Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/2m16lSdCVAgiyqhYvKO_MLRKliI.roa
File: 2m16lSdCVAgiyqhYvKO_MLRKliI.roa (raw, json)
Hash identifier: 0ZEYpjNHrHXRpfmlylOrYTUHPQ2q85hI2u7GlILFwO0=
Subject key identifier: DA:6D:7A:95:27:42:54:08:22:CA:A8:58:BC:A3:BF:30:B4:4A:96:22
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4772
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2m16lSdCVAgiyqhYvKO_MLRKliI.roa
Signing time: Wed 04 May 2022 00:30:12 +0000
ROA not before: Wed 04 May 2022 00:30:12 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18290 (0x4772)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 4 00:30:12 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=DA6D7A952742540822CAA858BCA3BF30B44A9622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:4e:a7:34:84:25:7f:9b:90:2b:b0:f4:6d:e2:
22:e0:cb:0a:a8:03:9a:95:c8:06:ee:79:5d:60:26:
bf:b6:38:1f:fe:fd:14:32:7a:dd:4c:c7:b2:25:38:
e2:f3:90:40:f5:4a:78:fc:8d:8f:6a:95:85:01:09:
ad:eb:01:9d:cc:65:ca:17:bc:60:6b:fb:b6:0e:c6:
2c:ba:74:c0:c6:41:d7:a4:8c:65:6f:64:b0:69:9b:
09:30:42:94:34:3b:a8:ae:0d:08:00:de:f2:8d:95:
18:ad:e6:40:71:17:da:00:69:b7:26:1c:c9:b1:d2:
b8:e4:cb:8b:37:a4:f3:35:80:56:ab:7f:1f:5f:22:
8f:6f:a2:05:61:8c:fd:a1:08:1a:7f:c2:48:fa:e3:
1f:b1:db:14:70:ee:6e:0d:98:85:e9:e4:fd:aa:f3:
17:8c:9c:44:58:2d:70:6b:0a:38:97:65:f6:38:09:
87:1d:46:86:57:06:08:f5:0f:bc:6c:89:a5:4f:f7:
59:e6:28:65:6f:84:a3:1a:38:96:3c:de:de:70:ae:
91:6e:2a:af:12:ac:5f:bb:b6:f3:f7:bf:b3:50:d2:
8f:41:db:0d:69:e1:21:83:d5:d9:ba:63:4a:bb:9b:
fe:c8:cf:fc:54:53:29:6b:3c:2f:49:05:d0:3d:dc:
a6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:6D:7A:95:27:42:54:08:22:CA:A8:58:BC:A3:BF:30:B4:4A:96:22
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2m16lSdCVAgiyqhYvKO_MLRKliI.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:c5:41:2a:eb:8d:ac:a5:18:e1:07:94:b2:ea:e0:47:dc:ce:
06:fb:72:1c:f3:c6:11:62:06:d8:6e:82:5d:b7:17:d1:1d:a5:
e8:98:0f:c2:8e:cd:98:39:2b:9d:a5:9e:72:c6:a7:89:77:19:
06:c0:26:df:47:21:28:58:8d:b5:f2:2d:ba:33:42:b9:d8:61:
b4:b1:dc:9c:b7:9d:da:19:a5:81:4b:fe:46:e1:bf:35:2f:00:
62:0d:ca:a2:d7:29:53:ab:d8:c8:48:4d:38:ad:26:00:c0:02:
33:36:25:1e:a2:8a:df:77:fc:aa:08:08:f3:73:78:5d:79:90:
72:07:a9:9b:0c:9d:f1:51:92:69:82:e8:67:c7:e2:bd:38:17:
24:36:15:e4:b0:e7:91:bf:46:66:5e:dd:b2:b5:a1:3f:cf:dd:
0a:6a:cb:64:55:e5:5a:6b:c7:72:6c:b5:4e:f6:a3:fb:4e:7b:
dc:d3:d8:41:e8:ec:79:4a:9f:8c:2d:8d:6a:8e:77:ec:32:ac:
0b:33:a3:d1:35:08:86:78:42:06:40:2d:2a:4c:d2:cf:55:8a:
ca:1c:fc:e2:f0:48:c0:f0:c9:29:e4:3f:71:9e:24:7c:db:9b:
0c:8d:32:f7:ec:64:4d:00:05:41:60:1d:7a:7f:b4:1f:86:01:
24:c1:0a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org