Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Kxuo-ALfuEIWongvx2rq6oQ6Dwg.roa
File: Kxuo-ALfuEIWongvx2rq6oQ6Dwg.roa (raw, json)
Hash identifier: y2mgqkV0Qr83KoXaXunNglDYlfYFeZ21fw5JxcxfIoI=
Subject key identifier: 2B:1B:A8:F8:02:DF:B8:42:16:A2:78:2F:C7:6A:EA:EA:84:3A:0F:08
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 45F7
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Kxuo-ALfuEIWongvx2rq6oQ6Dwg.roa
Signing time: Thu 07 Apr 2022 00:30:08 +0000
ROA not before: Thu 07 Apr 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17911 (0x45f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 7 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=2B1BA8F802DFB84216A2782FC76AEAEA843A0F08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a4:b6:d8:99:72:73:24:06:8c:f8:0f:a2:61:
6f:b6:06:4d:ab:a6:ee:f7:a0:8c:72:dc:80:df:72:
a7:00:84:b9:92:17:af:dc:bf:72:0a:cb:46:f2:22:
23:ea:00:1b:a9:25:96:f4:7c:8a:71:db:9c:ad:76:
5a:87:61:91:36:be:11:03:3c:89:41:64:4f:85:e3:
0f:43:40:ab:53:d3:c1:02:00:e5:2a:c0:73:ea:ce:
3b:d1:86:ca:d3:20:09:89:f3:74:2f:0f:1b:bd:d0:
c3:2d:2a:38:a6:34:85:a4:7d:1c:ee:4d:26:5e:4c:
ea:a8:d7:d8:9e:24:da:9a:3f:d8:9d:0f:e4:2c:d7:
25:c6:31:05:b4:42:8d:2c:63:18:eb:69:e0:43:a5:
c4:fd:14:b6:e6:e3:0c:57:b5:37:dd:e1:34:77:9d:
52:e2:b6:9a:4e:33:f5:82:c2:fe:20:4b:27:99:03:
fb:f9:66:d1:b1:cd:32:b7:dc:b9:3d:48:1b:87:6c:
23:84:68:4e:4a:55:a1:c6:47:b4:be:5b:2c:e9:6a:
62:d9:99:68:9b:8e:ee:d8:1b:a2:da:27:e1:96:ff:
47:92:5b:37:a4:f4:cc:90:7c:2b:03:e9:f5:3f:8c:
80:91:43:e2:92:04:8a:46:cb:ff:2f:57:50:50:86:
82:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:1B:A8:F8:02:DF:B8:42:16:A2:78:2F:C7:6A:EA:EA:84:3A:0F:08
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Kxuo-ALfuEIWongvx2rq6oQ6Dwg.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
22:ae:b9:1d:71:f9:a0:a1:6e:f2:0c:70:ef:73:49:6b:0a:aa:
ed:d4:9f:e3:d7:1e:05:b6:33:92:87:5f:35:d9:93:35:c1:8c:
a4:48:cf:7d:15:64:f7:b5:d8:86:8e:c1:bf:b4:62:fb:1a:11:
a4:21:bb:48:92:05:fd:f4:24:68:a8:9c:af:e0:86:09:c8:b5:
ee:a9:a7:71:f8:13:61:5e:9c:33:ff:89:e1:cf:66:83:d6:a5:
4c:3e:4a:ed:c7:0b:f1:55:7d:aa:f8:01:a9:bc:fd:eb:87:42:
d3:15:b0:9c:23:ae:ff:5b:19:d0:05:84:c3:04:c3:70:8e:cd:
5c:3f:bb:26:e9:df:ef:0a:19:f3:5e:ea:d0:68:f1:83:a5:56:
b3:c7:21:3a:81:90:ac:03:f6:99:8e:4d:1c:6b:a4:24:59:7e:
1a:23:4d:ae:51:a4:66:2d:d9:b0:e2:c4:a5:6c:8f:37:44:ba:
94:3d:cf:6e:99:a0:05:57:5b:a9:b0:49:4b:00:b3:48:2e:8e:
f9:51:25:4b:21:fa:84:9f:96:c5:8d:d7:8e:64:a4:b8:4a:11:
02:bc:7f:4b:2c:e8:78:26:a6:2e:8f:e3:cc:62:bc:d2:c6:3a:
44:b9:d6:c3:4f:eb:e5:63:05:ad:50:e7:17:34:2a:5c:40:fb:
50:4d:d6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org