Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/7pHLOe6OD4guXWyTBv6DpbpwDGg.roa
File: 7pHLOe6OD4guXWyTBv6DpbpwDGg.roa (raw, json)
Hash identifier: Q7sxOPUDj3mUNpd2vvz0Bri3KnWDU0BskfHe2yT8m7c=
Subject key identifier: EE:91:CB:39:EE:8E:0F:88:2E:5D:6C:93:06:FE:83:A5:BA:70:0C:68
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 484E
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/7pHLOe6OD4guXWyTBv6DpbpwDGg.roa
Signing time: Fri 20 May 2022 00:30:06 +0000
ROA not before: Fri 20 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18510 (0x484e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 20 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=EE91CB39EE8E0F882E5D6C9306FE83A5BA700C68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d5:49:25:7f:4f:35:0b:f9:cb:a1:23:d1:9f:
b7:65:4b:6d:11:06:40:24:59:23:ca:e0:af:88:4d:
c1:89:e9:84:8c:98:87:cb:bb:f7:11:8f:54:53:88:
af:2c:e0:46:fc:25:47:f6:21:7f:68:41:4d:a3:80:
7e:d1:83:71:2c:81:14:f6:6d:86:4e:15:d4:a5:06:
52:fd:6d:ab:91:85:06:f4:e8:21:81:2f:34:b1:20:
94:cf:e9:d1:4a:3c:32:b9:80:9a:7a:cc:a8:53:1c:
bc:0d:66:01:a4:1b:86:7d:85:2d:cd:9f:10:b8:a0:
5f:72:c0:d2:30:dd:5b:e2:78:75:7b:84:30:66:5e:
cb:48:45:e4:96:11:dd:00:b2:c3:65:69:59:f6:a1:
1f:37:44:7d:c2:d6:0d:5d:46:21:3c:4c:6c:35:b4:
b8:27:88:74:46:0e:2e:be:d2:e4:80:e5:30:4b:18:
c8:85:90:9d:4a:2e:3b:3b:bf:b7:9a:2c:5d:33:43:
78:9a:04:69:22:72:08:ea:70:ed:aa:73:de:b7:0f:
af:a5:a7:58:c9:76:72:91:c8:7e:d9:75:13:7d:92:
40:94:43:b7:bb:3f:17:08:c4:07:0c:e7:d3:6d:8a:
f5:88:57:bb:a1:6c:9e:00:c9:93:db:91:09:c3:63:
36:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:91:CB:39:EE:8E:0F:88:2E:5D:6C:93:06:FE:83:A5:BA:70:0C:68
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/7pHLOe6OD4guXWyTBv6DpbpwDGg.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
15:df:41:fe:e9:48:dd:25:f0:ce:15:69:c1:ff:55:2f:85:b6:
5f:2d:ed:34:39:2c:93:33:56:25:7c:fc:4c:3d:97:d8:d6:e3:
c0:28:be:10:b6:03:56:a8:78:69:1a:c6:d8:fa:7d:c0:1d:a6:
2b:61:fc:7e:c3:ff:ff:66:f6:a0:ce:74:9c:ce:71:60:01:e2:
c1:dc:a9:ed:0d:d8:a6:94:df:1a:0c:2e:85:8f:a0:c7:19:78:
64:81:ec:cf:49:6f:0c:34:57:63:90:fc:63:8c:d5:f8:84:49:
eb:df:c2:ed:9a:3a:00:f6:e6:c1:e5:ea:34:75:5a:8e:45:4f:
6b:0a:b7:64:ff:2e:3b:30:04:bd:a4:b2:db:4e:05:22:63:b4:
ff:18:1f:27:2c:82:35:98:e3:01:97:16:ad:fc:1b:43:29:18:
5a:0d:86:15:2b:68:b1:85:18:db:f3:06:65:d4:42:f3:08:41:
4e:f5:24:29:95:6c:02:ae:2b:c7:7a:01:5b:a1:18:1d:39:4a:
fa:6c:5d:47:51:2c:45:f9:5b:4c:73:9b:f4:91:44:b6:37:0e:
7a:77:1f:ff:77:ad:7d:7b:a6:a7:89:d2:f9:3d:a6:9f:6e:49:
e1:b0:80:9b:b5:3f:34:3f:af:93:c5:22:7a:51:1e:b8:81:11:
82:49:cf:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org