Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/OGQDeyXtXa7FUYmeMVRvnqLXFzE.roa
File: OGQDeyXtXa7FUYmeMVRvnqLXFzE.roa (raw, json)
Hash identifier: VrbfFtt7lM4ImD4r1RQIP9yAfr0Y16vHgDL6se61nvM=
Subject key identifier: 38:64:03:7B:25:ED:5D:AE:C5:51:89:9E:31:54:6F:9E:A2:D7:17:31
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 44CE
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/OGQDeyXtXa7FUYmeMVRvnqLXFzE.roa
Signing time: Thu 17 Mar 2022 00:30:09 +0000
ROA not before: Thu 17 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 45.132.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17614 (0x44ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 17 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=3864037B25ED5DAEC551899E31546F9EA2D71731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c8:93:e7:c7:6e:26:9d:1e:90:d7:5b:c5:fd:
78:f8:62:4c:92:72:03:45:3d:9a:aa:b6:33:7f:82:
49:b0:0b:f7:ff:21:ea:5a:be:dd:31:20:bf:7b:97:
42:a9:25:3d:79:21:70:15:53:ab:7c:22:a5:d8:ef:
5d:41:b3:97:c3:3c:e8:5a:6f:9d:18:79:17:98:18:
00:ca:ba:11:b2:93:e5:b8:b0:bf:2c:ff:03:f7:bd:
5c:0a:0f:03:7e:51:ae:6d:4f:f4:b3:96:3a:12:44:
b7:72:bc:6f:2c:d6:2b:fb:ae:f0:21:f2:8b:1a:70:
49:f5:ee:2f:9e:dd:39:8b:6b:4e:46:1d:75:8e:67:
0b:eb:1f:32:0a:f5:8d:a7:f0:de:8e:f9:6b:a7:95:
28:50:b3:e3:63:2c:97:1a:e2:79:a3:73:aa:6c:7f:
06:8d:8a:38:b2:08:ac:5a:48:ca:d4:c7:b4:39:57:
c2:0d:74:65:e7:e3:b6:a6:c0:89:fc:fc:e0:ca:7e:
1c:f2:7a:dc:7e:65:67:67:b5:4c:8c:0e:42:cb:54:
df:3a:36:5c:27:98:c4:51:46:6c:90:ea:df:b2:66:
f5:6c:eb:81:bb:54:7d:b1:69:13:fe:ed:76:cd:ed:
80:35:12:9e:14:9a:cd:3c:01:df:c5:7c:60:b7:af:
26:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:64:03:7B:25:ED:5D:AE:C5:51:89:9E:31:54:6F:9E:A2:D7:17:31
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/OGQDeyXtXa7FUYmeMVRvnqLXFzE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.191.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:b7:69:6e:3e:d0:8b:78:dd:aa:0f:df:20:82:e7:5c:24:87:
4b:0f:07:73:2f:d3:67:91:63:7d:b1:95:ad:37:84:32:03:b5:
92:05:19:28:4b:21:2d:f8:b5:74:e4:46:2b:5b:18:85:f8:70:
86:9c:a2:cd:23:7d:3b:7b:00:35:e6:19:7f:04:c4:2e:dc:b1:
12:f0:22:76:62:0c:3a:a5:81:fa:dd:a3:17:2f:de:f8:dd:18:
24:6c:d7:54:ab:a8:c6:96:fc:b9:2e:24:00:3d:b7:c3:0f:d5:
07:cd:23:20:81:89:04:69:e5:73:88:83:db:1a:9e:63:33:e0:
0f:f5:3b:b7:44:d8:af:38:1a:dd:53:20:9c:e9:8c:d9:80:18:
df:50:6e:8f:78:20:6a:8b:97:5b:7b:a4:1a:55:06:70:39:d2:
98:7d:fc:9c:01:40:22:39:1a:74:7f:ca:4b:36:d5:b3:e2:8a:
3d:5e:97:37:7a:71:20:1b:06:d7:c4:54:96:16:88:c3:65:7c:
1e:2d:96:01:77:12:09:9c:8d:da:ef:e0:d3:2b:94:e4:6a:33:
95:0d:47:4e:33:9f:2e:f4:86:51:7b:38:54:de:10:56:3f:7a:
0d:2c:74:74:10:01:57:fe:dc:47:04:d7:1b:7c:1c:ca:25:eb:
91:2f:e5:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org