Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/xgYgSP39MsjO55OhOxoANAlQD6U.roa
File: xgYgSP39MsjO55OhOxoANAlQD6U.roa (raw, json)
Hash identifier: +nBL1ztVJQlbs/qXUNRR00apwXIyIlyPvEDTQ+f7r6k=
Subject key identifier: C6:06:20:48:FD:FD:32:C8:CE:E7:93:A1:3B:1A:00:34:09:50:0F:A5
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4419
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/xgYgSP39MsjO55OhOxoANAlQD6U.roa
Signing time: Fri 04 Mar 2022 00:30:06 +0000
ROA not before: Fri 04 Mar 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17433 (0x4419)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 4 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=C6062048FDFD32C8CEE793A13B1A003409500FA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a5:7a:6c:45:0d:d8:8e:9c:e1:db:4b:64:70:
5b:0a:03:1f:0e:76:59:bd:4c:5c:e1:d4:c4:40:35:
1a:13:50:89:c8:e1:c6:5a:36:ba:bd:b6:33:3c:32:
af:04:1a:72:e1:40:d7:64:12:4a:51:c2:8c:fc:32:
f8:83:77:f0:ee:b0:9c:6f:a0:41:21:86:c5:c3:c1:
bf:7d:48:cf:60:e6:cd:6f:fa:34:ee:ae:ff:a0:b3:
52:de:f1:ee:c6:3d:91:89:1a:26:f6:70:6f:79:00:
6c:e2:23:83:76:97:d3:bc:f2:32:05:d9:b3:39:64:
67:87:38:19:01:01:c1:f5:5c:00:4f:72:c5:7a:41:
ea:b8:18:af:5a:7c:1f:30:3c:e8:ae:43:aa:1e:39:
b3:fc:4c:50:a3:54:58:44:cd:6d:d9:d6:dc:02:2a:
4f:f5:fa:28:9e:e2:6b:5a:09:df:85:bf:34:f2:e3:
53:81:2d:87:79:12:d9:8d:c2:13:6a:17:91:05:da:
fc:ae:e8:39:39:a9:8e:70:32:69:0b:b3:58:e3:a0:
2b:b3:c1:6f:a8:2a:3d:97:8c:16:11:79:e3:62:0a:
81:18:18:63:61:b5:19:37:60:45:9c:06:dd:23:45:
3f:bf:c9:19:13:7c:b5:29:1e:18:0d:ff:ad:39:e9:
cf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:06:20:48:FD:FD:32:C8:CE:E7:93:A1:3B:1A:00:34:09:50:0F:A5
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/xgYgSP39MsjO55OhOxoANAlQD6U.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:cd:e4:48:ab:36:af:04:81:d2:00:e9:da:63:a0:ac:a2:33:
37:87:bd:d0:bf:47:e6:ec:c2:38:1e:a0:44:d5:b0:f1:98:fc:
cf:f9:53:41:0b:c5:42:64:95:14:a6:42:94:87:62:f1:98:10:
ea:5d:ce:ee:e1:46:63:f7:e9:11:1f:9d:5c:e0:00:b1:f0:6c:
10:53:6b:e2:c8:a7:a1:8b:29:3d:3b:da:29:dd:d9:0c:c0:05:
38:d4:4b:4e:8b:11:a1:07:74:45:b1:8c:12:31:74:01:12:59:
85:77:e9:b7:4f:72:f1:fa:8d:b3:9e:3f:52:84:0e:81:04:17:
66:4f:d9:2a:b9:56:f1:20:13:a6:06:df:8c:eb:14:08:37:71:
2b:be:d8:97:75:f1:3b:ad:73:25:8b:5a:fe:0c:24:72:cc:fb:
ea:f6:43:f0:6e:24:f3:53:95:90:f0:de:32:db:3e:ac:fa:f5:
c5:ef:76:35:d7:83:79:49:88:84:e3:10:8b:b2:5a:67:7f:e9:
43:88:7e:50:49:0a:75:6e:81:a9:a5:9d:87:38:89:cc:af:2f:
32:ed:b8:62:20:a9:47:ca:b9:a6:cc:36:75:92:c5:f8:48:0a:
36:e7:19:ac:58:76:3b:04:8e:b0:1c:5a:de:8b:77:a9:fc:cb:
e1:cf:bf:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:37 2023 by rpki-client on console-fra.rpki-client.org