Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/QI0jZlUfqOoP5ME6BcRAvvtHtqs.roa
File: QI0jZlUfqOoP5ME6BcRAvvtHtqs.roa (raw, json)
Hash identifier: crQnOk91Gp6RWqRnSLLJbkLuTVcrHzwq7igyCa6HWRc=
Subject key identifier: 40:8D:23:66:55:1F:A8:EA:0F:E4:C1:3A:05:C4:40:BE:FB:47:B6:AB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 463E
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QI0jZlUfqOoP5ME6BcRAvvtHtqs.roa
Signing time: Tue 12 Apr 2022 00:30:11 +0000
ROA not before: Tue 12 Apr 2022 00:30:11 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17982 (0x463e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 12 00:30:11 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=408D2366551FA8EA0FE4C13A05C440BEFB47B6AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d9:31:88:c0:40:89:ff:bb:be:5d:39:c9:fc:
1f:3a:ec:75:43:2d:dd:13:a4:4a:b0:97:67:97:b9:
61:ab:51:42:90:20:43:10:48:37:ec:25:17:0e:85:
e9:84:11:22:42:d4:89:c6:33:4f:b4:8b:70:3f:86:
40:10:a1:a5:04:cd:af:73:f4:16:5d:57:47:c8:8e:
0e:f1:86:01:72:2e:26:32:8b:f2:ef:6a:93:ec:1d:
aa:0a:da:6d:a7:01:0d:25:e0:72:e6:b3:4a:8b:7a:
c9:d5:c7:72:0d:ca:1f:e3:32:17:99:b2:2d:11:18:
6e:19:52:b6:37:ff:24:a5:d1:53:7c:fa:44:bc:42:
05:ed:ba:0f:23:ac:40:ac:3c:2d:69:66:b9:43:18:
74:af:48:7a:b9:8d:e0:e3:ee:be:7b:9a:92:ce:01:
e3:42:1f:61:ce:88:f6:fe:06:05:38:44:60:59:95:
ae:e4:5b:b9:46:80:81:0a:5e:4a:8a:76:45:c9:99:
ff:d2:13:ac:44:19:81:c6:ca:f1:2b:41:04:b2:8b:
1a:4b:04:69:02:c1:ae:c6:6f:6b:60:60:a9:7d:dd:
d7:2f:0e:68:46:02:cc:d1:c8:0a:45:b7:e2:77:4e:
3b:32:09:43:52:b9:3e:e4:1c:7f:28:30:96:7d:89:
7f:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:8D:23:66:55:1F:A8:EA:0F:E4:C1:3A:05:C4:40:BE:FB:47:B6:AB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QI0jZlUfqOoP5ME6BcRAvvtHtqs.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
45:9d:8c:34:35:ca:7f:b4:ba:e2:6c:4f:6f:c4:b5:76:6f:5e:
09:a1:52:81:bf:ab:7a:81:38:f6:f7:dd:4b:8b:31:6b:29:20:
cb:cd:ce:d2:6d:e0:9b:72:ef:c1:aa:86:1e:84:51:f7:90:d7:
4b:fe:44:a6:b3:51:54:f6:8a:76:d2:cd:8b:d3:42:5c:f3:2c:
f4:95:4c:c6:c7:72:b4:b4:20:79:41:e1:b4:05:96:8f:f3:03:
be:85:50:82:cd:86:42:f9:d5:b5:f3:be:48:37:73:0b:b6:be:
d2:de:fc:48:61:18:6f:20:3e:0b:30:e2:f8:17:0d:28:0d:a0:
27:3b:35:bf:c7:38:45:21:a7:8e:d3:79:bc:bc:94:89:f8:30:
19:7a:82:f8:d7:25:31:9d:7d:94:d6:5d:9c:d0:51:62:bc:fe:
ea:1b:3f:12:16:1d:ac:1d:5d:95:3e:90:b0:4d:3c:1a:c1:8e:
84:1a:e0:ee:51:d2:79:d5:c7:79:21:d0:41:14:08:1f:b8:7b:
e7:8f:a5:29:22:f0:fe:92:b7:b7:f7:d4:da:80:a3:e8:fc:39:
1c:32:9c:e6:60:ab:b1:e5:04:ba:94:df:ba:cb:3b:1a:4c:24:
23:3f:f7:7b:a7:37:92:8d:99:fa:6c:be:f4:74:a7:e6:0e:7a:
c2:ec:80:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org