Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/GOHobS8MoiY6aF2aurIdLY9UNmY.roa
File: GOHobS8MoiY6aF2aurIdLY9UNmY.roa (raw, json)
Hash identifier: fXrwHrdlKrjye+X9J1kziDYXfwmod+gshri1Te6gGuo=
Subject key identifier: 18:E1:E8:6D:2F:0C:A2:26:3A:68:5D:9A:BA:B2:1D:2D:8F:54:36:66
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4544
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/GOHobS8MoiY6aF2aurIdLY9UNmY.roa
Signing time: Fri 25 Mar 2022 00:30:09 +0000
ROA not before: Fri 25 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17732 (0x4544)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 25 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=18E1E86D2F0CA2263A685D9ABAB21D2D8F543666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:c4:58:fc:95:63:d6:23:a0:38:45:48:7b:fd:
21:21:6f:4c:42:80:e1:8b:b9:a9:ea:2d:1c:0e:00:
e6:9e:6e:e0:52:a8:3b:09:84:e1:77:7a:73:95:0b:
90:86:00:cf:b6:49:7a:10:11:81:2e:e4:1c:c6:3e:
2f:c8:5b:ac:85:b9:13:37:f3:4b:cf:0a:9c:bf:fb:
dc:c4:69:e5:88:cc:1e:ca:bc:d3:69:88:7e:b8:2d:
ef:2b:af:dd:e9:c3:ee:32:e6:03:c0:16:4d:31:6c:
4b:24:85:eb:a5:f4:22:14:28:43:06:15:d6:4c:f9:
d3:79:32:a4:40:f4:53:34:0e:2f:fe:c5:d4:bc:98:
f9:d3:e8:fb:e5:83:b1:96:69:67:1d:39:be:3f:cf:
e4:9f:50:6d:2c:2b:99:22:fd:ee:45:49:6d:0c:cd:
12:77:d4:ad:fb:3d:e1:20:a7:c8:d4:21:04:6d:11:
2b:2a:d5:e5:cc:69:12:28:9f:24:f4:c7:57:2e:a5:
51:d6:c3:0f:46:9f:b0:9b:15:35:4d:73:1d:d7:e8:
25:a4:eb:a1:57:70:44:eb:a8:59:6e:fa:91:4a:65:
c8:ee:5e:e0:58:d5:12:3a:7c:e1:83:6a:30:9d:a6:
ae:a3:34:d6:0f:93:fc:b0:22:94:c8:c1:b2:1c:8c:
13:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:E1:E8:6D:2F:0C:A2:26:3A:68:5D:9A:BA:B2:1D:2D:8F:54:36:66
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/GOHobS8MoiY6aF2aurIdLY9UNmY.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:4d:fa:fa:18:82:70:70:87:c5:05:80:07:88:8d:91:a4:ca:
71:f9:a9:8b:dd:fd:e2:55:fc:80:fb:e4:32:1b:cf:e0:6b:33:
77:98:46:73:18:bc:54:c8:89:bf:03:b1:aa:17:e2:e2:a7:28:
b2:20:14:32:1c:fe:5f:2e:9d:ea:f8:4e:3e:5b:cf:0d:01:9a:
34:14:45:cd:0c:37:ee:f1:9d:e3:dd:97:2b:5b:24:7a:06:a9:
68:8b:1e:79:68:8b:4c:c8:2c:ea:30:12:39:54:cc:33:3b:e9:
eb:db:3b:97:0a:bf:fd:78:a5:96:49:46:fc:58:c6:65:d9:49:
cc:a1:d3:51:a2:a5:77:3d:dc:ce:ed:49:26:2a:02:08:e9:67:
61:25:d3:0e:3c:6f:c0:35:bd:56:b3:79:c3:b4:7d:4e:89:55:
cb:7d:33:3b:e3:2f:ab:b4:64:fb:57:f3:f4:80:20:67:43:ba:
1a:7e:67:bf:4f:a9:f4:e4:b7:5a:27:42:a9:20:ec:bd:7b:a3:
17:40:a7:44:de:4c:e0:f0:fa:f9:47:37:f8:84:61:97:7b:8a:
75:d1:a6:15:74:75:ef:1c:86:7a:8c:1e:97:42:92:67:de:37:
4d:52:8c:ec:4d:3d:23:48:61:4e:1e:60:a6:a8:c6:b0:f7:fe:
e3:6c:55:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org