Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/K724nIPmDkJgINA6TFrhWtK7ukw.roa
File: K724nIPmDkJgINA6TFrhWtK7ukw.roa (raw, json)
Hash identifier: Q7QYAK1U88giSNj6x1AOnPWHB/RQ5DaEZXS8GSZmaTU=
Subject key identifier: 2B:BD:B8:9C:83:E6:0E:42:60:20:D0:3A:4C:5A:E1:5A:D2:BB:BA:4C
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 44F8
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/K724nIPmDkJgINA6TFrhWtK7ukw.roa
Signing time: Sun 20 Mar 2022 00:30:18 +0000
ROA not before: Sun 20 Mar 2022 00:30:18 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17656 (0x44f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 20 00:30:18 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=2BBDB89C83E60E426020D03A4C5AE15AD2BBBA4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ba:63:55:9e:06:b5:0d:c8:5a:f0:c5:54:c7:
8a:6f:42:7d:7b:67:0f:ef:69:bb:65:4f:c9:d2:fe:
d2:ea:1d:75:b7:51:c2:d2:fe:0e:4a:93:11:72:83:
5b:e0:0d:fc:11:1c:63:a8:6b:1a:0f:9f:ca:8a:c5:
1b:30:a4:94:1c:95:69:fc:12:7f:ac:fc:b2:76:14:
a4:e1:b2:72:f4:57:bb:05:6c:24:92:12:9f:18:11:
9d:7e:63:d4:27:bb:5e:b8:28:7e:e9:bb:a5:6f:1b:
f5:e8:cb:0d:0d:1f:13:1b:ef:1f:8a:a4:bb:74:fc:
2d:18:17:07:bd:e3:8c:87:78:fd:a3:07:99:4e:45:
ad:98:6c:a2:1e:f4:3f:4b:7b:50:aa:77:1a:31:29:
63:a7:0f:32:8b:ca:65:57:12:6f:b8:63:76:be:f0:
f0:8c:11:4c:f0:d0:44:b4:1b:83:f5:e1:58:e0:3b:
f5:aa:ec:8e:58:7d:63:1b:4e:c9:b2:3e:2d:61:75:
b9:b1:6a:46:ff:32:58:08:e7:5c:c6:62:e7:c8:6b:
45:cf:86:09:cf:ed:55:ca:94:73:0f:a5:c1:b5:26:
a9:82:c6:5f:31:48:88:7c:81:a5:75:78:74:8c:87:
03:29:51:c9:b4:c7:01:24:44:e6:e3:75:98:8b:db:
bd:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:BD:B8:9C:83:E6:0E:42:60:20:D0:3A:4C:5A:E1:5A:D2:BB:BA:4C
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/K724nIPmDkJgINA6TFrhWtK7ukw.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:23:d7:e6:0c:3f:a5:41:9e:4f:f5:93:be:87:c0:11:fb:58:
54:1a:4a:d9:3a:b0:c7:9d:1c:e7:a8:e1:72:08:04:b7:89:ca:
56:97:e7:2b:e3:ec:1d:d3:57:53:f1:2c:15:53:ac:83:bf:52:
87:ed:84:e0:8e:25:99:dd:e9:b1:2a:f9:21:b8:17:36:b5:4f:
1b:a6:49:6e:22:27:06:02:7f:ec:5d:91:0d:41:d3:25:ce:d1:
1a:1f:5b:6a:5e:2c:37:81:3b:a4:ac:52:22:a9:4c:6a:b7:0e:
03:80:bd:59:4b:60:75:66:5e:1d:5d:93:95:2f:41:0c:18:cf:
a8:97:61:59:68:f7:c9:7e:51:09:01:8d:65:75:68:2f:b6:84:
b1:6a:1f:3d:73:75:be:8f:b6:16:5b:97:86:57:fc:f5:ec:54:
cc:e5:54:e3:d4:6e:90:e9:5f:e5:62:e7:7f:9c:4c:2d:94:93:
58:04:4e:8d:35:a4:93:59:fa:8a:d6:77:c2:2b:d7:d1:d9:5b:
d0:e7:c5:dd:ea:d2:07:a7:5a:88:cd:ea:87:d8:68:d6:17:da:
b0:26:a0:3c:48:3a:90:97:fb:72:4b:2b:36:ec:dc:05:09:02:
7a:56:e0:dd:78:2e:e7:9a:c9:28:40:f6:40:93:b3:5b:b2:fd:
99:d4:f5:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org