Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/I2OCEoQ39RM3OP57_VulihhHJDw.roa
File: I2OCEoQ39RM3OP57_VulihhHJDw.roa (raw, json)
Hash identifier: DQ9xpL76Kr2y1I+Ry0e74gAXcKeNDQpmOI13OgZGgNI=
Subject key identifier: 23:63:82:12:84:37:F5:13:37:38:FE:7B:FD:5B:A5:8A:18:47:24:3C
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4524
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/I2OCEoQ39RM3OP57_VulihhHJDw.roa
Signing time: Wed 23 Mar 2022 00:30:07 +0000
ROA not before: Wed 23 Mar 2022 00:30:07 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17700 (0x4524)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 23 00:30:07 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=236382128437F5133738FE7BFD5BA58A1847243C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e1:ce:89:6c:90:79:04:aa:c9:10:c3:4e:ff:
30:08:a0:cc:35:9f:64:17:01:e9:0d:35:82:05:fb:
ca:23:ec:27:11:0b:b4:e9:b8:3d:5b:b0:18:68:5f:
3c:d3:56:7c:4f:e4:0b:d9:b7:6f:e1:ae:71:f2:0f:
bf:24:18:84:37:fb:52:6a:88:dd:7b:05:2f:8d:db:
02:73:7d:18:8f:7e:d4:38:2f:ae:ff:cf:5c:d5:d6:
18:f5:ca:af:c7:82:5b:30:85:29:ca:11:e8:5e:7d:
6d:29:05:e0:d0:bf:b0:9c:f7:d8:bc:ee:d4:f1:eb:
3e:dc:d9:a4:12:c4:a5:20:f6:e1:de:22:20:68:da:
09:15:d2:82:7a:7f:bb:ca:3a:f5:7e:74:e4:1f:29:
aa:cd:fb:95:44:47:8e:39:ac:fd:4f:37:66:98:d6:
21:6f:65:c7:ba:7c:3a:41:2d:e0:6d:c8:58:8e:e5:
6e:82:91:1b:42:87:09:92:8e:d1:87:02:f2:ef:6e:
d8:ea:2c:d6:6f:df:75:38:04:95:b7:63:50:af:34:
9b:41:1b:04:5e:a4:29:ae:b1:19:44:c8:a4:a7:cd:
e0:bc:f3:e7:74:16:50:b2:ed:b8:6f:ab:02:76:88:
16:90:50:a8:31:b7:cf:3e:62:39:8a:74:5f:8f:6a:
77:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:63:82:12:84:37:F5:13:37:38:FE:7B:FD:5B:A5:8A:18:47:24:3C
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/I2OCEoQ39RM3OP57_VulihhHJDw.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:fd:b5:d0:f2:08:09:a3:6e:fc:1e:04:81:62:08:86:37:e8:
8f:3f:48:93:42:b6:10:9b:a6:c8:6d:ed:57:17:18:bf:d6:08:
7e:a6:46:b1:fe:b2:b8:1b:10:32:55:3c:d8:85:25:87:15:7a:
b5:9b:c7:0f:a5:05:ce:d4:c0:58:a4:52:a9:d6:c1:ea:e8:37:
3f:b9:3a:70:92:2e:59:ff:f9:3a:b1:36:23:4c:3a:ed:2e:2e:
86:96:43:ce:52:5a:1c:d8:3c:7a:41:f4:9f:8b:2d:92:d0:9f:
e4:fd:56:ac:a8:f6:57:75:bb:f4:f6:fc:5f:73:69:0b:fb:30:
ab:09:e9:5f:65:a3:20:71:89:f8:38:8f:68:ca:56:a7:67:63:
82:41:23:a2:2b:0e:c8:22:bb:0d:b7:df:9d:fe:0e:80:24:f2:
55:af:88:a7:bd:45:da:81:10:6e:17:a0:6b:87:60:73:56:5a:
a7:77:6c:5d:df:6d:cc:aa:e9:62:c5:f7:9f:4d:29:eb:7d:84:
ab:cd:f1:ca:9d:f9:26:1f:82:34:2d:8f:a8:03:40:89:bc:1e:
33:e0:ad:dd:24:54:f0:a0:16:d4:62:31:75:46:da:68:b9:36:
0c:23:0f:ce:54:be:ff:81:b2:3e:30:c1:0b:f1:03:aa:e1:9f:
00:40:84:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org