Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Pf1WR-x-Bu2QDML6NzDU_G4t_R8.roa
File: Pf1WR-x-Bu2QDML6NzDU_G4t_R8.roa (raw, json)
Hash identifier: qjHj0+VwmrKJMQ1sGC28Twu52CG44Y/LsGeAdmpjbr4=
Subject key identifier: 3D:FD:56:47:EC:7E:06:ED:90:0C:C2:FA:37:30:D4:FC:6E:2D:FD:1F
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 48A7
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Pf1WR-x-Bu2QDML6NzDU_G4t_R8.roa
Signing time: Thu 26 May 2022 00:30:17 +0000
ROA not before: Thu 26 May 2022 00:30:17 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18599 (0x48a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 26 00:30:17 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=3DFD5647EC7E06ED900CC2FA3730D4FC6E2DFD1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:a9:55:d1:53:e7:d8:41:90:db:92:09:5a:77:
61:a6:8b:0f:d3:2a:89:12:94:8a:d8:87:c3:65:a4:
66:ca:c1:11:0b:23:1e:e4:5a:b8:a8:bd:a2:a7:e5:
03:b2:41:d3:ec:75:26:07:f2:7b:1e:22:f2:99:d1:
25:37:2a:cd:3b:82:bf:79:82:64:52:ed:1c:a4:1e:
55:75:52:f2:2f:ab:fc:6a:47:f6:30:7d:22:37:d5:
18:e9:68:3c:dd:46:47:3d:d4:25:3e:80:6f:27:ea:
8a:da:00:42:5d:26:cf:10:86:ae:78:e4:01:58:36:
64:29:39:22:c9:68:dc:73:6c:fb:b5:0d:4f:f4:40:
83:6b:79:9f:f5:2b:dd:a1:69:dc:30:d8:1b:0f:30:
02:a7:6e:55:d5:54:e7:32:3d:f7:40:c5:ce:d1:16:
da:29:b8:5e:30:b8:6c:d8:02:6c:c3:de:a0:cf:03:
f7:71:3d:ac:7e:16:44:5a:69:8a:f0:63:92:ff:ff:
eb:8a:e3:65:65:36:70:65:e3:f3:85:bc:22:0c:1c:
47:f1:d2:4d:5c:5c:6f:43:7e:ca:c3:3e:45:6f:97:
42:f5:86:9a:b0:cf:ab:20:7a:5d:e6:a9:b7:46:ab:
6c:cf:75:bf:cd:6b:ac:f5:36:62:4a:45:30:0f:1a:
96:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:FD:56:47:EC:7E:06:ED:90:0C:C2:FA:37:30:D4:FC:6E:2D:FD:1F
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Pf1WR-x-Bu2QDML6NzDU_G4t_R8.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:44:92:43:69:0f:0c:ea:98:9b:f9:6b:5d:93:e5:9e:f7:b1:
b2:25:bd:6c:17:f0:0b:9f:69:9c:6d:a9:4d:bd:ab:58:09:8f:
41:58:2c:25:c4:21:7c:70:2a:4a:1f:1f:1a:83:68:c5:ba:fa:
dc:a4:48:7a:69:d6:41:0f:1c:ab:f2:d0:c6:e4:02:a2:68:58:
d7:ee:1b:ab:4d:f2:de:2a:50:66:5a:33:19:1d:79:dc:2a:27:
f0:ef:78:37:84:97:94:c4:74:41:00:d5:fd:1c:3d:1d:2a:5d:
93:73:8f:3f:08:c8:71:48:72:17:41:f1:ed:49:03:40:e5:b4:
e9:da:55:5d:55:a4:bf:6c:9e:a6:8e:59:44:33:d9:5e:38:fd:
a9:e4:49:1a:d1:b6:bf:fd:d8:7c:b4:77:de:8c:9d:cf:58:cc:
ad:17:46:36:77:00:66:7f:16:27:54:90:6c:9d:7f:05:88:b0:
73:3f:19:10:9e:b2:67:49:4a:86:c9:63:a2:df:fe:b2:fc:db:
15:a9:f4:67:cb:62:70:d0:6e:dc:68:6b:f4:33:14:40:7b:aa:
f3:0c:d0:01:b3:0f:54:3d:06:7a:5a:20:20:6f:50:71:43:df:
e7:72:ed:58:2b:b5:78:91:ac:d1:76:7c:52:70:d0:a7:f3:88:
62:0e:52:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org