Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/yNB5ox1St6oEA82SWAlNUn8FafE.roa
File: yNB5ox1St6oEA82SWAlNUn8FafE.roa (raw, json)
Hash identifier: mMxW1d4aBWmM54vsS7zZh6wcWdZ/Me/5BE1Jbpa64u4=
Subject key identifier: C8:D0:79:A3:1D:52:B7:AA:04:03:CD:92:58:09:4D:52:7F:05:69:F1
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 495F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/yNB5ox1St6oEA82SWAlNUn8FafE.roa
Signing time: Sun 05 Jun 2022 00:30:07 +0000
ROA not before: Sun 05 Jun 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18783 (0x495f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 5 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=C8D079A31D52B7AA0403CD9258094D527F0569F1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c8:f4:59:56:fa:41:b3:e0:a4:79:b5:a9:19:
f9:0f:da:b7:26:a8:b1:fe:cd:91:8b:9a:16:df:75:
33:4c:72:23:4d:c8:fd:30:80:e0:8a:bc:23:5b:87:
77:54:30:b2:8f:29:a3:72:a3:60:b8:c4:e0:4a:1d:
e8:a9:dc:d7:73:2c:9b:ef:a6:03:8f:af:19:e2:1e:
8e:05:d3:9d:23:cb:30:09:37:9b:c2:b5:45:38:73:
77:27:f6:94:59:d7:5d:9d:d6:01:4e:fb:c2:20:d1:
ff:d1:5c:54:b1:65:47:b3:71:6c:96:ba:b9:3d:0c:
c2:9a:b1:6f:bc:c1:c2:d4:94:ea:eb:64:83:d8:4d:
62:9d:b4:8b:5b:8b:3b:79:93:6f:f6:3f:a9:7a:bb:
25:ac:06:93:55:0d:54:67:e8:49:a0:16:40:00:86:
dc:4b:01:2d:55:9b:12:e0:bb:bf:63:28:a7:75:49:
33:73:f6:22:52:23:6c:b0:0a:4d:b3:eb:4a:08:48:
4c:cb:57:29:bb:37:72:23:f7:94:db:4a:db:c6:aa:
3b:90:4d:d4:55:8a:2a:ab:a0:2f:70:bc:c7:f5:0b:
e0:d2:40:50:ad:bb:e6:7e:f1:bd:27:6c:5f:a7:cf:
02:63:bb:07:57:f1:23:88:a8:7f:45:23:5d:03:3a:
fc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:D0:79:A3:1D:52:B7:AA:04:03:CD:92:58:09:4D:52:7F:05:69:F1
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/yNB5ox1St6oEA82SWAlNUn8FafE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3a:f3:de:6c:e6:e6:e6:9e:ec:42:20:a1:86:9d:c3:46:82:
0a:6f:a9:40:79:ed:b4:e4:3c:e0:2f:6b:d1:3d:03:ed:4b:9c:
7a:6f:07:ad:ec:0d:5c:3c:a5:56:b4:2d:4a:6f:50:fe:b6:5b:
72:82:a7:8d:8a:a3:e5:62:3c:58:b0:07:01:f4:df:ca:21:1a:
ea:27:3b:e9:51:e3:45:99:3b:48:3b:32:bb:91:56:eb:a4:92:
75:b9:3f:9d:5c:64:6f:fb:b9:77:a2:68:64:48:f7:d9:78:1e:
32:69:31:27:ca:e4:6d:a9:69:4d:a7:fe:43:0c:bf:d9:42:e0:
08:29:78:30:04:db:e2:c9:39:d7:5e:ca:66:4c:e8:39:27:fa:
26:a8:9d:22:1e:c5:ba:ae:e2:e2:22:60:e4:01:1a:37:65:1d:
58:24:4c:3d:8e:ff:54:ab:ae:59:32:43:5c:59:ed:d4:42:ab:
bb:21:19:57:79:dc:8b:49:9d:f4:93:f8:99:7a:27:a4:3c:f2:
43:ab:a3:d4:dd:1f:8b:aa:1a:e7:aa:24:4b:15:9d:a6:f4:eb:
6f:84:d9:b3:fa:2f:6c:d2:e4:58:4b:7f:ce:55:18:3b:3e:4d:
09:0a:9f:0f:c7:3c:20:4f:0d:df:75:04:a5:f5:e3:c6:2f:2d:
85:95:1e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:37 2023 by rpki-client on console-fra.rpki-client.org