Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/7lY_JDnJL22hmOmYYNZf4gBweRc.roa
File: 7lY_JDnJL22hmOmYYNZf4gBweRc.roa (raw, json)
Hash identifier: 2eLjNLcoEBSerEmu0BdviaC1RMyxn3ZtyBXul0E1+zk=
Subject key identifier: EE:56:3F:24:39:C9:2F:6D:A1:98:E9:98:60:D6:5F:E2:00:70:79:17
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 46E2
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/7lY_JDnJL22hmOmYYNZf4gBweRc.roa
Signing time: Sun 24 Apr 2022 00:30:06 +0000
ROA not before: Sun 24 Apr 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18146 (0x46e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 24 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=EE563F2439C92F6DA198E99860D65FE200707917
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9b:15:ed:19:c3:a2:18:8c:59:31:be:e1:86:
9f:4c:ee:9a:4e:55:1f:9e:f7:3e:11:e6:fe:5c:25:
c0:19:bf:c6:d3:fc:f2:46:1f:47:96:bc:8e:92:51:
30:2f:db:5d:bf:93:89:2d:d6:b4:bb:80:75:99:1d:
e7:3a:da:58:8b:75:0b:bd:9d:45:24:a9:74:e8:af:
ae:70:85:b9:3f:82:27:b8:04:ef:3d:5a:f6:40:13:
f3:bc:40:36:48:c3:94:87:64:e0:26:7b:eb:e0:8c:
59:40:40:d9:16:62:e6:bf:1f:39:ab:18:be:2b:6a:
b1:e8:ad:1e:f6:85:d3:bd:93:30:7d:c6:48:71:53:
ff:e2:0e:da:05:cf:d4:f5:0f:78:b5:a2:c4:a9:cf:
2c:0f:56:23:48:51:c0:d3:12:09:5a:92:c4:29:e3:
e1:43:0c:ad:b5:88:9f:4f:2e:72:a1:7e:00:dd:35:
44:67:ff:d0:76:8e:0b:bb:cf:f6:63:69:66:7a:d0:
44:a0:1d:90:29:1e:43:30:1f:62:5d:b6:f9:b1:0f:
9a:52:55:83:2d:44:bb:98:cd:53:e3:b3:bc:1e:cd:
95:d8:c7:29:9f:9b:3b:e6:0e:a3:a2:aa:91:51:04:
ff:f9:ea:48:1e:de:f7:04:e5:c3:59:96:b4:06:8b:
01:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:56:3F:24:39:C9:2F:6D:A1:98:E9:98:60:D6:5F:E2:00:70:79:17
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/7lY_JDnJL22hmOmYYNZf4gBweRc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
91:2c:83:9c:aa:f5:2b:fc:4f:15:e3:34:20:84:2e:71:e5:f2:
ac:17:c9:08:47:9a:8a:6d:32:26:de:7f:e1:d2:4f:c1:f4:3b:
75:2e:0e:57:fc:f7:09:77:d0:ce:b2:c3:79:de:e7:d1:da:75:
0d:08:19:26:42:a8:44:b9:1c:27:06:53:d3:43:12:28:d5:fa:
4a:08:94:7a:36:82:f6:ae:57:23:31:1e:c0:0d:32:38:9f:99:
33:15:c8:86:e0:b4:8f:0d:a6:56:b3:5d:c2:fa:78:50:69:5c:
09:ec:20:ec:7f:78:22:4e:e9:25:79:eb:d0:f9:88:4e:ae:0d:
dd:a5:ff:44:c1:f1:ed:c1:75:5e:e6:0e:c4:ec:8b:fd:a0:f1:
0a:0f:9d:e9:67:a6:51:9c:a1:94:49:0b:81:d9:af:c5:19:ac:
ef:4f:30:3b:e2:2f:0a:46:00:7c:c4:2d:4d:5a:2c:e5:34:2a:
94:c6:10:53:6d:60:a8:09:99:57:6b:30:65:97:b6:9d:e3:5f:
11:2d:91:9e:dc:95:a4:92:34:72:ec:86:7d:a2:ac:78:a1:73:
76:fa:b8:4e:8f:f5:a4:19:ee:b6:f1:ee:31:a5:81:b7:ce:68:
d5:a5:bb:a2:29:a4:e3:96:bf:86:b1:ef:49:2f:3d:b9:25:90:
88:04:4e:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org