Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/B2cPMOlNxgq726_snckzi3-njHk.roa
File: B2cPMOlNxgq726_snckzi3-njHk.roa (raw, json)
Hash identifier: 1b8zZo490PfGDTUUEJE5zeVp5nJ1OU7nS+2a9IO7Ffw=
Subject key identifier: 07:67:0F:30:E9:4D:C6:0A:BB:DB:AF:EC:9D:C9:33:8B:7F:A7:8C:79
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 45ED
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/B2cPMOlNxgq726_snckzi3-njHk.roa
Signing time: Wed 06 Apr 2022 00:30:09 +0000
ROA not before: Wed 06 Apr 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17901 (0x45ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 6 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=07670F30E94DC60ABBDBAFEC9DC9338B7FA78C79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:85:34:b3:04:7f:44:eb:b9:97:1d:7e:7c:bc:
5e:43:44:8c:a3:25:ea:d7:60:d2:71:b2:ff:46:14:
d2:8f:e2:43:2e:63:d6:55:9e:95:23:10:33:a6:b4:
61:0c:3f:25:bc:64:39:30:76:db:f1:4d:ea:0a:64:
6d:3a:ec:cd:6d:26:ec:ea:22:bd:bf:be:85:58:41:
44:fe:67:8f:62:02:df:68:b5:28:11:a2:61:7a:1f:
79:68:59:44:f3:62:fd:b5:d6:9c:cd:94:73:7c:71:
a4:54:c4:f1:19:dd:49:3d:b0:30:06:16:e6:ce:7f:
f1:bf:cf:bb:2a:5a:d8:74:a7:cf:df:df:a4:10:3f:
e4:e3:8f:b3:85:d0:9e:4c:16:19:c1:d5:6d:e9:fc:
2f:70:45:d2:41:cc:bd:2f:58:30:d7:4b:fb:59:dc:
6b:9b:41:99:60:c2:b5:f6:2f:2a:53:f7:fa:27:2e:
42:b1:65:7e:4a:65:8d:f8:d6:a0:4e:a9:68:b6:e2:
b8:70:ee:f8:1c:52:70:d0:39:3c:2b:64:b3:83:f6:
48:8f:86:65:32:97:10:e1:0c:f5:fa:31:2e:58:91:
7d:29:00:93:3e:e4:f2:bd:50:98:73:a1:0a:3b:d8:
6d:83:9c:61:75:ce:29:cd:34:0d:8f:0d:4a:23:f1:
56:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:67:0F:30:E9:4D:C6:0A:BB:DB:AF:EC:9D:C9:33:8B:7F:A7:8C:79
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/B2cPMOlNxgq726_snckzi3-njHk.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d1:a1:97:80:29:67:b3:c8:c4:2c:22:cc:f8:89:f5:75:c1:
16:0b:c1:2c:72:8e:39:d5:d8:34:6d:68:33:fa:00:3e:98:ed:
88:be:92:7c:b6:9d:a3:af:0b:3c:5f:8c:6d:dc:87:69:92:32:
9e:78:15:4a:a9:2c:96:03:62:b4:af:6b:f9:10:74:1f:92:7f:
6d:ba:99:61:e9:f6:97:e4:f8:91:68:71:eb:e2:a6:97:88:06:
30:44:2c:70:55:15:a2:57:e8:ee:48:6a:bd:c8:15:ec:c2:c0:
ee:6c:00:9e:6d:1d:f7:71:42:7e:88:ef:91:28:33:dc:45:14:
6a:09:3a:9b:0d:c0:a3:5b:87:ed:19:3b:ba:94:80:2e:f1:bf:
13:b1:b6:ca:bc:02:a9:1f:91:b5:1c:45:3d:a1:30:24:9f:0d:
49:ff:1d:92:1a:63:3a:03:1c:d1:c8:d4:f2:ac:1a:85:f9:f6:
d6:a8:b5:01:9a:c8:e2:ac:a2:5c:ff:b4:6c:02:79:7b:0e:e4:
b8:69:5e:3e:c7:d7:64:e8:c7:91:f7:7d:78:0f:22:52:1a:34:
bf:dd:88:76:8a:82:52:9e:c0:0d:fd:c9:41:67:da:ce:fa:7d:
cf:99:49:c9:c7:30:ec:75:7d:01:67:f5:6a:b5:98:98:32:58:
bb:24:67:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org