Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/71BP0NjhTCRtLz777EmwXVTl0VM.roa
File: 71BP0NjhTCRtLz777EmwXVTl0VM.roa (raw, json)
Hash identifier: 90JFsbd55Gm7ED2BmtKDBxOt4JfrtomXYnXNlyqh7+4=
Subject key identifier: EF:50:4F:D0:D8:E1:4C:24:6D:2F:3E:FB:EC:49:B0:5D:54:E5:D1:53
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 44FA
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/71BP0NjhTCRtLz777EmwXVTl0VM.roa
Signing time: Sun 20 Mar 2022 00:30:19 +0000
ROA not before: Sun 20 Mar 2022 00:30:19 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17658 (0x44fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 20 00:30:19 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=EF504FD0D8E14C246D2F3EFBEC49B05D54E5D153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:14:93:2c:6f:87:d6:ae:d8:5d:5f:7e:8f:22:
79:81:b3:90:c2:ae:22:6f:09:3a:54:a3:b3:56:1a:
17:67:97:3d:42:e5:3a:92:b0:6d:1e:9f:69:57:df:
f3:b8:45:96:58:0f:12:40:54:c4:83:bc:cc:4c:d6:
77:03:ab:89:45:7d:a3:f4:29:d5:91:bb:ec:d6:c8:
1d:2e:8d:90:6b:dd:3f:2a:55:cb:03:87:c0:d7:20:
b9:79:89:cb:1a:a5:22:e3:87:6c:d4:27:3f:4d:3c:
4d:b2:79:d9:5c:e9:30:a7:c2:01:7c:45:a9:7b:68:
ca:a9:45:c5:ac:7e:a6:58:c0:71:8e:b9:6a:b3:22:
fc:1c:a4:4f:26:94:5e:85:34:80:32:53:54:9c:f2:
8f:1a:7d:ec:57:36:05:31:90:5b:75:c3:65:09:ba:
50:7a:5e:da:23:53:b0:1f:a0:be:1f:18:34:d0:35:
28:00:15:3d:0c:3f:bd:4e:45:55:e7:51:ae:7e:e9:
53:3b:27:38:d8:e5:b7:79:95:3e:89:a4:39:b1:82:
c3:62:85:c3:3b:3a:8f:4a:f7:a0:28:c5:59:45:ec:
cb:fd:4c:30:d0:38:19:9c:9a:1f:1e:3b:d9:55:c4:
80:c7:5d:09:ca:fd:0f:d2:6a:07:95:ed:d1:cd:75:
7c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:50:4F:D0:D8:E1:4C:24:6D:2F:3E:FB:EC:49:B0:5D:54:E5:D1:53
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/71BP0NjhTCRtLz777EmwXVTl0VM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:7a:88:85:cf:41:8f:c8:5f:0a:71:d7:db:37:5d:23:5c:ae:
a5:d3:2a:ff:d2:0d:d8:93:24:e6:7f:35:ce:e3:8e:a2:a4:10:
0e:d7:ae:3a:2f:48:6c:c2:19:f6:d1:08:d3:13:7a:1a:39:85:
5e:1c:08:ab:1b:35:87:32:3a:c6:a2:86:17:3d:57:6f:93:17:
4c:80:66:b6:90:60:1b:d7:2b:da:80:8a:f5:14:6c:55:ea:d3:
69:a4:92:2f:3a:47:e9:da:c9:da:85:b4:39:79:84:33:5f:0e:
f2:e0:ca:5a:16:b6:40:26:2a:c8:15:59:09:be:aa:bf:04:2b:
76:e3:8b:20:6e:00:eb:29:e5:6c:00:32:cf:c2:e4:81:58:d0:
6f:43:44:a8:81:49:e9:9b:97:8b:0e:ae:73:8c:ea:93:43:bb:
cc:6f:c9:f2:96:ec:8e:1b:c7:59:9c:93:ae:f9:28:4c:50:49:
31:d4:8d:07:d4:bf:46:5b:0e:06:6f:54:31:5a:a9:a8:6e:3f:
d0:39:32:36:25:fd:bc:3c:01:e8:c1:1c:16:af:a4:01:3b:f4:
3c:33:48:bd:74:64:fc:8f:6b:f0:03:29:de:a2:b8:5d:3c:a2:
05:89:ce:84:ee:31:9b:f6:23:ad:4d:02:cf:ec:90:50:e4:ec:
fb:2c:02:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:35 2023 by rpki-client on console-fra.rpki-client.org