Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/QdFY1jnXKMOpOx2_FrREC0qWK8w.roa
File: QdFY1jnXKMOpOx2_FrREC0qWK8w.roa (raw, json)
Hash identifier: T6cpwIH+2Hz/7p+mk/p79YBLQQD3JSxj3TNL0AF6BLU=
Subject key identifier: 41:D1:58:D6:39:D7:28:C3:A9:3B:1D:BF:16:B4:44:0B:4A:96:2B:CC
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 48DF
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QdFY1jnXKMOpOx2_FrREC0qWK8w.roa
Signing time: Mon 30 May 2022 00:30:08 +0000
ROA not before: Mon 30 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18655 (0x48df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 30 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=41D158D639D728C3A93B1DBF16B4440B4A962BCC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:3a:c3:dc:bd:e8:13:b2:18:0f:52:aa:ae:4e:
a5:d1:53:77:8f:d7:6f:29:7c:0c:4d:56:bf:88:e7:
9d:35:d4:98:42:9f:67:49:60:25:a2:aa:c9:2a:b4:
13:a8:77:a3:fc:e5:ed:1e:33:75:67:59:ae:aa:55:
e3:cd:25:9c:0a:3b:65:25:ab:03:95:c4:19:94:a8:
f0:84:c4:54:8a:2e:47:f2:07:46:e0:ea:ea:ce:61:
d4:4b:9f:dc:68:e0:6b:41:71:29:bf:d8:f9:35:a5:
c8:02:82:ff:36:e4:9c:df:1d:b9:4f:54:39:b2:00:
8e:a8:2a:8b:0c:4c:d9:d8:49:73:32:c3:4d:1a:fd:
2c:c2:85:b7:7e:b4:6c:94:a7:a8:fe:bf:9e:2b:15:
fd:6b:c0:2a:fc:a7:71:65:e8:96:da:84:81:7d:7e:
a9:fa:fa:46:a4:fb:36:76:a8:5d:e2:90:27:e0:e1:
bf:3e:88:ec:b3:03:39:0d:2d:c9:03:26:ea:96:f7:
f6:90:b5:93:60:9c:ae:5c:6c:33:b7:ae:66:6e:0f:
3d:85:24:2b:9d:9c:23:84:23:43:c3:5e:2d:dc:cb:
02:21:8b:f8:ec:69:3e:a1:82:0f:88:6a:fc:48:e9:
31:30:3e:79:ce:87:f4:ba:e9:a6:cf:97:0b:eb:40:
10:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D1:58:D6:39:D7:28:C3:A9:3B:1D:BF:16:B4:44:0B:4A:96:2B:CC
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QdFY1jnXKMOpOx2_FrREC0qWK8w.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:04:8c:c9:7a:dd:da:5b:3a:ed:f9:77:c4:df:34:7e:21:01:
34:8e:56:2c:36:26:d0:72:f3:7b:9f:de:11:0d:49:35:3d:65:
eb:35:b3:d5:b0:3b:ed:43:f5:e5:18:a0:ef:6b:30:f7:b3:fd:
18:99:c7:38:99:e0:64:51:f2:d6:e8:b3:ab:d8:48:7d:33:07:
b5:5c:3e:85:b1:82:33:81:58:54:98:61:1c:a4:68:15:67:4e:
8b:90:9a:2d:c2:2d:44:e8:82:9a:7b:35:eb:81:cb:c9:75:49:
6c:ed:02:da:b8:95:c7:4f:93:b0:7b:41:21:9b:18:5f:7d:1d:
c8:51:55:6c:01:a0:13:5c:72:ed:87:59:1e:4e:b2:91:9d:6f:
48:71:87:23:06:a6:6f:db:3a:0b:ad:68:1a:30:05:a0:54:dc:
03:10:e7:c8:1a:fc:a2:14:2c:d6:0a:ce:9d:da:ed:5b:c8:67:
38:fe:ae:d8:cc:df:c6:f6:8e:4c:4b:6a:80:71:c8:4e:19:21:
d5:65:28:f8:d9:12:ae:46:46:41:c5:2b:dd:63:8c:dc:e2:ba:
ce:99:c4:55:ff:4b:5e:69:74:4e:4c:2a:11:8e:6d:ea:e6:7b:
e7:b6:c8:c8:78:bb:7f:0e:a2:3f:2f:0c:89:a0:95:d8:69:cb:
38:f7:ad:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org