Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/4SKpkHmc4dF3wCJSTOwW3AejMCo.roa
File: 4SKpkHmc4dF3wCJSTOwW3AejMCo.roa (raw, json)
Hash identifier: dMeVT/r2GF2Trop3N6Wfo3uLtUi9bcPwgn93qIymwl4=
Subject key identifier: E1:22:A9:90:79:9C:E1:D1:77:C0:22:52:4C:EC:16:DC:07:A3:30:2A
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 46AA
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4SKpkHmc4dF3wCJSTOwW3AejMCo.roa
Signing time: Wed 20 Apr 2022 00:30:05 +0000
ROA not before: Wed 20 Apr 2022 00:30:05 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18090 (0x46aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 20 00:30:05 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=E122A990799CE1D177C022524CEC16DC07A3302A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:86:d0:c3:55:e8:99:6b:ec:77:3f:a4:a7:04:
9f:a4:20:20:04:2a:4b:ae:fa:7e:b5:82:61:c1:79:
1b:72:43:4a:02:80:46:51:2d:ff:12:0d:38:ab:dc:
19:f3:c6:13:7c:3b:f4:67:ad:b1:8d:d4:c8:1e:9f:
21:ee:0c:7b:a2:c5:81:93:b4:4c:39:d8:b3:f7:ba:
d8:15:02:95:a0:73:c0:43:c4:b6:78:7b:be:6a:19:
41:28:88:10:04:f2:72:6f:11:b5:a0:6c:9b:91:ab:
83:05:35:ef:70:2c:25:d4:79:85:36:e2:e4:e9:8c:
b4:09:7e:bd:b9:ad:15:98:94:12:a7:f3:b2:06:30:
74:24:1b:66:c1:f2:26:71:0b:96:52:3c:0c:51:bc:
d2:7e:e7:b4:eb:87:be:b1:bc:44:b4:f0:d0:cf:36:
00:f5:d2:df:1f:9e:12:1d:02:51:02:b7:c2:be:d0:
03:26:a9:52:82:e7:85:9f:41:d2:c0:60:ec:7b:12:
9f:e4:e3:2e:92:98:51:b6:87:89:90:bd:e3:58:33:
e1:3c:84:fb:78:ea:e3:72:f0:80:92:bd:8f:08:5e:
c8:da:c3:57:77:12:1c:48:96:b2:d1:4d:1c:73:7c:
0c:bb:32:46:b0:c6:0f:e3:d2:2b:f9:d7:0c:ad:08:
65:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:22:A9:90:79:9C:E1:D1:77:C0:22:52:4C:EC:16:DC:07:A3:30:2A
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4SKpkHmc4dF3wCJSTOwW3AejMCo.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
20:e4:e9:ca:56:55:fe:7f:f0:df:3f:43:73:42:1c:ed:b9:84:
9c:12:c0:2c:46:c8:8e:80:4e:8e:9c:f8:f6:9d:95:96:7d:6a:
24:e4:f9:9e:54:fe:72:ff:81:3a:de:5e:7c:8e:d8:97:c0:a4:
e6:3e:c1:29:93:e6:e9:96:08:08:31:97:ee:97:1f:ca:50:95:
7b:6b:d4:3f:b7:44:e0:3c:04:15:ac:75:b0:2d:f4:18:85:f9:
5e:95:eb:6b:57:7f:2e:3f:81:d2:f9:72:64:fc:90:45:fa:e3:
5f:b0:87:43:05:b1:b2:0b:ff:00:cd:d9:b1:d2:aa:b9:d3:ae:
90:4f:43:90:e9:b8:11:2d:d5:0f:2d:b0:db:4d:7e:eb:20:e6:
0c:1d:fd:62:1a:69:18:6d:31:94:81:21:e8:47:99:b4:fa:c8:
12:56:97:00:06:c4:19:a1:e9:28:a4:4b:1b:8d:56:7b:17:c2:
91:76:bc:80:bc:a9:f8:e0:c4:b1:40:00:b7:d5:ca:cf:05:be:
c7:d1:e2:97:61:19:e2:2f:8b:8c:30:b9:17:cb:2a:42:43:4e:
5f:d0:02:3c:31:df:40:b4:d0:24:76:fb:56:48:a4:02:3d:cf:
46:a5:e1:e8:25:0d:fc:d8:a7:6f:4d:f8:65:12:63:00:e6:cf:
05:ac:94:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:35 2023 by rpki-client on console-fra.rpki-client.org