Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/2zLvHSF-llZCe9AVZoYESG-a-mM.roa
File: 2zLvHSF-llZCe9AVZoYESG-a-mM.roa (raw, json)
Hash identifier: eKqKe50//nJcFUGTxEZdibs2GGQCU93V+lZUunSBtXA=
Subject key identifier: DB:32:EF:1D:21:7E:96:56:42:7B:D0:15:66:86:04:48:6F:9A:FA:63
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4489
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2zLvHSF-llZCe9AVZoYESG-a-mM.roa
Signing time: Sat 12 Mar 2022 00:30:07 +0000
ROA not before: Sat 12 Mar 2022 00:30:07 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 45.132.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17545 (0x4489)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 12 00:30:07 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=DB32EF1D217E9656427BD015668604486F9AFA63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:a8:bd:d6:2e:77:5b:8b:d9:35:6d:46:51:30:
be:43:bc:8d:4c:51:a2:90:aa:9f:3c:d2:d4:6b:65:
0b:cc:72:53:b4:c2:b6:b4:95:2b:b1:08:50:4b:73:
f8:c9:f6:16:12:62:e3:40:ba:9b:cb:54:c5:4f:ff:
ba:83:2b:4c:b3:ba:24:40:b9:6c:8b:02:6f:34:9f:
1a:10:f8:0b:d8:09:e5:93:6a:21:c5:20:b6:81:43:
5a:06:11:97:f8:a7:88:fa:f9:cd:0e:20:f4:84:82:
49:20:6f:f9:12:ff:00:e7:bb:a6:61:e3:30:00:8a:
64:f1:d2:63:67:95:ef:0a:1f:45:58:cf:60:e8:ed:
3c:a8:9e:a7:16:60:6a:88:5d:e6:5a:10:d6:46:5c:
33:bf:47:49:04:8f:6a:59:6b:5e:90:ba:9a:93:98:
d9:1f:3f:7d:da:f0:f0:6b:f9:48:34:90:a9:e6:d1:
4c:a7:bb:9e:2b:5c:52:b5:df:d0:24:d3:88:8d:b6:
e2:05:80:8e:e9:54:f1:cf:43:3d:7a:b8:a2:8a:4a:
34:d2:77:80:42:61:04:80:12:cd:3d:e2:72:3d:88:
28:08:dd:3d:1f:c8:a1:77:e0:e1:bb:57:dc:d4:24:
2f:0a:47:15:0b:ad:8e:1c:a4:b9:d1:98:a0:a5:69:
90:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:32:EF:1D:21:7E:96:56:42:7B:D0:15:66:86:04:48:6F:9A:FA:63
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2zLvHSF-llZCe9AVZoYESG-a-mM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.191.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:46:67:5e:23:01:1e:74:9f:6d:d4:81:3c:ac:a8:37:a1:3a:
39:7c:99:43:05:ac:8c:98:a0:06:66:8f:6b:85:01:c5:c0:bb:
c3:cf:fa:f6:af:bd:ef:66:7c:77:ea:b9:df:54:68:ca:ca:fd:
77:9c:4d:af:00:2d:d7:ab:ea:25:0a:1b:2b:b6:d9:05:11:1d:
41:66:82:32:f8:5c:76:84:63:fc:b9:b5:6f:0b:ac:ac:ce:8a:
2d:09:2a:c8:34:5b:73:4d:e7:0e:10:24:11:88:ae:12:9e:bf:
13:3b:78:49:fc:e2:8c:94:4a:c2:b7:0d:69:9c:1e:5f:98:39:
b1:f1:cd:00:83:bf:95:8e:8f:4b:be:79:d8:e3:a6:29:77:52:
21:ff:c8:a9:9e:52:b7:fb:60:3b:7b:99:1b:9e:c5:3d:e9:c9:
60:5e:88:d2:d3:dc:1d:cc:8d:a0:94:cd:bb:85:10:fb:16:aa:
eb:0e:53:0c:0c:e0:e8:b8:ef:60:4a:ac:b8:93:1d:b0:b0:8e:
88:92:e2:03:9c:14:bf:78:60:bf:11:e1:6f:28:ef:e7:b1:7e:
f9:d1:b3:f2:95:8c:69:64:69:cc:ec:5e:33:05:6c:cc:33:08:
1c:1a:9c:dc:c3:64:dd:65:1e:bf:f9:44:bc:56:da:9d:6b:2c:
1b:3a:57:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org