Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/1_nlG5BsKK-m2bYL5Teaf8HED24.roa
File: 1_nlG5BsKK-m2bYL5Teaf8HED24.roa (raw, json)
Hash identifier: ZNZD1lsM+IAHTvHZHrHgdwPb82i7ScsO+oWzX0RZVJM=
Subject key identifier: D7:F9:E5:1B:90:6C:28:AF:A6:D9:B6:0B:E5:37:9A:7F:C1:C4:0F:6E
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 487B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/1_nlG5BsKK-m2bYL5Teaf8HED24.roa
Signing time: Mon 23 May 2022 00:30:06 +0000
ROA not before: Mon 23 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18555 (0x487b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 23 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=D7F9E51B906C28AFA6D9B60BE5379A7FC1C40F6E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b3:ff:c1:16:57:f0:cd:a2:f4:14:6a:88:a9:
1a:7c:f0:cd:a1:ac:c7:96:2d:40:6e:77:b8:3a:40:
8d:ee:ed:63:28:69:83:d9:ab:3e:0a:db:69:98:65:
7b:9a:48:47:5a:a9:1f:23:80:90:c1:d8:92:1e:27:
0d:41:a9:e3:ce:83:03:3d:9f:b7:b8:3f:1a:66:7c:
72:0a:ce:f2:3e:6b:e4:21:ba:28:34:00:74:79:75:
d7:92:dd:a3:3a:0d:c3:16:96:06:fd:bc:b3:da:14:
88:01:67:6d:22:3d:86:e0:60:88:d1:03:c9:33:40:
1c:c0:cf:e2:fd:37:5e:6c:10:be:82:4a:f8:da:2a:
cc:0c:3d:20:9d:d5:24:48:54:49:db:9f:12:cd:38:
e1:7f:da:7c:1b:be:4f:d9:3a:47:9c:68:7d:6e:16:
57:46:4b:e7:f2:73:24:41:33:a5:6b:65:39:da:71:
0b:23:e5:35:3b:56:c0:69:39:22:52:b7:e1:ff:ba:
bb:a6:91:65:2c:75:c3:20:c2:80:49:cc:aa:fd:70:
b6:ab:76:de:d3:4e:b1:bc:a2:cd:1b:02:17:94:2e:
f6:5b:a7:1a:db:a2:c2:ee:19:bf:45:c2:37:e9:c0:
af:18:99:90:68:e2:4c:2c:e3:2e:73:19:1c:1b:d5:
29:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F9:E5:1B:90:6C:28:AF:A6:D9:B6:0B:E5:37:9A:7F:C1:C4:0F:6E
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/1_nlG5BsKK-m2bYL5Teaf8HED24.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:19:17:13:ee:c4:35:0f:71:27:f3:c4:1c:34:26:94:e5:08:
2f:5a:86:cf:ac:db:a9:0a:e7:18:61:7b:92:2b:8e:4a:4c:d3:
57:72:0d:59:b2:47:7e:3f:d5:18:89:17:d8:0b:0a:07:fc:2c:
df:de:bf:f6:5f:2b:dd:8f:8b:40:0c:23:8c:70:66:02:51:0e:
91:45:90:4c:db:66:f7:4e:a4:9f:fc:98:b3:9f:16:3b:fe:0a:
36:92:58:2c:92:30:1f:72:c8:c4:58:11:75:c2:f7:eb:2c:60:
ee:99:6a:17:80:88:72:f6:8b:11:54:06:5e:af:e4:18:03:e8:
19:8d:77:91:fe:5d:d9:3d:8a:99:9f:c1:35:f5:52:82:84:b5:
d8:d4:0a:5b:52:5f:24:dc:ec:f3:ed:cb:32:48:71:89:f8:81:
a1:01:d5:4a:19:34:89:0c:fb:3b:99:5d:8b:b0:6a:8c:d0:19:
ca:c6:63:0b:71:7d:b2:dd:8d:07:84:d1:95:ec:e3:59:06:3c:
36:29:ce:5d:6c:2b:75:98:75:f9:9e:ae:cb:59:83:51:e5:6d:
b1:13:66:ca:63:f1:ce:ed:5a:12:32:78:e0:60:11:73:67:3a:
3f:8a:5d:77:a5:9f:44:f2:66:73:70:fc:78:92:b7:47:4e:49:
1c:16:8d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org