Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/9BfuQLK5a652nsu_laFFR4gFpoM.roa
File: 9BfuQLK5a652nsu_laFFR4gFpoM.roa (raw, json)
Hash identifier: h8xfbMd3/JkhuxrBU0p+LMgoDq3LDUxxtZmnm/ZMOIA=
Subject key identifier: F4:17:EE:40:B2:B9:6B:AE:76:9E:CB:BF:95:A1:45:47:88:05:A6:83
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 48F0
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/9BfuQLK5a652nsu_laFFR4gFpoM.roa
Signing time: Tue 31 May 2022 00:30:10 +0000
ROA not before: Tue 31 May 2022 00:30:10 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 45.132.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18672 (0x48f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 31 00:30:10 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=F417EE40B2B96BAE769ECBBF95A145478805A683
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bf:05:29:ad:b2:7f:11:7f:c9:80:2d:c5:8e:
35:57:7f:4e:d2:d1:6f:84:75:50:e4:f3:9c:f4:d6:
82:77:eb:6a:80:b2:a5:66:9a:15:5f:80:5d:c2:ae:
f0:e8:36:17:38:ae:e1:5f:e0:14:57:be:35:8c:47:
c6:39:29:4c:10:fc:3d:f0:38:18:20:dd:4b:c5:a0:
ad:93:46:bf:44:29:4d:7a:3f:1a:a2:21:85:8e:db:
41:56:4b:58:be:23:cf:30:eb:52:ea:8c:f6:70:94:
2d:8a:cc:ff:b8:4e:a4:f6:90:91:df:33:be:2f:e4:
3a:f4:ce:78:b5:08:7f:79:a4:a8:25:a0:b5:18:ab:
0a:25:89:ed:1c:1a:62:88:7f:51:4f:70:6c:64:a8:
05:c8:99:c6:a0:4d:03:5b:5f:98:b9:c8:81:6d:ab:
57:c8:ea:26:d0:67:9b:d1:5e:a2:50:e9:23:aa:16:
97:c8:79:54:12:e8:81:fe:be:14:ad:f2:cd:22:b5:
d1:5e:9b:d4:e4:b0:46:60:8b:61:55:bc:fe:43:5b:
2d:8c:dc:c8:83:ca:8d:c8:95:bd:7d:c5:b9:38:73:
d2:0d:fa:09:39:d4:31:a0:26:df:42:7b:1a:67:c7:
2d:ba:86:e5:8b:e4:a2:d1:94:cd:f2:44:29:e9:5b:
87:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:17:EE:40:B2:B9:6B:AE:76:9E:CB:BF:95:A1:45:47:88:05:A6:83
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/9BfuQLK5a652nsu_laFFR4gFpoM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.188.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:11:4d:25:64:a3:40:57:fb:5f:61:cb:1f:18:57:26:84:1b:
20:c1:83:ad:3f:65:f0:37:f2:ad:26:db:a0:0f:a7:83:33:e3:
f0:aa:4c:a7:cf:bc:e6:9b:96:77:8c:cd:0f:4d:80:81:ee:0e:
86:d6:c1:8f:7d:d5:b7:10:a1:14:50:b7:b0:25:d0:87:ee:11:
a8:78:8e:37:c3:af:3b:20:78:85:99:d7:9d:28:01:b5:43:71:
0a:55:60:84:02:ea:df:51:68:8f:38:ca:f1:4d:88:c4:bd:16:
e8:d0:32:d7:3d:2b:ed:c3:5c:cf:a1:43:08:13:e4:26:3d:70:
18:82:cb:34:ed:97:77:92:32:64:4a:47:66:63:b2:1f:9c:c5:
02:7b:76:fd:84:68:a4:23:b4:72:97:0c:83:5a:72:22:2f:32:
a6:9f:95:b1:c3:e0:b6:35:cb:e9:13:13:b7:5a:c7:72:6c:91:
d5:2c:4e:72:e5:7d:e2:f4:b2:e9:08:61:67:28:27:6f:9f:4d:
ac:f4:d6:1d:4d:d8:93:42:b6:9c:ab:b9:aa:8f:af:d5:d8:65:
a7:7e:70:0a:de:9e:df:a6:c6:44:2f:d7:81:ab:29:56:c9:b3:
dc:5f:95:a6:ae:cc:b5:6a:91:34:7c:cc:69:91:32:be:16:17:
af:68:1b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org