Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/QDvXiUrTcXeUnyuGlaeohx2SVoc.roa
File: QDvXiUrTcXeUnyuGlaeohx2SVoc.roa (raw, json)
Hash identifier: yOUPDKENIUIM2JXmbwdZNMKHgUvLCo5rRQBnuQEY5U8=
Subject key identifier: 40:3B:D7:89:4A:D3:71:77:94:9F:2B:86:95:A7:A8:87:1D:92:56:87
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4318
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QDvXiUrTcXeUnyuGlaeohx2SVoc.roa
Signing time: Sun 13 Feb 2022 00:30:08 +0000
ROA not before: Sun 13 Feb 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17176 (0x4318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 13 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=403BD7894AD37177949F2B8695A7A8871D925687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bc:ed:3b:60:54:e4:f1:f9:6f:a3:d2:44:0e:
85:58:b2:2a:9d:c9:a7:09:69:91:d4:13:d0:8c:0f:
1a:8e:eb:bf:90:1a:89:50:73:1c:61:db:dd:f7:0f:
17:f1:9a:4a:b9:28:59:9a:91:7e:e8:6f:16:84:6d:
73:62:86:64:c3:f8:fe:06:09:f8:c6:2d:48:ac:47:
18:8a:6e:e8:e2:56:f2:71:31:c0:04:13:6e:f3:05:
c5:13:42:5e:18:b7:71:2d:0f:45:db:b4:86:41:0b:
81:df:e4:5b:29:1e:4d:82:0e:58:48:7c:06:5d:ee:
b8:42:b1:7c:99:19:09:c1:dc:f4:ef:21:d6:42:69:
6e:26:b4:92:02:4e:34:0d:3f:d3:f3:d1:45:19:41:
68:7a:c4:98:4f:11:56:3d:80:c0:25:d2:6c:8e:27:
ba:72:c4:6d:82:7a:fd:e4:16:bd:f1:17:8a:08:81:
18:23:98:42:19:28:98:84:62:cd:5a:77:fd:34:c4:
11:e7:1c:61:10:88:39:83:2d:06:d1:51:9c:fb:e4:
5e:f4:d3:9b:a8:85:a0:84:63:bd:ac:f9:2a:ae:5b:
54:4f:1c:17:5a:43:c2:b2:52:69:a5:cb:27:61:ae:
40:60:2b:88:e5:b1:b2:ab:ed:ab:e0:ef:87:8a:05:
6b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:3B:D7:89:4A:D3:71:77:94:9F:2B:86:95:A7:A8:87:1D:92:56:87
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QDvXiUrTcXeUnyuGlaeohx2SVoc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:00:14:5a:6a:67:a0:16:c5:2d:30:9a:ef:92:e6:62:0d:ed:
f3:ce:3e:10:2c:0a:b4:a7:25:7b:54:c4:04:08:99:8c:5b:db:
b5:0f:95:22:c8:21:90:31:60:cc:09:87:70:db:43:69:86:5c:
d5:7f:80:0c:8c:10:e7:13:61:48:88:31:94:74:5d:f9:02:5f:
60:f3:cd:ba:80:68:b9:d6:b7:17:68:d4:47:ae:90:55:da:cf:
d6:3b:59:0e:27:48:97:c0:28:59:b9:97:6e:65:cb:3f:63:e7:
29:5b:7f:67:74:5b:0d:c0:28:c6:72:cb:fd:ff:87:73:a7:ec:
81:9a:ad:02:1f:6a:ee:27:45:6b:59:2e:9d:e5:b0:b6:a6:04:
e4:36:c1:03:34:fd:e4:b6:97:f3:63:8f:3f:34:1f:3a:d4:41:
5d:8c:98:00:56:7b:df:5f:d7:84:1a:d3:48:54:e2:50:2c:42:
8c:3d:10:bb:a5:c6:05:89:59:c8:b8:87:27:e4:08:8c:42:2e:
1a:94:dd:fa:b1:57:71:02:48:af:61:b1:41:fb:0c:3c:5b:d8:
78:6d:e7:8d:ff:ef:cd:c2:25:2c:fb:6a:f0:9b:02:6f:3a:27:
c8:6c:78:43:ae:fd:5b:27:1d:d0:70:f8:6c:10:b9:f7:e8:2d:
ef:2a:8c:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org