Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Dq7vlT359wBQPbam_B35haotMR8.roa
File: Dq7vlT359wBQPbam_B35haotMR8.roa (raw, json)
Hash identifier: LS/hpQgbEWBUtAq41iNrCZAlnYOhcjtTALGZa4I4ih8=
Subject key identifier: 0E:AE:EF:95:3D:F9:F7:00:50:3D:B6:A6:FC:1D:F9:85:AA:2D:31:1F
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 450C
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Dq7vlT359wBQPbam_B35haotMR8.roa
Signing time: Mon 21 Mar 2022 00:30:09 +0000
ROA not before: Mon 21 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17676 (0x450c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 21 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=0EAEEF953DF9F700503DB6A6FC1DF985AA2D311F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ab:37:d0:64:9f:5e:85:ee:f1:e7:c0:f6:cc:
10:cd:76:c8:b8:5d:c9:61:12:e7:f7:6c:cc:50:1c:
b1:9c:53:54:ad:6d:28:50:81:80:b5:32:0b:d5:13:
06:ea:ea:3a:6c:ce:0a:04:95:22:84:fa:6e:8d:7f:
b3:d7:01:45:97:50:20:eb:e7:35:06:22:93:6f:f6:
40:5c:48:ae:9f:4a:a1:47:eb:b8:b3:a5:e3:8e:c9:
a3:aa:50:1b:c9:2e:89:b0:fb:64:ba:f0:63:e1:80:
4c:c3:5a:dc:04:4b:0a:69:72:59:e0:e2:14:3e:1e:
6d:65:6a:03:9b:99:9c:cc:49:57:74:03:cc:88:c1:
e1:a0:c0:4f:22:7e:b7:3d:ad:f7:7a:11:3d:37:cf:
f1:6f:db:e3:ef:a9:b3:de:07:25:05:5c:45:52:43:
3e:14:fa:14:69:04:a7:00:88:2e:25:4d:2e:a6:31:
41:d8:61:48:19:67:6e:03:f2:d3:79:21:02:47:94:
5b:c9:bd:4d:f5:7a:0f:2f:4d:4e:7d:bf:9a:1f:01:
7b:de:2d:cb:b1:c3:04:83:01:f7:ca:0d:5d:28:e8:
dc:c8:42:8b:a2:44:6d:7b:0f:fe:13:b3:65:97:8a:
c4:e8:da:72:ac:70:54:3f:08:fc:34:9b:e4:34:89:
8b:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:AE:EF:95:3D:F9:F7:00:50:3D:B6:A6:FC:1D:F9:85:AA:2D:31:1F
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Dq7vlT359wBQPbam_B35haotMR8.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:e3:64:ba:a4:03:30:9f:4d:62:f6:c8:17:94:de:d8:3d:49:
6a:9c:ae:46:ab:18:4c:d1:80:2e:b0:ba:8f:7b:6b:e3:53:23:
f4:63:bd:a7:cf:1b:c9:a5:f5:06:47:e8:3e:0a:08:8d:c0:36:
69:00:83:a8:d8:0c:6b:5c:b8:4f:f7:2c:5b:b0:66:69:3e:19:
2d:00:e5:37:33:89:14:3b:c3:e5:57:b3:f3:b1:e1:9b:8d:33:
52:ab:cb:78:7c:74:35:da:50:29:0f:1a:4d:60:47:92:f1:23:
14:3d:01:3e:88:0e:44:9c:f7:46:09:da:99:65:d2:fd:b7:87:
5a:b3:8d:4d:22:bc:08:33:33:9a:6a:ae:8c:c8:9d:ae:65:a4:
57:22:51:c8:ff:37:5d:3f:cc:bf:31:66:3a:e7:8b:86:22:5b:
f3:d1:bc:b4:19:36:35:80:7d:9e:f7:2b:69:11:39:61:d6:2a:
47:b1:8d:8f:22:39:23:9f:ba:a1:6b:66:6b:a3:cc:eb:a5:2a:
b5:4c:f9:36:8a:c2:62:50:b1:50:d2:e3:3a:eb:27:1e:76:43:
84:bf:ca:c4:45:d9:87:2d:6d:0e:07:8c:02:3e:e1:da:06:9d:
10:7e:31:1c:89:5a:8e:35:74:84:92:5c:38:41:4c:fc:03:55:
22:29:5b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org