Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/O2lL8F2IgBBnjZ3eh10ZQo-QHtE.roa
File: O2lL8F2IgBBnjZ3eh10ZQo-QHtE.roa (raw, json)
Hash identifier: YEN7pjhlt6zirCR0E4bjFSV1miBdSmBWkV0937DhT9s=
Subject key identifier: 3B:69:4B:F0:5D:88:80:10:67:8D:9D:DE:87:5D:19:42:8F:90:1E:D1
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 42B3
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/O2lL8F2IgBBnjZ3eh10ZQo-QHtE.roa
Signing time: Sun 06 Feb 2022 00:30:05 +0000
ROA not before: Sun 06 Feb 2022 00:30:05 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17075 (0x42b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 6 00:30:05 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=3B694BF05D888010678D9DDE875D19428F901ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:91:e5:00:40:64:db:f0:07:6f:26:59:4a:a5:
eb:2a:2b:bd:8e:54:f1:2e:27:fa:cd:41:4f:5e:87:
60:e7:89:1d:de:90:8f:98:4e:4c:83:31:71:31:bd:
ec:ae:8a:91:94:fc:1a:c6:be:a9:df:56:1e:d5:97:
71:5f:60:d7:36:a6:97:28:98:b4:e3:e4:a4:e0:74:
ef:e0:57:4d:36:03:71:89:2a:85:18:b5:5c:04:04:
df:a1:9b:9d:c9:53:2e:e5:15:b9:fa:ae:01:65:25:
5a:c1:30:01:0a:f8:03:19:1a:cb:34:53:86:22:a8:
11:8c:ea:e6:d0:2e:52:c4:d7:2b:54:0c:48:03:c8:
89:41:85:87:c0:a3:1a:c2:aa:b4:83:8b:ef:87:9a:
7e:90:39:73:3f:65:6b:31:57:a4:6f:01:48:1d:63:
d1:7d:ab:8a:0f:ed:d1:c3:72:b1:22:4b:86:1e:e9:
ef:0b:9f:00:ec:af:b5:cf:63:ab:cb:e0:be:26:69:
60:43:33:98:c1:c5:de:6b:42:c5:c1:cd:c1:c3:67:
d1:4b:f3:bd:2d:61:57:1a:4b:fb:02:66:8e:1c:7e:
12:a2:50:49:04:e1:a8:9b:13:92:91:3d:f0:28:66:
95:54:c2:a3:32:4f:06:ac:64:6a:2d:e6:7b:83:1c:
dc:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:69:4B:F0:5D:88:80:10:67:8D:9D:DE:87:5D:19:42:8F:90:1E:D1
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/O2lL8F2IgBBnjZ3eh10ZQo-QHtE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
28:9a:e9:3d:5b:07:c6:67:93:2f:f9:7b:82:35:8e:9b:f1:4d:
72:ca:ae:db:fa:f1:b0:4c:66:74:5e:af:a2:39:45:f5:aa:38:
a6:82:e5:7e:1d:2f:7d:2d:25:68:bc:5d:b0:4b:42:a2:5d:87:
fe:a1:69:f0:af:fa:23:88:9d:6b:c7:54:43:93:d9:4e:76:2c:
34:68:d4:8d:4a:6f:f5:b8:03:0c:a1:b0:7c:89:7d:cd:e3:2e:
18:a8:1d:c3:7d:fd:ba:1c:4b:c6:5e:4c:e4:1e:d3:36:8b:e2:
87:65:6e:3f:59:12:43:ed:d4:b7:8b:cc:7b:e4:44:ed:66:4f:
96:65:8b:ce:cf:53:bf:21:c9:9d:7d:5b:b1:f8:c6:a0:4b:af:
15:21:57:c9:57:54:65:d3:7a:61:e2:4c:6f:e3:48:1d:d6:75:
5f:40:4c:2f:d0:bc:a8:d1:0c:20:c6:3a:85:03:8a:d7:af:7d:
d7:72:e6:06:28:8e:08:21:90:f1:a6:ff:39:b8:8c:2e:6d:71:
9e:a7:98:66:d8:01:26:c8:a9:2a:68:68:ad:75:2a:75:63:6b:
f5:55:c9:d9:43:87:55:6b:29:d8:f5:00:09:bd:08:94:04:19:
6c:c6:d4:7e:06:b9:c8:af:4a:0c:3f:2d:37:46:9f:93:6c:ac:
45:e3:be:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org