Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/f15N70efKjSB6z68UVc5QclfroI.roa
File: f15N70efKjSB6z68UVc5QclfroI.roa (raw, json)
Hash identifier: NvAPivg5XkP+hbTjpSVVKS9Vh9tBQa2P/0vf78ZYG1c=
Subject key identifier: 7F:5E:4D:EF:47:9F:2A:34:81:EB:3E:BC:51:57:39:41:C9:5F:AE:82
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 428F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/f15N70efKjSB6z68UVc5QclfroI.roa
Signing time: Thu 03 Feb 2022 00:30:09 +0000
ROA not before: Thu 03 Feb 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17039 (0x428f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 3 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=7F5E4DEF479F2A3481EB3EBC51573941C95FAE82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:13:45:bd:df:0c:a1:52:a5:a0:bd:cf:b5:d4:
ca:e9:92:20:f1:39:94:b3:50:96:fe:1b:43:d1:67:
de:68:d9:2a:89:a2:fc:3b:81:56:3b:2e:2c:23:88:
d6:1e:af:dc:88:4c:19:54:68:a8:3e:58:aa:69:48:
ec:ca:9c:f7:fb:bb:6d:ef:39:43:df:ff:a2:db:30:
6d:13:4c:6d:c1:f3:ae:23:c7:ae:3a:37:ac:ea:c5:
54:22:0f:42:91:f5:8c:05:1f:73:5a:08:89:6b:54:
a2:c3:ae:66:44:e7:c9:ed:d6:77:f5:d2:d9:bd:ad:
f3:dd:c2:6b:65:be:22:8f:ef:eb:6d:c2:2f:c3:0e:
20:22:7e:85:d0:e0:41:98:67:6d:33:f6:94:95:eb:
75:c8:b6:ef:eb:04:a5:f0:9f:03:be:37:0b:d1:01:
c5:73:c1:77:f6:98:f1:a0:b4:3e:06:de:67:04:c2:
5a:8f:1e:aa:b4:59:28:37:7a:86:79:7c:51:a9:6f:
63:33:b6:16:61:f2:0f:e3:08:a9:e0:4f:d7:ea:5a:
eb:9a:7a:77:6e:fe:cd:26:77:35:5e:88:ff:ce:8b:
14:3f:c4:f3:d5:1d:3f:77:30:5b:9b:dd:ac:26:4c:
fe:59:65:8a:d9:53:73:00:59:c1:d5:89:94:e9:15:
1b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:5E:4D:EF:47:9F:2A:34:81:EB:3E:BC:51:57:39:41:C9:5F:AE:82
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/f15N70efKjSB6z68UVc5QclfroI.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
af:a6:c0:15:17:7f:21:ae:66:a8:eb:9c:48:b0:3a:3f:65:cd:
7d:66:8e:4f:f2:a8:09:5b:7c:92:e6:f8:67:3e:51:04:46:cf:
62:ff:bf:fb:10:8c:2b:47:98:b1:9c:9a:04:7c:c7:d0:6e:47:
e2:3b:38:3d:cd:29:d2:4c:96:18:d9:72:57:d2:1c:05:5d:68:
33:86:b2:f5:2a:a6:53:dd:43:d0:54:3f:39:24:6e:2e:71:bc:
74:93:6e:97:8f:11:41:26:dd:85:d1:41:a8:66:cc:ba:c3:95:
81:b1:83:bc:39:8d:ea:4b:dc:ec:97:1d:79:fe:a9:39:ae:19:
cf:fb:ec:56:8e:e8:70:54:fe:19:d3:8b:88:d5:7c:78:18:45:
7a:9e:37:61:56:84:cc:51:fa:db:49:59:68:d8:2d:d5:45:26:
ab:ce:43:15:e2:3e:41:e8:d7:52:db:d4:46:22:0b:88:df:42:
68:8a:18:b9:2e:4a:6e:b4:9e:78:b4:5d:90:5a:6f:6d:fb:86:
26:58:c4:59:66:30:64:44:c3:d5:c5:bc:06:cf:ef:5c:c3:b3:
e0:5b:36:71:d8:80:5a:3c:c9:67:6f:62:0a:22:80:b4:3a:c6:
c5:70:02:40:b8:74:4c:da:ef:f8:47:ff:88:4c:e1:95:fc:83:
3e:d6:b9:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:37 2023 by rpki-client on console-fra.rpki-client.org