Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/MD7iRFbWc3aKDOYGxESdxs62HBU.roa
File: MD7iRFbWc3aKDOYGxESdxs62HBU.roa (raw, json)
Hash identifier: oIujOQlRQQqqCs7JidaECEoOna780a9DyD7viQbgboA=
Subject key identifier: 30:3E:E2:44:56:D6:73:76:8A:0C:E6:06:C4:44:9D:C6:CE:B6:1C:15
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 43E7
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/MD7iRFbWc3aKDOYGxESdxs62HBU.roa
Signing time: Mon 28 Feb 2022 00:30:10 +0000
ROA not before: Mon 28 Feb 2022 00:30:10 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17383 (0x43e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 28 00:30:10 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=303EE24456D673768A0CE606C4449DC6CEB61C15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:28:1f:36:ed:31:ff:9c:63:82:f7:f2:24:45:
42:b3:b4:4d:3c:aa:77:34:83:d2:49:4d:9b:0a:98:
68:16:a1:29:68:79:df:81:2c:5a:42:85:ee:14:7f:
a8:dd:a9:44:83:96:49:a2:7f:87:7f:e4:4f:d5:48:
3c:85:7f:2c:92:26:0a:66:f8:1c:e2:da:0b:f3:97:
b3:02:d9:01:dd:94:e8:f7:cb:bb:f7:ed:f0:11:91:
2a:c8:0d:8b:7e:17:2d:0c:0e:73:21:8e:84:2d:d2:
7c:ee:95:c0:35:60:14:f9:e5:ce:66:3b:9f:c3:f6:
5c:56:90:27:91:2b:0b:9e:3c:f8:c4:44:b6:79:ff:
af:9f:2f:06:43:51:dd:ab:a7:f1:55:d2:f0:1b:7d:
ab:f3:1e:55:38:08:d7:88:d2:f4:65:26:a1:57:92:
08:47:ab:98:ec:9d:cf:26:c1:c5:19:6a:ea:16:fd:
d7:4b:f3:be:74:79:76:e8:67:12:83:b8:a0:9a:12:
a4:ca:49:fe:78:45:16:50:31:fe:d1:d9:5d:24:b4:
90:23:96:55:f2:c8:61:32:2e:0d:c7:3c:a7:bc:0d:
1c:26:6f:bb:0c:c1:f8:2a:7b:cd:f8:52:37:05:cd:
0e:44:f0:90:29:b2:2c:5f:e7:53:16:84:07:3d:da:
1d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:3E:E2:44:56:D6:73:76:8A:0C:E6:06:C4:44:9D:C6:CE:B6:1C:15
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/MD7iRFbWc3aKDOYGxESdxs62HBU.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
13:ed:b9:67:35:08:32:00:a2:82:a6:9e:2f:77:43:c6:93:14:
e0:24:35:0c:e2:0b:e7:49:60:60:9d:37:5f:19:4d:64:19:7d:
48:4e:af:76:07:5f:95:e2:7c:93:c6:0d:53:af:92:af:b9:1c:
72:57:a0:7d:2a:5a:78:9d:02:42:e4:65:35:bf:27:42:af:d3:
eb:90:ca:2d:ab:f6:0a:58:29:3e:49:07:7d:ff:8d:d5:06:d1:
2a:7d:27:71:d2:93:ce:2b:52:39:62:77:f5:b8:89:a3:5c:b4:
05:94:92:9e:5c:ad:87:90:73:76:18:2b:e4:d5:70:e6:19:16:
cb:35:c8:b2:b6:33:5b:47:2e:e8:4e:da:0e:65:1e:7e:10:39:
a2:76:39:4c:91:a9:39:2b:32:01:38:c2:e1:57:3b:e7:4b:b3:
73:08:b5:f1:e6:a1:62:3f:1a:a6:2b:b5:d2:cc:64:85:22:8a:
d6:6e:a0:6b:96:55:35:d9:93:09:f0:54:28:69:13:8e:e9:53:
05:d4:bd:e9:b0:e3:9e:4d:64:bb:37:ed:c0:a0:eb:36:d5:b8:
f3:9e:cb:f1:62:fe:07:95:7e:06:e5:d0:f9:a8:a6:bb:d2:3f:
75:0f:89:c4:c9:25:83:52:b9:2e:a8:be:22:75:fb:37:ee:2a:
af:77:d7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org