0x47aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 8 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=DA684176F46F17461D2ABBDC7846710557B0773C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:76:4e:4e:fd:d0:74:19:22:d6:91:4c:3f:81:
1c:f5:00:db:69:03:72:80:9d:9b:6f:24:93:9a:43:
f8:2b:73:ea:f1:24:49:fd:8e:59:c3:b9:c1:76:09:
71:f9:86:bf:91:0b:17:68:5b:93:fe:85:b6:a2:b1:
fc:84:96:b0:98:62:19:d2:95:b9:76:f1:ef:d2:70:
81:a0:9c:33:2b:88:c2:8e:81:c5:4d:e8:1f:a7:5e:
34:eb:10:b0:76:30:49:cb:2d:a1:30:46:4d:ad:0f:
b2:2b:ba:a8:dc:4e:4d:91:c9:4b:52:aa:01:d8:92:
5f:0e:65:a6:d7:72:9f:f5:86:d5:a6:f2:58:45:29:
83:27:84:87:09:02:47:ff:cb:80:c8:21:0e:ee:8a:
d4:d5:a7:41:a0:ee:af:39:9f:4c:b2:1e:35:4b:ed:
71:72:9c:bd:32:be:d4:be:1c:71:44:d9:dd:d7:4b:
e9:06:6d:0c:92:7a:76:27:c2:cd:65:e3:ff:7e:9c:
bc:dc:ed:81:98:fa:08:cd:c7:90:9f:f8:eb:ea:b6:
6c:57:bf:b6:3c:6b:32:4f:20:dc:60:02:f6:1c:01:
c7:eb:b3:7d:cc:81:56:9a:95:fa:be:a4:ed:3c:90:
f1:0d:62:3e:66:25:69:21:a6:b9:66:c6:bf:33:c0:
ef:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:68:41:76:F4:6F:17:46:1D:2A:BB:DC:78:46:71:05:57:B0:77:3C
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2mhBdvRvF0YdKrvceEZxBVewdzw.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
06:f3:b4:84:2a:c3:88:9e:23:68:e5:0f:cd:bb:d5:a8:2e:2b:
43:4b:2f:c8:5a:35:5e:81:a0:96:43:9d:c6:c9:4c:47:6a:ea:
41:6f:bc:65:26:05:0b:bb:2b:16:bc:1d:54:95:4f:78:99:1b:
3e:cb:02:43:e1:e8:6a:b4:c6:aa:84:4c:41:f0:d2:42:a7:a1:
b8:d0:03:71:3b:e6:80:03:de:73:b8:d5:e4:10:a8:01:95:04:
82:65:82:27:12:e4:a5:3d:e4:4d:72:2c:28:a5:bb:a1:52:25:
9d:3f:30:9e:8f:fb:e8:2e:a2:40:8e:91:b8:10:d7:75:f9:25:
fb:fb:73:86:d4:b4:72:a7:6b:02:af:5b:3d:fb:0b:f1:e4:d8:
26:ce:e5:9b:fa:12:03:72:c1:ff:5a:ea:49:4d:6a:43:11:82:
3b:13:61:ba:f6:7f:22:66:95:8d:90:f5:4a:3e:0d:b1:f9:18:
61:4c:60:3d:ad:11:04:72:0a:3c:05:df:38:7b:9a:63:00:41:
65:6d:f3:47:7e:6e:24:f4:87:0d:9f:ff:2d:2e:f5:a5:d8:2d:
bb:55:fb:a2:1f:37:44:ac:86:59:40:1c:b6:2d:34:01:19:f1:
f1:d6:fa:79:44:29:11:fc:b1:a9:35:3e:97:e9:d3:2e:fa:95:
7b:53:4f:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:35 2023 by rpki-client on console-fra.rpki-client.org