Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/34KRRwf1s33PvuR-EB3XM7aOJ8E.roa
File: 34KRRwf1s33PvuR-EB3XM7aOJ8E.roa (raw, json)
Hash identifier: Iv9lII/vR2PSvgeLbPX+bYwbBIaon/ctpzLU+W2Mr2s=
Subject key identifier: DF:82:91:47:07:F5:B3:7D:CF:BE:E4:7E:10:1D:D7:33:B6:8E:27:C1
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 43F0
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/34KRRwf1s33PvuR-EB3XM7aOJ8E.roa
Signing time: Tue 01 Mar 2022 00:30:08 +0000
ROA not before: Tue 01 Mar 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17392 (0x43f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 1 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=DF82914707F5B37DCFBEE47E101DD733B68E27C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:50:35:77:e4:07:ab:7f:1c:a1:93:fe:6d:a8:
46:ef:24:67:0f:20:de:55:a0:34:40:ca:52:69:10:
10:d8:e6:b0:ab:f7:16:04:a4:53:08:1f:b2:44:2a:
97:58:4d:8a:20:35:16:ec:bf:40:21:04:27:d8:41:
d8:7d:9e:56:e7:6a:d5:e9:a7:db:c5:6e:98:97:f5:
3e:bd:a1:f6:f8:af:c0:56:0f:03:57:58:71:f1:f9:
7f:57:c5:04:04:01:fa:f8:b1:51:19:bd:ac:9b:19:
a3:28:d8:5e:5e:a7:31:e7:9e:77:00:f5:6c:3c:ae:
d3:8d:5e:80:b2:44:1a:b3:e1:70:78:4c:b1:1b:25:
f2:9d:c0:92:a5:f7:86:a5:de:4c:aa:52:e6:1b:54:
05:1b:f4:db:1e:71:b3:0a:11:59:e8:1c:d3:87:a0:
ac:8e:87:eb:3e:f4:e8:6f:b6:84:14:b5:a5:2b:80:
90:39:f0:8a:7c:52:10:74:b4:99:a0:fe:e9:0b:d3:
49:ce:06:1d:97:12:66:9e:b2:cd:f1:d2:a8:28:16:
b1:53:47:14:6d:51:cf:5b:54:ba:46:bc:41:62:3c:
1a:e3:8b:92:d5:98:1f:fa:f5:51:bf:27:cb:47:b0:
82:cd:f4:ee:5f:1a:d2:91:bf:f6:d9:01:fa:1d:2d:
fc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:82:91:47:07:F5:B3:7D:CF:BE:E4:7E:10:1D:D7:33:B6:8E:27:C1
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/34KRRwf1s33PvuR-EB3XM7aOJ8E.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7b:ee:89:ed:23:1d:ed:74:b1:01:04:15:ec:4e:71:c0:0d:
27:59:58:76:91:d0:d0:33:60:cb:9d:ce:7e:8d:f2:44:86:4d:
be:a9:6e:17:c0:a6:ec:8a:81:61:d0:db:87:7b:43:a3:38:38:
c5:8b:4f:5e:c9:a8:62:58:a6:e0:66:74:03:62:06:e7:38:63:
e4:a7:00:d2:21:d2:e7:04:f9:f0:5c:7b:7e:20:c6:70:c8:02:
0b:3a:5b:92:0e:bb:46:9d:cb:71:93:d9:26:50:f4:34:67:f1:
2e:5b:3e:2c:5b:26:51:56:0c:b8:a5:95:45:f9:c6:68:84:82:
5f:e8:11:bc:0f:a2:5a:ee:06:96:f5:31:f2:8b:6b:67:b9:78:
3a:72:9d:cd:17:97:c6:af:5d:a0:c1:23:4e:44:62:60:84:70:
4f:73:b3:b7:c5:ac:35:a6:04:62:12:15:16:b6:2a:7a:48:da:
a4:e7:8b:f8:65:4d:fa:24:95:8d:56:31:47:3f:13:26:d0:60:
fc:6c:66:66:46:24:f0:ff:74:d2:8b:ea:91:88:d4:4a:53:41:
4e:50:21:a0:3b:f1:ac:77:72:55:c8:02:3f:86:4f:58:05:1a:
4a:0c:d9:ae:17:f9:6f:ee:21:ed:8b:1e:17:30:67:87:5f:67:
85:62:f6:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:35 2023 by rpki-client on console-fra.rpki-client.org