Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/4sGa6ejt0BIsagPDT74FdxPiRKk.roa
File: 4sGa6ejt0BIsagPDT74FdxPiRKk.roa (raw, json)
Hash identifier: ImjEn7qhZUQnS3bIFSy3gSU3JbNN65cTdlXcp1aQedk=
Subject key identifier: E2:C1:9A:E9:E8:ED:D0:12:2C:6A:03:C3:4F:BE:05:77:13:E2:44:A9
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 49CF
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4sGa6ejt0BIsagPDT74FdxPiRKk.roa
Signing time: Mon 13 Jun 2022 00:30:08 +0000
ROA not before: Mon 13 Jun 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18895 (0x49cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 13 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=E2C19AE9E8EDD0122C6A03C34FBE057713E244A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a1:d4:9d:38:81:2a:4e:77:04:99:dc:0a:2b:
e0:a2:7e:30:f5:9e:8b:c9:c2:8a:66:d3:e9:f7:04:
d2:31:74:13:aa:6c:6f:ec:3d:09:8b:bc:23:f8:b3:
e2:e8:37:45:13:fb:59:52:95:91:9c:0c:af:9c:17:
50:59:e7:a0:f7:6b:60:4f:d6:56:e6:6b:9b:c9:71:
2a:97:59:7b:c5:1d:f2:7b:18:43:23:11:a4:4f:58:
93:b8:8e:13:b7:66:77:1b:cf:2b:34:96:c2:b6:c2:
de:db:9c:3b:36:1e:7f:26:92:4e:86:6c:32:80:bb:
38:9c:af:0c:91:11:34:5a:00:65:44:b0:95:96:66:
6c:0e:b6:78:eb:23:c2:5d:ad:92:61:8c:73:b9:fd:
09:ac:1a:6e:3f:c7:cb:e3:f2:08:3b:97:65:77:2b:
6d:36:6b:29:b2:37:0c:56:6e:59:0f:0a:f7:aa:fe:
dc:b0:69:5b:6a:b7:2b:f2:1c:18:dd:00:30:f2:34:
1e:5b:48:d6:db:c4:ef:65:f5:83:aa:8a:20:c6:50:
c9:0d:b9:6d:2b:ba:63:a5:5d:5e:52:b3:c8:a4:a3:
99:88:08:9c:a2:5e:9c:97:90:64:d4:9a:1a:97:35:
74:d5:71:28:bb:04:a7:0c:72:92:60:c7:c7:15:fe:
a6:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C1:9A:E9:E8:ED:D0:12:2C:6A:03:C3:4F:BE:05:77:13:E2:44:A9
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4sGa6ejt0BIsagPDT74FdxPiRKk.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:5b:c5:b9:9f:12:53:2c:32:fe:92:e9:ac:68:1f:d5:5f:71:
a9:1d:db:4a:85:d4:b2:86:c6:81:c2:90:ea:9f:c2:ce:31:a5:
c9:f6:28:d1:26:82:70:47:35:12:25:82:ff:36:5d:ef:2c:c4:
96:47:fa:88:62:36:79:18:7c:00:aa:d1:8c:60:4f:de:a9:39:
28:36:af:7d:15:c4:b9:36:71:06:9f:36:df:98:98:bf:6e:b2:
16:cd:8e:9b:ba:ae:58:a1:b5:46:13:1b:ca:3e:cb:11:37:0f:
7b:8c:b4:bd:55:2d:9b:66:7c:46:a5:4f:28:7f:d4:62:70:c5:
60:d0:84:99:be:32:f5:20:0d:69:53:92:28:5e:a9:83:35:22:
49:13:34:f9:05:5b:1e:1c:94:6f:16:6a:98:f4:52:ec:e8:cf:
e1:1c:fd:14:b8:82:c7:b5:2a:5e:f8:a8:ac:8d:b1:8d:7c:16:
08:00:45:a0:19:25:39:78:d4:e3:d5:cf:26:43:9f:59:1d:a0:
a0:f4:6d:95:cf:28:6c:21:25:2a:25:dd:d0:b2:28:67:e8:99:
77:bb:cb:3c:70:b5:b6:e8:99:df:54:43:89:bd:0e:8d:9f:80:
88:a5:45:c8:c1:2a:c3:30:2a:e9:d5:07:ee:41:48:70:1a:74:
7c:c0:f8:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org