Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/3TFmldHG58ubkau38kAo3SAEJuM.roa
File: 3TFmldHG58ubkau38kAo3SAEJuM.roa (raw, json)
Hash identifier: d5foESoakl2nddmZoYy9Z/W1rOp/cFj3PJa8VERx8IU=
Subject key identifier: DD:31:66:95:D1:C6:E7:CB:9B:91:AB:B7:F2:40:28:DD:20:04:26:E3
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47D1
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/3TFmldHG58ubkau38kAo3SAEJuM.roa
Signing time: Wed 11 May 2022 00:30:11 +0000
ROA not before: Wed 11 May 2022 00:30:11 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18385 (0x47d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 11 00:30:11 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=DD316695D1C6E7CB9B91ABB7F24028DD200426E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:95:50:15:5f:51:15:1d:1f:ec:0a:99:7b:d1:
af:f5:18:fc:0d:78:dd:6d:d0:eb:53:01:48:8e:e1:
10:b1:64:3c:20:b5:06:31:71:42:d7:af:91:85:59:
66:28:bc:cf:6d:97:0f:75:68:d9:1c:17:57:2e:5e:
53:ba:2b:14:ba:be:64:06:51:7a:a7:6d:01:70:63:
2d:13:8a:47:2a:a9:48:09:b6:3e:4a:fa:bf:d7:d7:
f4:ad:72:b2:1e:c8:18:d5:c8:53:7f:79:4c:4a:4a:
48:24:b1:75:56:94:91:5a:bd:47:01:fd:af:03:8d:
d0:78:75:35:34:fa:b9:b4:81:d6:2f:f4:ef:ed:52:
af:cf:ea:01:4f:51:41:5c:46:4f:56:b9:d1:0a:29:
82:f6:92:f0:8f:2a:ff:db:e3:63:3f:0c:5b:63:2c:
8b:5c:b6:c1:a4:79:2c:ed:31:74:31:5c:f9:56:63:
88:ed:32:0b:d3:ca:a3:68:18:64:d7:5b:83:0d:0c:
b8:08:d2:42:1b:a7:02:fe:50:81:fc:f6:22:58:28:
1a:4d:35:f3:f1:8f:e6:44:13:d7:25:c7:57:a8:6c:
10:71:4a:c6:b0:e9:b0:f3:48:2b:b4:a6:63:96:8b:
26:79:28:af:1d:76:16:42:73:73:46:f2:a4:b5:b1:
d7:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:31:66:95:D1:C6:E7:CB:9B:91:AB:B7:F2:40:28:DD:20:04:26:E3
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/3TFmldHG58ubkau38kAo3SAEJuM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
32:8c:19:be:46:3a:65:5b:c1:82:b3:43:4c:7d:2b:04:fc:c1:
4b:9f:54:57:20:44:2e:35:eb:bd:71:78:a5:c0:ba:6a:05:84:
c6:da:72:ef:09:0d:bc:36:9e:fd:c6:e3:d7:11:fb:64:b1:84:
73:52:e4:4a:f9:84:4c:e9:a0:b3:2a:9b:dc:d6:05:53:45:28:
c6:c7:4e:0c:7f:c6:77:87:3f:22:d9:61:79:16:1e:51:66:f4:
c8:e2:4c:16:43:ac:f3:d6:20:84:d3:ad:1e:b5:68:a4:75:81:
b4:a9:1d:9f:99:00:81:fe:5e:e2:88:f7:5c:9d:c9:a4:df:51:
e6:a5:18:5a:6c:67:24:54:df:0b:8b:c8:aa:4c:86:8c:7a:cd:
95:78:0b:94:1c:3c:de:99:4e:94:f8:58:99:18:c2:e4:8b:1e:
3e:79:61:69:b1:30:de:4f:a8:66:22:33:45:3b:34:57:48:21:
3d:7c:2f:21:d8:15:8b:9e:cc:25:0a:f0:f1:8b:f1:22:5d:ea:
13:6f:1f:51:49:1f:d2:e9:bb:16:af:90:c6:dd:fa:4a:5a:d1:
b2:b5:93:e6:c5:69:45:86:86:20:86:03:85:6a:57:91:bb:dc:
52:3e:c2:8f:90:f1:39:45:cb:2c:62:2f:13:3e:5e:2e:0a:b3:
ce:55:d7:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org