Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/MCe-HuxiR3Fzzl3uzGmALEsEKSg.roa
File: MCe-HuxiR3Fzzl3uzGmALEsEKSg.roa (raw, json)
Hash identifier: qr29muilSs1hxqbPPs9lpKaeSXIpQSa/PuITsgtxP3M=
Subject key identifier: 30:27:BE:1E:EC:62:47:71:73:CE:5D:EE:CC:69:80:2C:4B:04:29:28
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4839
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/MCe-HuxiR3Fzzl3uzGmALEsEKSg.roa
Signing time: Wed 18 May 2022 00:30:07 +0000
ROA not before: Wed 18 May 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18489 (0x4839)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 18 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=3027BE1EEC62477173CE5DEECC69802C4B042928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:42:d6:d0:d6:ae:1f:3f:f7:c1:fe:96:c4:37:
98:15:c2:3c:d1:f4:00:fa:6a:bb:fd:26:b3:a6:6b:
ec:01:1f:b1:58:d0:6f:41:af:f3:c3:58:b3:68:0e:
40:05:dc:9f:66:39:d7:f7:33:9b:25:1c:33:5a:ae:
25:cc:7c:e6:8c:74:a2:32:64:b3:33:22:62:14:e4:
7e:3f:3e:61:a8:ed:0c:c5:53:c0:b4:32:07:aa:34:
08:4f:a8:c1:3e:88:19:b8:ab:aa:3b:4f:76:71:a5:
7b:5a:b0:04:fe:5e:5e:ab:e8:b3:00:2c:b8:db:6a:
22:97:ef:e2:03:1e:95:53:60:f4:9b:8b:75:51:ac:
d1:fd:e5:24:2c:b9:1f:29:64:7f:94:87:d5:a1:b4:
24:61:2c:fb:59:1b:79:00:b9:a7:16:6c:ef:fb:21:
63:62:f8:ca:7f:93:0a:56:dc:f5:f5:ee:16:99:de:
11:45:fa:51:4e:d2:fc:60:fe:49:e8:46:15:55:33:
b9:39:66:5d:cd:a6:9e:bf:5a:0a:29:00:9e:8e:a9:
75:ac:ad:56:07:5a:aa:bd:3e:fc:ba:b9:9f:df:78:
89:0d:b2:34:d5:22:2f:1b:65:c9:49:e7:f1:3f:de:
d5:01:c3:10:f6:d6:19:99:91:cc:69:b7:37:e8:46:
1d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:27:BE:1E:EC:62:47:71:73:CE:5D:EE:CC:69:80:2C:4B:04:29:28
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/MCe-HuxiR3Fzzl3uzGmALEsEKSg.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
51:d7:27:f2:18:87:ba:11:10:7b:2a:80:da:bd:1b:50:33:ca:
16:5e:3b:1f:1d:3b:55:9c:6f:68:fb:a4:e2:60:ef:3b:d5:9e:
9e:d4:76:b0:d2:75:bb:c4:8f:b3:f5:96:21:12:04:f2:8a:67:
be:bd:39:76:84:38:51:7d:de:66:7b:d0:c3:05:b0:37:b5:c2:
d3:45:b1:ed:19:63:52:b4:f4:f8:9c:40:0a:19:dd:15:d2:ee:
f3:34:b5:12:aa:a2:6e:4f:b1:c9:13:5d:b6:1a:73:2a:fa:fb:
a5:81:33:09:0d:f2:d4:bf:54:cd:0a:a8:3a:b4:c0:0d:dc:52:
6f:00:30:d0:9f:90:09:41:62:c9:a8:88:26:1a:50:f7:56:0e:
32:3e:a9:6d:a2:d9:4f:9b:d6:cb:47:3e:65:ae:0c:32:0d:e3:
41:1f:54:58:05:47:46:b1:5d:ea:37:55:8c:64:45:43:23:98:
7d:f9:13:6b:fa:16:7c:66:ee:f6:2f:28:3e:38:f5:b9:2a:0f:
60:76:96:2e:bb:ed:38:d8:75:d5:fd:e5:23:7f:d4:1f:28:67:
e5:7e:be:fd:a7:e3:de:f0:73:3f:32:f9:02:52:18:7e:ec:14:
3c:bc:1b:d4:53:e0:9c:7f:ee:e7:61:37:7e:0e:c1:40:68:31:
c6:1e:4a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org