Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/521g4YOnQNpKHQHZzKwOQeQ9Lvk.roa
File: 521g4YOnQNpKHQHZzKwOQeQ9Lvk.roa (raw, json)
Hash identifier: QGSgOr+l+JqbqUrFGdyxhMlcq18ecth8nJ7SvHGEik4=
Subject key identifier: E7:6D:60:E1:83:A7:40:DA:4A:1D:01:D9:CC:AC:0E:41:E4:3D:2E:F9
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4506
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/521g4YOnQNpKHQHZzKwOQeQ9Lvk.roa
Signing time: Mon 21 Mar 2022 00:30:06 +0000
ROA not before: Mon 21 Mar 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17670 (0x4506)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 21 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=E76D60E183A740DA4A1D01D9CCAC0E41E43D2EF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:a6:3c:78:28:cd:3e:80:2f:8d:39:7f:19:6b:
4e:fc:9d:a3:e1:e8:30:94:e7:0d:26:c9:0e:00:a1:
98:35:fa:74:42:97:f1:2e:87:14:9d:e7:b8:1a:80:
62:6e:93:f3:7c:5c:86:45:09:ed:80:b1:01:27:78:
55:3c:40:8b:a1:ae:b0:e6:e5:49:72:70:12:6c:1b:
c2:24:d8:28:5d:1f:f1:be:18:95:61:0e:fe:dc:4a:
3c:ac:c9:ec:ce:1a:71:0c:f5:11:7e:99:ee:95:67:
96:e4:10:13:58:3f:23:e2:57:19:b3:a2:d2:74:b6:
e1:c9:cc:25:60:10:f2:d0:af:52:16:83:61:49:64:
ff:8b:7a:2f:ee:f0:63:df:6c:be:38:77:40:78:44:
b9:d1:36:be:51:e4:c8:05:17:95:de:4d:7b:32:c9:
33:18:ee:ba:b9:f4:e4:65:8c:e8:77:d7:bb:12:f2:
73:eb:ee:c0:0a:f3:08:ed:64:19:64:c6:6f:2c:10:
9c:01:a5:c2:9d:24:87:6f:a5:6d:c2:74:95:ca:d3:
6b:94:95:c9:a1:69:00:2d:71:05:0d:1c:63:d7:c3:
bf:68:e7:50:34:2f:a9:7e:29:c5:e0:c7:2c:28:a8:
b9:45:2c:03:2e:cf:cc:84:41:cc:25:ee:54:ce:f3:
3b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6D:60:E1:83:A7:40:DA:4A:1D:01:D9:CC:AC:0E:41:E4:3D:2E:F9
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/521g4YOnQNpKHQHZzKwOQeQ9Lvk.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
08:f9:87:68:e2:5c:88:2f:e9:18:04:4c:da:04:a3:11:73:e8:
81:9b:54:90:b8:b6:1b:a4:56:22:69:00:d6:5e:f6:d1:91:ab:
c2:66:78:a2:c4:a4:0d:6b:ba:23:aa:ee:9f:07:d8:95:79:b9:
c4:46:b3:ae:b8:1f:82:69:a7:f9:21:4f:5d:7a:8b:9e:91:18:
e4:03:35:b8:35:db:2b:10:fb:f3:4b:db:71:b9:9d:f9:c7:11:
70:7b:03:f6:05:d1:46:bc:9a:a5:15:02:86:35:17:86:2c:82:
62:63:56:a7:63:f0:dc:de:f9:69:fe:8e:41:6c:98:17:1e:b3:
a7:c8:44:2d:09:f0:6f:aa:6a:45:69:ee:4f:77:ba:d8:2f:97:
a4:55:d1:c4:64:ec:a7:8a:fb:ed:99:ae:ca:e2:b4:22:95:60:
30:59:1a:ad:27:ba:e9:8a:5f:21:46:ed:79:62:de:0f:15:a7:
4b:66:e9:08:37:04:0b:bd:23:21:f4:cb:21:00:38:86:21:0d:
f2:89:a8:87:b1:8f:9b:3b:ed:e2:6f:05:1a:76:d1:e1:3f:a3:
7f:1d:97:a0:92:5a:42:e5:c8:70:76:51:da:f7:ca:78:0c:42:
6a:26:2f:e2:20:b3:71:51:38:c6:60:d7:32:ba:3f:81:67:89:
4f:9a:f0:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org