Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/F-2UjVOFT8lF6P-Jay35hhDKgj0.roa
File: F-2UjVOFT8lF6P-Jay35hhDKgj0.roa (raw, json)
Hash identifier: /lctWM9vgjaBQE3frlsQ5Tk9ecpzokSIwhLzoGwpNlA=
Subject key identifier: 17:ED:94:8D:53:85:4F:C9:45:E8:FF:89:6B:2D:F9:86:10:CA:82:3D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 457C
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/F-2UjVOFT8lF6P-Jay35hhDKgj0.roa
Signing time: Tue 29 Mar 2022 00:30:10 +0000
ROA not before: Tue 29 Mar 2022 00:30:10 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17788 (0x457c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 29 00:30:10 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=17ED948D53854FC945E8FF896B2DF98610CA823D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3a:82:49:06:e7:61:bc:13:0a:4b:a9:0c:21:
38:67:91:3f:8e:01:16:bc:1f:32:2a:e0:09:cb:dd:
8a:31:48:08:b0:d6:aa:bd:0b:da:4b:d3:a6:26:84:
85:41:17:6d:29:c6:44:d9:c0:cf:82:15:e7:e2:2a:
13:41:7a:23:a7:b3:4a:10:50:34:33:1e:54:b4:27:
34:0a:e8:22:bd:93:b8:42:ca:7c:bb:ce:36:8b:b3:
2c:6e:46:5c:fb:f4:67:2e:1b:96:56:4e:c3:0a:9a:
9a:ca:90:4b:65:b8:f1:c2:85:61:f8:1e:5d:e0:04:
8f:d9:14:51:b8:6a:b9:23:bb:50:7d:b5:fb:a5:e7:
31:f6:16:63:3b:2c:dc:4d:b6:49:0a:75:71:b7:7c:
f3:d9:3e:a3:64:12:a4:89:85:eb:40:80:54:bb:aa:
f3:18:50:e5:ff:99:a4:10:08:ba:8f:77:5e:92:ce:
ae:15:28:88:a1:6e:92:ef:12:ef:6b:75:af:f8:d8:
f8:74:14:58:18:8c:fe:f9:44:bd:ff:a5:cb:d1:bb:
8a:51:80:50:c1:38:86:4b:d0:31:3a:6e:7d:65:e3:
bf:44:bc:d1:a3:e3:da:3a:eb:12:d9:34:65:c7:4e:
9a:1b:f2:48:29:24:52:e8:58:eb:2f:d1:df:35:1b:
79:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:ED:94:8D:53:85:4F:C9:45:E8:FF:89:6B:2D:F9:86:10:CA:82:3D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/F-2UjVOFT8lF6P-Jay35hhDKgj0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
83:07:18:fc:f5:2a:38:bd:00:87:9c:fc:7c:cb:cb:27:e4:f8:
dd:02:8f:78:48:bc:03:5e:0e:0c:40:d4:8e:92:aa:9f:e3:58:
48:01:94:e9:84:43:a6:62:2c:59:ab:1d:a1:45:fd:1f:34:a3:
d7:1f:f2:59:f6:3b:e4:8d:88:32:08:a2:4e:fb:21:26:6d:1a:
b1:89:c2:60:71:38:11:94:01:51:59:05:61:5c:e8:44:a1:ad:
4f:fa:60:b4:11:c6:0e:92:c0:1a:58:a8:d3:e6:63:ab:a4:00:
4d:5b:3a:9f:75:c4:f5:ae:ed:34:31:53:a6:91:d1:02:f0:00:
db:1e:a2:21:18:d9:f9:ed:91:64:53:c3:7e:70:79:9a:9a:9d:
b0:f7:9e:af:23:d6:df:23:f7:0b:3b:0c:5c:81:f1:53:21:ab:
3b:d6:16:0b:e8:a7:0a:1d:b1:56:f2:03:20:60:2f:70:8d:28:
c3:df:98:6f:d3:68:0a:e8:b3:48:ac:0d:b2:9f:ea:ac:de:8f:
47:0a:fa:db:28:b5:c1:97:9d:a1:77:fa:99:c3:26:e4:6e:de:
39:e0:7d:38:c5:c6:e1:e8:1d:1a:70:5b:9e:16:8c:b3:40:09:
9f:c3:47:14:3e:ab:be:7b:9d:c3:b2:d8:71:33:89:27:aa:48:
b7:7a:a2:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org