Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/D2hcnuD6ZiiIs78Lf13hNWM-vOo.roa
File: D2hcnuD6ZiiIs78Lf13hNWM-vOo.roa (raw, json)
Hash identifier: gL1wVlrdZXo/tqpDSgnAMJgVwjp2/SjYE0EqxTuBqVM=
Subject key identifier: 0F:68:5C:9E:E0:FA:66:28:88:B3:BF:0B:7F:5D:E1:35:63:3E:BC:EA
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 48D1
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/D2hcnuD6ZiiIs78Lf13hNWM-vOo.roa
Signing time: Sun 29 May 2022 00:30:07 +0000
ROA not before: Sun 29 May 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18641 (0x48d1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 29 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=0F685C9EE0FA662888B3BF0B7F5DE135633EBCEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6b:97:71:17:60:8d:74:eb:3b:e5:d6:9f:1d:
f2:08:56:e5:f8:7c:85:c3:72:42:5b:cb:71:76:40:
69:22:ec:e0:27:17:c1:dd:aa:f4:fd:3b:9d:37:b4:
e1:48:56:bf:6e:8d:68:7c:3c:00:39:2b:8e:ca:15:
d8:71:8f:37:ca:72:25:24:86:73:76:c5:9b:9d:df:
10:63:49:80:06:11:b9:c7:c4:0e:1a:1f:d2:b6:a1:
d7:88:dd:90:9d:60:5c:37:93:b2:e4:71:84:6e:bc:
6e:16:ee:a6:6b:4f:64:bb:fd:50:fe:40:a5:35:03:
d0:b5:f9:cf:90:0c:16:57:82:e9:dc:6e:8d:6f:c1:
fa:84:d2:09:9a:12:c8:f9:f6:cc:e6:01:1f:8f:a0:
9d:28:70:fc:7d:4b:eb:55:6c:9d:f8:93:4f:90:8d:
60:5d:89:b2:27:07:14:b9:ed:4c:9c:b0:16:2e:14:
f9:19:6e:bb:fc:c1:1b:fc:84:27:53:02:8b:db:09:
1d:4c:f7:10:47:99:e7:b9:59:e4:19:c0:6f:5f:ad:
f1:c0:dc:f0:11:15:74:b8:90:0b:d2:3d:b3:71:27:
11:f3:89:d3:c1:ba:0c:18:75:23:da:10:7e:1f:d2:
fd:63:a3:37:05:5c:20:68:3a:ba:f4:08:0a:2d:a2:
3e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:68:5C:9E:E0:FA:66:28:88:B3:BF:0B:7F:5D:E1:35:63:3E:BC:EA
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/D2hcnuD6ZiiIs78Lf13hNWM-vOo.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b9:48:90:c0:6a:38:7a:81:56:8b:5c:3b:08:c7:53:bf:47:78:
b5:d2:f7:96:4c:32:31:fb:03:30:a4:a9:06:a7:ea:6d:95:d7:
5c:87:56:69:14:f3:12:01:5a:a9:aa:d8:af:a8:d3:61:f6:1d:
8c:88:c0:92:5e:f8:f7:06:a1:40:dd:5e:92:e6:82:bc:9f:1a:
4f:28:07:8f:5d:c8:11:4c:f7:2f:e9:0f:eb:56:3f:f5:ae:22:
3d:39:d7:10:a7:e0:b7:f3:54:50:67:36:38:3e:a1:6d:b3:9d:
6d:5f:ce:83:5d:30:03:dc:49:8f:a3:81:74:40:d3:8a:07:6e:
4b:91:21:3f:c3:cd:26:48:54:8b:53:89:54:7a:a9:df:be:c6:
f4:16:c4:bd:84:9d:7b:3e:1d:63:15:e0:19:d1:ee:84:0e:db:
ab:eb:5d:68:97:99:a0:ba:94:ae:a9:c7:4d:db:b1:2c:df:37:
63:13:d5:85:97:78:14:99:84:0d:3b:61:0b:9d:2e:bc:d9:7a:
26:f3:d4:6c:4f:f0:99:e8:1f:0b:03:27:11:1f:ef:91:a4:d7:
6c:ff:a3:8d:cf:28:06:dc:e3:ec:14:31:91:0e:67:1f:1a:6c:
3f:a3:b7:9f:49:16:3c:05:b9:e8:b2:ed:51:6e:aa:2c:3c:3f:
00:32:25:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org