Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/OSsQRtftegX56cP47RP57N3Si40.roa
File: OSsQRtftegX56cP47RP57N3Si40.roa (raw, json)
Hash identifier: cdRzT6055CpzdJPIQK109cLp3kCXP7Aycy3pNoi5hG8=
Subject key identifier: 39:2B:10:46:D7:ED:7A:05:F9:E9:C3:F8:ED:13:F9:EC:DD:D2:8B:8D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4508
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/OSsQRtftegX56cP47RP57N3Si40.roa
Signing time: Mon 21 Mar 2022 00:30:06 +0000
ROA not before: Mon 21 Mar 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17672 (0x4508)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 21 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=392B1046D7ED7A05F9E9C3F8ED13F9ECDDD28B8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:91:5a:6d:9f:a6:f7:65:f5:1d:3e:9c:85:ed:
24:e5:d3:21:d3:5c:0a:5b:17:19:92:1e:41:34:38:
31:de:a3:07:35:2a:c2:8f:4b:17:8e:29:d1:5e:2d:
41:70:b8:fb:9d:bb:4b:4c:a6:2c:58:88:60:3f:1d:
75:8e:a9:9a:0a:ef:de:4a:6d:e3:66:e8:3f:f8:68:
ef:95:be:78:f9:03:0c:41:26:5c:be:bd:be:9f:fd:
6b:37:34:e8:76:b8:45:6c:26:b1:3f:c7:bd:f6:09:
c2:88:f8:e2:c7:0c:04:24:4d:4e:47:a2:36:91:85:
c5:06:56:d5:b8:b7:b7:3d:0e:3e:40:1a:df:1e:97:
a1:08:db:bb:a5:d1:ed:9b:a2:03:cd:1b:ce:62:13:
9a:73:37:a2:ac:24:40:c7:fa:70:8b:7d:34:46:c3:
ce:68:c7:25:2f:f3:f2:b8:dd:4a:38:99:81:7f:29:
09:97:89:6a:cc:dc:ef:46:b9:aa:fc:32:9d:52:89:
dd:2f:39:c2:c5:06:ab:45:6b:8f:62:45:b5:32:3f:
25:ab:e2:47:bc:60:bf:1f:ec:a1:c8:87:ad:39:b6:
7e:0f:d2:5b:29:51:93:14:ef:93:c9:65:f8:6a:9d:
e2:bf:2c:36:3a:40:33:95:55:5d:e5:a6:2f:f4:e6:
68:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:2B:10:46:D7:ED:7A:05:F9:E9:C3:F8:ED:13:F9:EC:DD:D2:8B:8D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/OSsQRtftegX56cP47RP57N3Si40.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:bb:11:34:1c:f9:40:c9:cf:df:9d:f5:2f:dc:4d:4e:96:d5:
50:5a:77:ec:3f:d0:23:0d:90:a6:23:d4:c2:2c:55:0c:a7:6c:
08:98:3f:8f:98:91:94:94:d5:46:05:05:9a:52:17:a0:6c:95:
8f:53:ba:9f:39:47:22:ab:90:44:88:c9:8f:46:6c:62:f6:4a:
14:53:06:d7:10:17:16:12:56:6e:23:09:b1:37:9f:55:67:8d:
71:fd:68:37:b7:25:4d:7f:79:fb:bb:d6:3f:15:aa:d4:c0:1e:
29:cd:3c:d9:d5:d0:07:ba:89:0c:42:fc:66:17:64:61:49:25:
91:45:43:64:fb:d6:69:60:06:b7:5b:10:8b:3b:22:d2:a6:23:
6d:61:34:bb:91:ea:a6:60:52:d9:fa:fe:6f:f0:d6:58:5c:c6:
aa:dd:14:ef:94:c2:24:9a:f3:e8:17:b5:5d:d8:fb:91:9e:b0:
41:58:7b:e6:4e:93:3d:b8:0d:9f:42:b9:69:e4:28:8c:58:1a:
02:1d:37:81:c8:86:b6:62:17:b1:dc:64:ad:99:1d:99:72:04:
1a:8d:0b:7a:da:9f:24:ab:3e:66:ed:76:ad:fb:33:bc:0b:ae:
c4:01:12:21:87:90:03:78:c7:ee:4e:bc:88:8c:fb:9d:b8:1d:
b3:5c:9e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org