Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/m3mG5vZsgiWgnfx7c1hEEZ5wH5k.roa
File: m3mG5vZsgiWgnfx7c1hEEZ5wH5k.roa (raw, json)
Hash identifier: jzkAf7FEgFj3pid6drpYCiDdPeQhL9NQW0b5wrwEe7w=
Subject key identifier: 9B:79:86:E6:F6:6C:82:25:A0:9D:FC:7B:73:58:44:11:9E:70:1F:99
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 44E9
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/m3mG5vZsgiWgnfx7c1hEEZ5wH5k.roa
Signing time: Sat 19 Mar 2022 00:30:06 +0000
ROA not before: Sat 19 Mar 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17641 (0x44e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 19 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=9B7986E6F66C8225A09DFC7B735844119E701F99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:1b:17:0e:35:b4:8c:51:00:3e:69:a6:7b:b4:
8b:37:fd:9e:88:01:72:53:d4:88:84:c9:b9:85:3c:
0b:f3:b0:98:54:61:39:95:91:67:f3:d0:58:d8:4d:
36:88:a6:97:9b:d6:11:cc:8a:ee:cd:3d:a0:25:6e:
a9:d9:d2:d5:bc:ff:bc:1b:9f:9b:58:6e:30:c0:44:
0f:1b:8c:59:b4:6c:96:2a:d7:4c:c0:80:d0:3a:62:
cc:bf:d4:69:45:cb:35:b0:2c:b8:50:de:4f:d4:51:
f3:ef:6a:d3:c2:ed:2b:ab:8a:7b:27:cb:0b:e4:19:
c4:1e:6b:82:a4:ca:19:dc:cd:85:a4:89:ac:b2:e9:
39:ae:4b:fb:0c:cd:4b:6e:da:06:f1:1b:1e:c6:86:
e9:87:cd:b0:8f:d5:21:8d:54:72:e5:b9:04:e3:24:
04:81:d4:8b:fa:0d:0e:e4:06:47:69:9c:71:89:0e:
e0:b2:35:cb:59:47:2c:d1:82:d8:b6:28:fd:90:6a:
10:54:b9:5a:1e:fe:25:38:59:c0:6d:11:47:87:eb:
b5:4f:d6:82:ba:2c:cf:cf:d3:95:b5:53:74:0e:16:
eb:9e:87:48:b4:6f:e9:c4:66:18:eb:b3:56:6f:19:
af:e2:ef:1a:8c:df:b5:ff:7b:09:f3:fe:32:bb:cb:
b3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:79:86:E6:F6:6C:82:25:A0:9D:FC:7B:73:58:44:11:9E:70:1F:99
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/m3mG5vZsgiWgnfx7c1hEEZ5wH5k.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
72:86:fa:57:55:d4:14:45:94:76:c8:eb:24:92:78:33:f1:f3:
59:93:4c:b8:d6:77:21:4a:d7:cb:b7:dc:4d:48:eb:ea:2e:5c:
f1:f7:6e:74:7d:b8:ab:ee:49:6c:da:cc:db:4f:30:6b:64:34:
26:f8:fb:aa:73:82:80:36:ce:47:be:d9:cc:ae:b7:e2:33:eb:
22:55:d6:25:27:b9:dd:9a:a2:3e:bb:2d:ec:7f:7a:f6:bd:16:
ac:ab:c2:cb:66:33:42:db:a6:71:9c:6d:93:b8:cc:8c:67:e7:
87:de:ee:5f:ec:a1:34:98:8e:b6:42:4a:06:d7:b3:bb:69:33:
d1:ca:84:43:35:50:23:c9:48:80:16:7a:7b:9e:d1:68:d5:ef:
ea:86:72:5d:95:2f:85:ad:c6:b7:a2:88:60:5c:a6:ad:e8:d9:
af:21:0a:5d:7e:77:68:2b:cd:5c:db:c8:b8:fc:32:07:6b:07:
8b:44:c6:49:1f:88:be:c2:ce:58:ee:3c:b2:96:ef:14:e0:6d:
04:f0:23:be:20:67:69:b8:c8:e9:11:e9:e5:69:56:5a:87:11:
b5:91:2c:a3:ea:a2:42:50:60:f0:fb:70:b6:41:c3:0d:cf:c7:
4f:50:30:80:06:d4:56:43:90:b6:89:11:fd:19:ea:be:4c:ee:
9f:f5:5f:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:37 2023 by rpki-client on console-fra.rpki-client.org