Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/HLB5yQJNGA63Wl0jWIcgf-JcYTs.roa
File: HLB5yQJNGA63Wl0jWIcgf-JcYTs.roa (raw, json)
Hash identifier: f5gDTMEz+FBSKCdNTKCDjJxNqnAczTqA25tB3WpIKC4=
Subject key identifier: 1C:B0:79:C9:02:4D:18:0E:B7:5A:5D:23:58:87:20:7F:E2:5C:61:3B
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 45A4
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/HLB5yQJNGA63Wl0jWIcgf-JcYTs.roa
Signing time: Fri 01 Apr 2022 00:30:07 +0000
ROA not before: Fri 01 Apr 2022 00:30:07 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17828 (0x45a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 1 00:30:07 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=1CB079C9024D180EB75A5D235887207FE25C613B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:fc:6d:70:60:5a:1f:07:3d:ad:fd:9b:2a:88:
71:26:d5:36:04:a2:2b:5c:94:b3:4b:14:0d:ce:5b:
41:5e:38:9e:50:a4:ea:28:b9:82:37:6c:8a:42:02:
46:0e:8b:6c:90:b8:bf:5c:28:dd:e9:3c:84:c4:43:
66:1c:c9:ed:4a:89:a8:7c:bc:12:5d:e6:25:bc:d9:
13:37:d5:56:ca:8f:dc:af:02:ee:e4:56:9f:69:f1:
4c:64:21:00:6c:42:4a:ae:ca:36:6c:45:92:50:a5:
6d:26:62:19:06:72:49:f1:56:a4:48:49:0a:ed:58:
a9:b1:fb:d2:46:72:7a:95:6b:6c:b4:ab:a9:26:1e:
f5:37:d4:2c:12:07:19:10:f6:25:7e:d0:e2:a6:91:
fb:93:a1:d6:85:92:84:24:52:e4:40:21:62:90:e7:
9a:54:2e:e9:83:b1:3b:c5:6b:a0:cc:d6:49:eb:40:
6f:5b:8c:8b:25:d3:9d:72:15:45:a4:b3:01:7a:e6:
58:08:59:17:60:ec:db:dd:bb:0b:4b:61:62:28:d8:
c7:fa:85:60:18:3f:f3:f3:60:6b:65:b1:a4:45:6e:
8a:47:77:77:4f:95:81:01:7e:45:68:bf:41:fa:8e:
02:1d:bf:81:25:eb:b7:4d:e1:b4:2e:f8:ba:a0:ba:
f7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B0:79:C9:02:4D:18:0E:B7:5A:5D:23:58:87:20:7F:E2:5C:61:3B
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/HLB5yQJNGA63Wl0jWIcgf-JcYTs.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:3f:0b:39:ad:b2:ce:b2:37:10:43:0a:e8:b6:a3:f5:17:86:
d4:37:0e:78:9e:50:7c:82:60:9d:fc:0d:49:e7:44:55:bb:21:
f4:27:2f:b6:6a:a0:22:86:71:28:fe:9d:c0:72:d9:7b:89:b3:
ff:26:b6:b8:8f:09:49:d4:1a:e3:14:33:b0:22:17:f6:4b:13:
87:c0:64:a7:88:3e:6e:47:7f:50:5c:1d:09:e5:2d:26:06:4b:
cf:b7:e4:90:99:5f:75:00:70:73:bc:8b:f3:91:13:ff:51:c7:
bb:2e:f1:35:3a:df:68:d6:0c:16:dc:22:3f:24:f9:ee:cc:36:
cb:9f:6f:5a:0e:21:eb:d3:b1:e6:c5:de:80:fa:13:11:54:d1:
c2:c4:e8:b4:f9:99:0b:c4:52:b0:0b:b8:de:c0:f4:4e:04:f9:
bd:35:b2:d7:ed:55:12:93:24:bb:56:eb:1f:2a:72:93:f1:cc:
d4:c0:b4:4d:a9:26:fd:6c:32:de:f3:bc:3f:43:1d:52:f8:88:
59:a9:3c:cd:72:1e:85:62:bf:b9:35:84:a3:c4:21:89:19:6b:
05:94:6e:78:14:e4:39:94:87:2c:ff:a1:a1:4e:1d:8e:76:d2:
ca:01:27:16:5e:fb:32:76:f6:17:cb:88:ce:7a:ae:a2:0e:e1:
6d:4c:3d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:36 2023 by rpki-client on console-fra.rpki-client.org