Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/EXHo45KKmuR5enpoAblfZbrNN30.roa
File: EXHo45KKmuR5enpoAblfZbrNN30.roa (raw, json)
Hash identifier: +zyhvWenH0Dk2e/mUyKxvTl6sDlHFzS/0aTUbh6VHC0=
Subject key identifier: 11:71:E8:E3:92:8A:9A:E4:79:7A:7A:68:01:B9:5F:65:BA:CD:37:7D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 42EB
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/EXHo45KKmuR5enpoAblfZbrNN30.roa
Signing time: Thu 10 Feb 2022 00:30:07 +0000
ROA not before: Thu 10 Feb 2022 00:30:07 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17131 (0x42eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 10 00:30:07 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=1171E8E3928A9AE4797A7A6801B95F65BACD377D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:b2:8d:30:f0:2b:c6:f0:a7:dd:26:43:3b:b1:
80:be:ea:86:ca:11:d5:68:90:38:aa:e8:07:41:d6:
b9:56:86:96:1e:3a:75:e1:cf:d5:96:b8:f1:55:36:
80:61:7f:ae:8e:40:1f:0d:95:44:c4:30:ad:af:a7:
38:ac:23:08:59:18:ba:2f:5a:7b:b8:46:d6:3d:9e:
47:70:c5:ba:e4:02:16:ac:71:08:4a:08:20:8b:40:
22:ec:f5:d3:a6:4b:e0:11:42:90:d3:07:b8:0c:33:
3a:06:5a:0e:b5:47:7f:7d:1f:a1:1e:b3:46:84:d3:
fc:f8:f1:67:1e:c7:ce:d2:52:0f:e4:b4:07:50:f2:
c4:32:09:e5:1b:99:e1:27:42:9f:80:a9:be:94:a4:
21:fb:bd:58:cc:4e:25:b7:a5:ce:d5:16:2f:cf:ce:
a1:4e:53:0f:21:73:b1:12:0e:81:7f:5e:dc:15:ad:
cd:6e:50:90:2e:3b:f3:e5:e2:ea:33:67:fc:ec:06:
a5:ca:f0:1a:e3:d1:21:97:37:5a:ef:48:d2:0c:a0:
69:50:38:2e:1f:a9:a0:26:c0:92:38:f6:ce:5c:b5:
57:99:f4:bc:d1:4e:3d:a9:e2:41:bf:bd:b1:b6:2f:
52:7d:34:9b:52:ce:62:dc:f5:0a:c0:90:07:ff:2d:
22:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:71:E8:E3:92:8A:9A:E4:79:7A:7A:68:01:B9:5F:65:BA:CD:37:7D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/EXHo45KKmuR5enpoAblfZbrNN30.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:cb:cf:13:80:f9:10:48:66:ec:3b:fe:6b:99:29:bd:b8:e3:
94:cc:91:1b:6e:b2:c0:71:e1:d2:86:bb:f1:14:e6:2f:9b:bc:
ba:b9:bd:b4:79:ab:58:c7:69:cd:00:20:5c:c7:e9:d2:5b:48:
cc:3f:e5:1b:0e:55:f8:b6:89:e0:fe:0d:dd:a0:eb:32:59:8a:
c6:79:33:d2:b4:1a:d3:e3:a9:2b:bd:da:8b:61:60:00:45:54:
c0:4b:59:f2:5e:ea:ec:4a:6b:65:53:8e:60:71:93:6f:86:47:
4f:08:7e:eb:6f:68:44:15:c9:fb:83:18:40:72:c3:4f:97:5a:
04:5d:49:13:d6:ae:72:71:8e:ee:a5:f3:9f:f7:7f:53:2f:7c:
9e:47:32:6a:7e:13:70:22:26:78:c8:fc:a8:e8:58:18:ed:c4:
88:73:03:d5:8b:6a:ad:83:4a:eb:68:32:54:6a:50:e1:10:54:
77:d4:30:2f:05:d3:4d:63:ca:f4:f5:0b:c6:a1:01:10:5c:c3:
3d:5a:b4:7e:59:34:83:1d:ed:a4:1f:0b:4f:dd:b9:89:90:ed:
97:12:d8:ed:5f:09:5e:78:b1:9c:85:d3:a3:56:d0:a5:ea:0c:
df:d9:fc:7a:cd:1e:b5:43:a8:ad:3c:cb:8c:7e:15:89:af:01:
c5:30:55:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org