Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/AvQBnNGHJNWveh6UrRDl2-DClWE.roa
File: AvQBnNGHJNWveh6UrRDl2-DClWE.roa (raw, json)
Hash identifier: L8Ysbpy3UjlowPMbqd/yARe2d7QCHpLbIWkU/VboCwo=
Subject key identifier: 02:F4:01:9C:D1:87:24:D5:AF:7A:1E:94:AD:10:E5:DB:E0:C2:95:61
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4946
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/AvQBnNGHJNWveh6UrRDl2-DClWE.roa
Signing time: Sat 04 Jun 2022 00:30:06 +0000
ROA not before: Sat 04 Jun 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18758 (0x4946)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 4 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=02F4019CD18724D5AF7A1E94AD10E5DBE0C29561
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:20:4b:32:ba:0f:f8:7c:f8:c9:58:ff:69:2c:
43:5d:fa:46:34:89:3d:0e:5e:83:1c:84:1b:48:02:
2b:69:7f:6c:a2:f9:1f:0b:5a:a2:50:e8:90:b8:8b:
81:73:3b:72:d6:3d:03:a6:76:0f:2b:9d:5d:c5:52:
3b:11:80:4e:7c:66:ee:05:af:ea:fa:c6:f6:87:1e:
bc:86:66:83:16:6e:1a:ab:bc:19:07:04:fc:67:21:
9b:7d:1e:08:d5:15:1d:c6:a1:90:26:5c:bd:06:31:
fc:64:76:42:8f:38:da:d4:8c:5d:88:4d:05:c7:3c:
7e:01:2c:51:a8:c1:f0:1f:89:9c:12:a9:03:b2:21:
b6:63:66:8b:51:16:09:26:8e:fc:e4:1a:f1:95:36:
bf:e0:7e:a8:4d:25:a9:b5:d8:07:d2:c0:73:fb:b8:
25:87:8b:34:1e:dc:e1:aa:f3:c3:a4:75:b4:8c:ea:
66:9b:4b:7b:6a:99:91:d7:85:6c:7e:ae:98:1e:60:
0b:dd:64:84:36:2c:55:13:7e:a0:67:d3:31:9f:a1:
9a:ee:75:bc:15:da:f4:74:83:a1:b7:4b:82:35:6c:
39:9b:86:73:e4:75:5f:75:06:f6:ec:b4:fb:b6:63:
bc:76:65:18:49:61:0b:2f:0f:97:33:29:14:71:01:
14:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F4:01:9C:D1:87:24:D5:AF:7A:1E:94:AD:10:E5:DB:E0:C2:95:61
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/AvQBnNGHJNWveh6UrRDl2-DClWE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.14.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:10:f8:e4:5b:ad:2a:3d:91:cd:23:9b:05:9d:55:57:73:70:
e9:48:a4:a0:2c:92:bd:0e:be:f1:3a:dd:29:45:79:8e:0e:91:
b8:74:67:99:33:1f:3e:7c:a2:c0:1c:12:b4:bf:fd:17:7f:31:
d2:5c:4d:52:73:73:15:b5:30:7d:fc:52:77:6e:a1:57:0c:4c:
ea:29:e2:73:ac:6e:72:c0:45:51:5c:6d:b2:b5:81:c5:49:69:
4d:3e:f8:9d:58:eb:f5:b8:0d:06:b4:52:e3:66:1a:dc:66:5a:
39:44:53:09:0f:de:39:3b:77:3b:55:aa:5f:c6:fe:56:3a:41:
55:e0:98:b6:92:56:c5:a5:59:ef:64:7f:f5:db:d1:b4:c8:9f:
e9:1f:07:07:cd:d4:98:90:ac:98:e1:48:a9:df:72:2e:12:a2:
bb:85:e2:c6:11:8b:f3:6e:2f:b7:6f:58:26:93:d9:dd:e3:71:
0e:14:bf:bf:38:71:cb:13:ff:d8:c9:c0:ff:40:c8:29:13:32:
ee:11:00:fb:cb:ee:db:99:d7:6f:7f:f7:da:fd:64:07:9b:74:
04:63:d3:50:ee:bb:ec:56:2a:d6:87:85:e4:87:6f:73:4c:c4:
ed:ae:42:26:61:19:59:f8:61:7c:3b:d7:d0:33:20:02:43:94:
c4:44:88:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org