Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/PJUbdrjNePuP5KMNnzxLVaZtXEA.roa
File: PJUbdrjNePuP5KMNnzxLVaZtXEA.roa (raw, json)
Hash identifier: CSOxSgaL1xNPQJKyF/1HvAmtOuqVIy7wlAL1H4ZPMuc=
Subject key identifier: 3C:95:1B:76:B8:CD:78:FB:8F:E4:A3:0D:9F:3C:4B:55:A6:6D:5C:40
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 48A2
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/PJUbdrjNePuP5KMNnzxLVaZtXEA.roa
Signing time: Thu 26 May 2022 00:30:15 +0000
ROA not before: Thu 26 May 2022 00:30:15 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18594 (0x48a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 26 00:30:15 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=3C951B76B8CD78FB8FE4A30D9F3C4B55A66D5C40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c5:d3:6a:05:66:ae:75:27:5f:dd:b2:f0:16:
02:fe:6e:b0:c6:9e:0e:00:cf:6c:fd:85:7d:fd:04:
24:6c:79:15:5e:42:6f:02:e5:2c:9f:87:de:3e:15:
d7:e2:0a:4d:ee:2c:ae:68:ae:ab:08:e7:3d:3f:ba:
d0:71:a2:78:bd:65:16:82:36:5e:90:72:37:ae:98:
dc:62:91:a6:ff:72:65:3d:a2:41:37:05:55:7e:36:
b7:7c:f4:31:52:8b:a5:57:02:d4:33:d2:6d:54:27:
0e:f0:20:df:c2:d9:3e:a8:ef:0f:fa:c3:8c:2f:0c:
e5:42:17:f0:54:46:87:f0:6c:2c:3d:8b:00:37:3f:
9d:d0:6c:86:0e:2b:6a:74:4d:6f:38:b4:e2:f6:0f:
47:d3:e2:24:a4:e0:6c:93:e3:1b:5e:3e:2b:2b:70:
fa:7f:5a:6b:19:ef:fc:00:bb:ad:88:31:8c:a0:b1:
ba:da:1c:5c:9e:ed:e2:72:38:e6:58:e1:21:87:9d:
71:2a:c9:82:fa:66:19:9c:75:f3:69:5c:48:11:f6:
65:c9:7f:85:b1:33:f8:97:0b:19:97:e3:52:9c:51:
cc:2b:05:06:4b:a9:66:e1:72:de:41:0b:06:35:02:
f7:ff:9f:98:02:02:51:86:b5:b6:c6:5d:ec:e9:3b:
f6:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:95:1B:76:B8:CD:78:FB:8F:E4:A3:0D:9F:3C:4B:55:A6:6D:5C:40
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/PJUbdrjNePuP5KMNnzxLVaZtXEA.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:7f:9c:06:0f:78:a8:34:8b:8c:bc:e4:bd:68:15:4f:a6:1c:
24:00:3d:3b:5b:a2:32:c2:72:9f:24:8e:2e:82:17:ea:93:47:
b2:54:e6:8b:cd:c5:63:a0:c3:a5:ff:56:53:d3:c9:fa:83:d5:
d2:07:51:ea:aa:fa:17:08:b6:b7:aa:64:d8:b9:83:af:6b:35:
90:02:b9:9a:70:99:eb:91:66:a2:a4:92:0c:8f:22:76:15:00:
be:5c:f4:e6:68:11:04:30:d7:05:ab:6f:be:45:b0:01:c6:62:
00:b2:d2:97:15:03:71:04:2e:73:af:3f:c2:b3:c1:11:17:e7:
bd:8a:51:a1:f6:f5:22:3f:87:e4:f6:b1:52:48:54:e3:5f:55:
2e:b1:98:57:7f:dd:67:f8:64:18:ef:98:25:fb:4c:98:19:cc:
25:f4:8d:d9:c1:a4:00:3a:0d:6f:9a:41:45:df:51:fb:00:04:
b1:8e:04:a1:b0:c5:d6:09:08:c2:14:3a:80:4f:86:fc:fb:e5:
44:06:df:18:ae:34:77:8f:75:37:65:f2:86:8d:90:a0:53:41:
e4:5f:29:58:98:90:be:9d:d9:83:9d:3c:f9:9c:83:e5:54:20:
d4:0c:9a:aa:40:9c:af:0b:3b:75:76:24:aa:f4:ef:78:eb:f0:
2d:be:39:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org