Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Jgh3naBX-XYNDczyPHNFlCv3DRU.roa
File: Jgh3naBX-XYNDczyPHNFlCv3DRU.roa (raw, json)
Hash identifier: tsXzZJJ3yyDnFnmXMGIU+0It0WbYm6dsZWhXgyLAKDI=
Subject key identifier: 26:08:77:9D:A0:57:F9:76:0D:0D:CC:F2:3C:73:45:94:2B:F7:0D:15
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4737
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Jgh3naBX-XYNDczyPHNFlCv3DRU.roa
Signing time: Sat 30 Apr 2022 00:30:08 +0000
ROA not before: Sat 30 Apr 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18231 (0x4737)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 30 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=2608779DA057F9760D0DCCF23C7345942BF70D15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0d:be:c5:9b:6d:07:1a:87:71:6b:fc:37:30:
39:3e:0d:e6:d3:dd:09:ec:b5:22:19:7e:34:7f:28:
60:01:7d:60:d9:60:76:f2:b6:ef:9d:83:ab:ef:a7:
01:84:26:7c:5b:1c:4d:a3:d4:d3:99:50:a6:57:90:
7e:a1:71:ca:90:37:d4:c5:1c:38:08:db:6e:2a:90:
12:25:02:2b:c1:9d:e0:f4:23:76:e9:90:fa:d0:33:
01:11:35:b6:88:e4:52:76:35:96:76:7a:7a:ec:92:
50:6d:b3:8b:36:36:54:e9:01:3f:d9:2e:63:db:9a:
d1:9c:68:4a:60:7f:31:7b:9a:88:69:59:d7:4b:61:
60:43:d3:93:12:0b:2a:79:ae:5d:95:30:ea:81:55:
56:84:7f:14:a8:23:57:6a:10:27:91:1f:4d:73:e1:
77:44:b8:15:96:7f:84:dc:33:fa:de:12:73:2d:ac:
12:cf:96:50:4c:04:d3:06:74:a3:97:53:bb:f4:df:
3b:9e:a8:05:e1:2a:47:02:af:92:3d:df:98:03:33:
75:c2:9c:25:95:35:98:99:93:0f:cb:43:63:0c:b2:
f0:bd:a0:6c:25:eb:e9:b0:23:25:66:db:e8:48:77:
05:a7:34:8a:f9:ab:17:1d:9f:e8:d7:19:ba:f7:72:
c0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:08:77:9D:A0:57:F9:76:0D:0D:CC:F2:3C:73:45:94:2B:F7:0D:15
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Jgh3naBX-XYNDczyPHNFlCv3DRU.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
96:83:29:d4:4c:25:d3:e9:f8:98:e1:47:75:db:18:fb:b9:22:
36:5a:2c:64:67:cc:97:70:02:df:3b:e6:8a:3f:0c:52:4e:97:
f8:68:fb:1c:d6:e0:d2:a2:42:9f:79:34:dd:5a:95:21:8d:29:
9c:6f:e2:98:30:2b:52:d5:9d:5b:eb:db:d1:1e:1f:bc:79:ee:
52:41:81:46:8b:37:6a:e4:dc:83:3f:e4:20:da:53:85:bc:fd:
6e:60:a9:bd:cb:e5:1d:10:2e:09:c2:dc:46:4b:92:e1:2e:7b:
99:cf:4c:b2:77:f4:3a:46:55:c9:bc:9b:2f:6a:83:cd:81:a7:
86:1f:18:e4:e0:d2:52:cc:5c:28:a8:fb:6d:a2:f3:25:dc:cd:
fc:9b:a6:bf:d0:a3:91:d3:a8:c7:94:16:36:93:1f:f4:3e:a0:
c4:e1:1d:b9:61:fb:fe:8c:a4:bc:b2:7c:bf:b9:f5:6c:94:fb:
af:39:b2:a1:0e:a6:31:62:1a:31:43:21:0e:07:2f:a4:ab:ed:
0d:fd:aa:94:40:77:b7:e1:23:c9:43:6f:8a:5e:82:32:10:b8:
d2:90:c4:5a:9d:e5:68:d7:40:d0:00:6e:fb:ce:d4:5d:60:cc:
94:f9:fc:1b:19:24:de:69:b9:a9:66:55:0f:45:88:f3:c7:9d:
64:81:6a:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org