Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/ByKrdxsgdQNbfzf3aT46YaQge6I.roa
File: ByKrdxsgdQNbfzf3aT46YaQge6I.roa (raw, json)
Hash identifier: gOMjCXoH7plbhxqBA3p0/Pe/j8jOqjgwZtPTJR7Lymw=
Subject key identifier: 07:22:AB:77:1B:20:75:03:5B:7F:37:F7:69:3E:3A:61:A4:20:7B:A2
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4448
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/ByKrdxsgdQNbfzf3aT46YaQge6I.roa
Signing time: Mon 07 Mar 2022 00:30:12 +0000
ROA not before: Mon 07 Mar 2022 00:30:12 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 45.132.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17480 (0x4448)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 7 00:30:12 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=0722AB771B2075035B7F37F7693E3A61A4207BA2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:42:bf:c4:9a:79:05:e3:1a:e1:0e:ae:a5:55:
9b:c4:09:a2:fc:26:aa:00:d2:91:cb:44:1e:9b:69:
f8:eb:83:4d:19:de:6c:3d:e8:c3:57:14:d1:91:42:
8f:ed:ed:8f:c3:17:1a:14:12:c5:2f:fb:d2:e2:f1:
99:11:ee:0f:00:f2:c1:a2:15:c4:87:55:41:48:35:
85:fd:da:06:42:0d:4e:3f:f8:6f:6c:9e:7c:00:9b:
a9:c2:90:99:92:06:74:c2:77:2c:1e:16:a1:50:8f:
2b:85:47:85:a1:3e:0a:da:17:12:2b:44:ce:32:4c:
85:3a:d0:ca:62:4e:3e:1b:2a:c1:fa:c6:73:bb:42:
40:c9:63:a4:ea:02:b8:8e:db:75:b5:8b:38:fa:48:
a1:c1:5a:d6:b2:14:c9:a0:f7:1c:94:dd:3f:84:ab:
28:2a:a4:b2:35:f2:e6:b0:8e:34:15:49:c5:b5:a5:
7d:58:fc:7c:b7:3c:a4:b5:4c:af:dd:48:2e:1c:13:
a8:1c:a2:e4:67:03:f2:65:ad:59:7e:b5:54:b7:b7:
3d:38:bf:e9:1b:16:a8:44:34:8a:5b:e7:02:4e:61:
6f:bc:29:0a:d2:51:28:90:9e:4e:a0:10:c6:c0:2c:
45:7a:24:83:d5:59:0d:da:61:7d:c5:0b:ed:24:60:
38:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:22:AB:77:1B:20:75:03:5B:7F:37:F7:69:3E:3A:61:A4:20:7B:A2
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/ByKrdxsgdQNbfzf3aT46YaQge6I.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:4f:b5:29:14:45:19:d3:a2:ed:30:0b:12:2b:68:a8:35:76:
95:46:b0:12:0c:7a:4a:32:a3:df:69:6f:1d:fd:89:89:1f:92:
e3:94:43:83:64:10:ec:41:6d:49:78:78:f2:49:c4:2a:07:5e:
68:a0:2c:c9:20:2e:48:9a:e1:5f:9d:c0:4d:61:29:62:e7:92:
fe:d2:08:20:19:e8:65:c6:27:dc:3e:aa:79:d2:a2:ed:52:78:
b1:44:95:3d:32:c9:3a:45:0f:d5:b5:af:34:66:d4:ff:da:60:
2f:6b:f5:e7:53:77:35:7c:04:e3:1a:aa:df:0d:8d:44:a9:01:
68:25:07:16:33:6a:bf:6e:4a:80:03:30:22:d3:79:5b:53:6b:
e0:6e:15:b4:f7:f4:19:a4:c7:9d:02:a0:82:f4:81:69:f5:be:
ff:6c:2d:95:c4:ee:bf:ff:26:49:9b:3b:1f:61:19:3a:d5:43:
a4:7c:40:e9:4d:d9:fb:6e:32:b9:18:cf:7b:0d:e2:82:34:5e:
b8:f2:4d:12:1b:32:08:a2:66:0b:c0:05:63:29:c3:4b:c6:4b:
25:b3:f6:9e:e2:c6:ac:ed:24:aa:cd:7c:cf:d3:2d:40:31:f9:
25:04:e8:28:25:18:98:94:39:7d:db:de:19:35:76:34:44:6a:
71:e2:6a:ba
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICREgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjAzMDcw
MDMwMTJaFw0yMzAxMDEwMTAxMDJaMDMxMTAvBgNVBAMTKDA3MjJBQjc3MUIyMDc1
MDM1QjdGMzdGNzY5M0UzQTYxQTQyMDdCQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCUQr/EmnkF4xrhDq6lVZvECaL8JqoA0pHLRB6bafjrg00Z3mw9
6MNXFNGRQo/t7Y/DFxoUEsUv+9Li8ZkR7g8A8sGiFcSHVUFINYX92gZCDU4/+G9s
nnwAm6nCkJmSBnTCdyweFqFQjyuFR4WhPgraFxIrRM4yTIU60MpiTj4bKsH6xnO7
QkDJY6TqAriO23W1izj6SKHBWtayFMmg9xyU3T+EqygqpLI18uawjjQVScW1pX1Y
/Hy3PKS1TK/dSC4cE6gcouRnA/JlrVl+tVS3tz04v+kbFqhENIpb5wJOYW+8KQrS
USiQnk6gEMbALEV6JIPVWQ3aYX3FC+0kYDhpAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUByKrdxsgdQNbfzf3aT46YaQge6IwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9CeUtyZHhzZ2RRTmJmemYzYVQ0NllhUWdlNkkucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAthL0wDQYJKoZIhvcNAQELBQADggEB
AD9PtSkURRnTou0wCxIraKg1dpVGsBIMekoyo99pbx39iYkfkuOUQ4NkEOxBbUl4
ePJJxCoHXmigLMkgLkia4V+dwE1hKWLnkv7SCCAZ6GXGJ9w+qnnSou1SeLFElT0y
yTpFD9W1rzRm1P/aYC9r9edTdzV8BOMaqt8NjUSpAWglBxYzar9uSoADMCLTeVtT
a+BuFbT39Bmkx50CoIL0gWn1vv9sLZXE7r//JkmbOx9hGTrVQ6R8QOlN2ftuMrkY
z3sN4oI0XrjyTRIbMgiiZgvABWMpw0vGSyWz9p7ixqztJKrNfM/TLUAx+SUE6Cgl
GJiUOX3b3hk1djREanHiaro=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org