Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Fl2FthEL9EVTmA5k1qCXNYYGvqo.roa
File: Fl2FthEL9EVTmA5k1qCXNYYGvqo.roa (raw, json)
Hash identifier: BIYUaB34Qfq8/MZZJgtdYYZAPuD1exT99EdA9cepEvk=
Subject key identifier: 16:5D:85:B6:11:0B:F4:45:53:98:0E:64:D6:A0:97:35:86:06:BE:AA
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 44EF
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Fl2FthEL9EVTmA5k1qCXNYYGvqo.roa
Signing time: Sat 19 Mar 2022 00:30:09 +0000
ROA not before: Sat 19 Mar 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 45.132.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17647 (0x44ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 19 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=165D85B6110BF44553980E64D6A097358606BEAA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f3:1f:2d:ff:fc:10:ae:76:70:b2:3c:a6:47:
22:24:e0:a7:51:0a:81:06:55:ac:d4:51:bb:13:a8:
b9:24:da:98:60:b4:ed:0a:59:fa:0e:36:89:35:0b:
cd:7f:94:07:75:23:77:68:0e:33:e1:f2:af:3f:22:
e5:9d:25:85:05:cc:53:79:73:61:38:a2:a5:ee:40:
25:97:f6:09:48:66:27:73:e5:25:55:a7:46:47:f4:
99:7d:e1:2c:ee:c0:d3:83:ff:bc:ad:f3:61:b1:71:
21:13:fb:c7:91:58:74:e6:b6:c7:f5:5a:c7:7b:72:
d5:05:70:76:43:6f:89:e6:dd:f9:06:d4:0a:88:45:
d6:8a:45:46:18:a2:2b:f7:f1:4d:68:d0:8e:c8:a3:
3a:66:44:5d:54:7c:b9:70:9c:29:2b:ba:33:3b:7d:
a2:26:e0:6c:a0:8e:e4:37:80:56:05:11:2a:59:61:
29:4e:ed:4a:d0:a1:95:8c:06:85:f0:b0:ab:07:e6:
1a:c3:ff:33:65:30:5b:9b:e5:36:a4:f9:a3:42:47:
51:8a:d8:e1:94:08:11:9e:e2:39:2a:0d:c4:57:94:
86:6b:7b:ba:ae:d8:a8:5c:de:a8:09:45:9a:b7:25:
a5:dd:af:4f:00:50:8b:67:29:cd:d9:ca:d8:19:a6:
e0:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:5D:85:B6:11:0B:F4:45:53:98:0E:64:D6:A0:97:35:86:06:BE:AA
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Fl2FthEL9EVTmA5k1qCXNYYGvqo.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:2d:c1:bd:5f:db:66:49:c7:04:64:55:82:eb:b7:73:6c:94:
b7:86:9b:50:f0:e4:b6:bc:f9:68:c9:38:5d:8c:fb:d1:7d:ad:
10:97:ef:fa:20:a7:ad:91:3c:40:86:1c:9c:8b:8f:3a:11:29:
00:fe:02:2a:8a:66:1c:34:16:a7:80:c0:38:3d:e7:97:5f:a3:
5f:cd:60:3e:a6:d7:17:c5:34:3b:56:ad:1e:4f:45:0b:77:62:
27:27:f0:e2:63:49:c4:77:bc:be:a4:cf:c3:da:f0:6f:02:45:
b2:3a:dd:59:97:bb:fa:fe:bf:b4:04:97:74:93:40:db:3c:3a:
46:2c:a6:d0:70:f2:fb:1a:b4:2f:b7:3d:d7:36:1e:26:89:9c:
74:90:5e:26:f7:e7:f4:88:50:bf:7c:8c:9e:5e:a6:9b:4c:1f:
b0:cf:27:6a:fe:3b:b8:34:8b:e4:28:57:8c:c4:3a:c8:9d:1a:
71:b8:af:a5:23:9f:a2:0c:5b:7c:d2:44:cc:af:2b:d3:d6:3d:
21:34:4e:19:e7:45:89:b0:cd:8e:32:26:06:29:b5:90:ae:a2:
e3:b8:1b:bf:77:7a:0e:de:09:df:26:c7:6e:3e:fa:44:6a:f2:
79:0c:2a:a2:f3:22:85:7c:a3:f7:c0:7a:f9:32:be:f0:97:72:
fd:8b:a3:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org