Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/leC2xUz-zFvTpafzYwmDURwFXFA.roa
File: leC2xUz-zFvTpafzYwmDURwFXFA.roa (raw, json)
Hash identifier: qGkPw0XNoXs2fqVbbYktDA4MZgRy7B5E0s1is58fxSI=
Subject key identifier: 95:E0:B6:C5:4C:FE:CC:5B:D3:A5:A7:F3:63:09:83:51:1C:05:5C:50
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4845
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/leC2xUz-zFvTpafzYwmDURwFXFA.roa
Signing time: Thu 19 May 2022 00:30:08 +0000
ROA not before: Thu 19 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18501 (0x4845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 19 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=95E0B6C54CFECC5BD3A5A7F3630983511C055C50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:7c:0f:28:9a:7e:8a:1f:0f:60:ae:59:f6:a7:
bb:2f:1c:06:c3:90:a4:d9:f4:4f:b3:43:56:77:30:
7a:64:68:37:ca:46:7c:be:a7:34:4e:98:6d:41:e0:
ae:0f:e7:e3:5b:cb:e5:58:a4:a7:f5:3c:9d:30:71:
2d:2f:c1:68:01:5b:0e:bf:88:d9:ac:a3:13:40:8d:
86:7c:19:8f:38:cd:e2:79:64:cc:4d:d9:c2:85:54:
da:05:37:66:11:fd:5f:d2:f7:01:f8:bb:4d:ab:66:
14:14:3b:4b:a2:b5:66:58:d7:54:2d:20:d4:71:26:
e1:f7:f4:7f:09:0f:0c:06:a0:2b:96:6c:be:ed:94:
2a:4b:76:2a:20:da:d3:60:b9:28:a9:4e:f5:ab:18:
9a:4c:ad:a3:99:c3:c3:2f:44:d8:3a:55:9f:d1:cb:
55:35:e4:dc:96:b7:75:71:1d:ed:c0:cd:61:74:b7:
7c:10:07:20:cb:81:15:0a:90:fa:bd:7d:a5:4c:06:
fc:59:31:09:6e:a9:5a:ff:2f:8b:4a:01:71:58:69:
61:c7:53:df:12:00:d8:f9:14:1a:7f:67:ea:5e:c6:
fe:cd:e7:27:55:46:d4:82:2b:20:d5:75:c4:87:67:
ec:c5:05:59:d9:c8:0b:58:46:72:c2:af:e6:dd:3d:
66:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:E0:B6:C5:4C:FE:CC:5B:D3:A5:A7:F3:63:09:83:51:1C:05:5C:50
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/leC2xUz-zFvTpafzYwmDURwFXFA.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
43:61:54:87:e4:80:ef:f4:78:b5:89:5b:ab:92:63:6a:3c:3e:
11:7d:84:6b:1d:98:96:27:08:a6:ab:5b:46:f5:6a:ac:f4:22:
1c:b5:4a:9f:6e:91:31:7d:49:8d:b6:b7:30:06:38:6c:8d:8e:
43:7e:27:f3:42:db:13:35:12:7b:77:80:a0:77:da:1b:20:99:
87:d0:25:c0:77:5d:57:2c:8b:d2:33:c4:d2:f1:c2:6b:f9:b3:
fa:e1:5c:dc:8f:1e:27:41:3a:6e:92:65:77:f1:0d:fd:73:83:
61:8a:d7:88:92:65:39:b6:ae:a0:71:f6:4c:16:05:af:95:82:
87:78:c0:08:e5:64:8e:20:ba:90:ee:90:fe:df:bf:52:6f:23:
26:38:5e:e2:2b:5e:86:1c:49:86:85:3a:1e:9e:63:b7:9c:24:
25:d3:dd:e8:e8:3a:4f:8d:9f:ef:ed:92:25:3d:39:12:f3:21:
eb:23:bb:da:89:92:84:3f:2d:8a:52:97:5c:bb:ea:e8:b5:d0:
a0:4b:06:d2:60:90:93:68:14:75:36:a0:cf:62:a3:cd:7e:fd:
cd:ee:91:6a:07:4c:af:55:c7:49:e6:dc:ce:79:17:86:3e:81:
69:12:a9:fe:3e:6c:90:c7:ae:2c:6d:b7:fa:e2:59:b9:92:66:
4b:24:6f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org