Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/1jdUu9COW45tcHm3mEuFlbTmuk0.roa
File: 1jdUu9COW45tcHm3mEuFlbTmuk0.roa (raw, json)
Hash identifier: tASqfZRNuotMi/PkWKcgnJhCKtvXxWe/dd0qKBuPu2k=
Subject key identifier: D6:37:54:BB:D0:8E:5B:8E:6D:70:79:B7:98:4B:85:95:B4:E6:BA:4D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 465A
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/1jdUu9COW45tcHm3mEuFlbTmuk0.roa
Signing time: Thu 14 Apr 2022 00:30:11 +0000
ROA not before: Thu 14 Apr 2022 00:30:11 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18010 (0x465a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 14 00:30:11 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=D63754BBD08E5B8E6D7079B7984B8595B4E6BA4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2c:4b:a2:5b:2d:dc:1d:ce:64:7e:13:06:ca:
b6:70:58:28:2e:e0:06:3d:e0:53:38:e7:8e:bf:1a:
d8:6e:c0:76:d6:86:13:b5:82:a8:3f:57:32:36:be:
18:ed:ce:7f:0b:5d:6b:83:6f:86:5f:df:ea:a2:3e:
1c:d2:d6:2d:f4:71:a5:cf:d1:9c:45:82:2f:94:0a:
b2:b5:49:d7:bc:76:e6:fa:65:fe:ce:e8:01:68:0f:
13:b2:bc:63:ae:80:4d:e8:8d:64:1f:ca:2f:82:4c:
15:f1:42:31:40:90:0a:78:cd:38:f1:00:c1:d8:bc:
a6:53:37:32:57:30:cb:8a:4e:ad:c8:30:29:9a:b7:
4d:e0:0f:19:a5:75:45:dc:28:6f:15:fb:30:60:a2:
e1:d4:a6:64:e8:3a:1e:38:e0:e3:d9:7b:fc:5b:94:
f6:18:c4:7e:51:5e:a4:dd:99:4d:a9:3c:de:ea:8c:
84:bc:88:01:f6:a6:72:59:96:20:ec:47:45:c7:53:
93:ef:b3:76:94:a4:03:b1:78:af:c1:7a:3a:0b:85:
3f:48:8e:1e:e3:6e:2b:bb:62:f1:29:cd:1d:60:75:
54:80:7a:51:5a:cc:6a:bd:26:cb:58:fd:8e:a5:8a:
45:7d:e6:d9:34:8d:50:3e:64:27:0c:a7:11:f5:11:
ec:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:37:54:BB:D0:8E:5B:8E:6D:70:79:B7:98:4B:85:95:B4:E6:BA:4D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/1jdUu9COW45tcHm3mEuFlbTmuk0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:dc:ce:4f:15:ec:b8:bc:d4:d2:84:32:62:db:f3:d4:d2:fd:
b1:6d:d4:cf:90:ab:cb:1c:12:aa:4c:5f:b4:7a:70:4a:0a:bf:
e0:e2:b1:14:ee:3e:24:65:5b:15:83:79:19:95:3e:76:f2:09:
10:23:0c:b1:f0:31:64:5f:a2:1a:60:b1:7d:25:f8:46:1c:a9:
af:ef:e5:ca:f0:15:81:4b:63:36:86:43:ab:26:57:34:6c:6e:
d4:d4:f7:ca:60:8e:9c:01:cd:79:12:1c:89:89:50:cd:89:83:
13:41:28:40:49:f6:82:0c:61:4e:b7:14:e0:54:82:2d:f4:b6:
85:9e:c3:aa:52:17:c4:6f:f9:5b:10:ec:9b:92:0e:d2:d8:a1:
ae:34:82:ac:b2:e0:87:64:b4:1e:1a:50:e0:22:b6:0a:56:b0:
05:65:f9:2e:bc:6f:7f:8c:43:41:be:65:4d:e2:8e:f6:a7:67:
f3:be:fc:d7:b4:e6:45:09:02:eb:ec:f7:8d:0b:b4:23:42:ee:
65:96:7d:c9:a9:49:0d:e8:4d:56:75:15:c2:08:96:25:30:c3:
a3:ea:07:5f:b0:d3:45:70:10:f5:62:db:21:75:82:65:d2:33:
5b:f7:8c:4e:70:8f:7e:57:fe:6d:2f:56:a9:73:2e:77:e7:2d:
3d:c3:c8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org