Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/R3W5UW-QBK1BeIelJqRzrYITO7g.roa
File: R3W5UW-QBK1BeIelJqRzrYITO7g.roa (raw, json)
Hash identifier: 27DL/xnAtOQqEhUe6YYGD4GSLu/3At6j87J5oeCXEiM=
Subject key identifier: 47:75:B9:51:6F:90:04:AD:41:78:87:A5:26:A4:73:AD:82:13:3B:B8
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 453D
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/R3W5UW-QBK1BeIelJqRzrYITO7g.roa
Signing time: Fri 25 Mar 2022 00:30:06 +0000
ROA not before: Fri 25 Mar 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17725 (0x453d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 25 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=4775B9516F9004AD417887A526A473AD82133BB8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6f:56:19:d7:a8:b3:34:41:69:55:f0:45:7c:
4d:8b:b8:32:fd:ce:3f:b6:a7:89:06:95:33:77:d5:
07:2a:25:94:d7:9f:b7:f5:d5:17:a6:f9:1e:93:db:
82:46:38:e5:61:e2:8c:0b:78:f7:9b:f6:ad:63:1d:
74:6d:25:f5:7c:01:87:76:4d:1a:74:6e:67:01:a6:
9a:c3:22:82:86:b1:0c:24:9f:aa:69:46:e7:51:0b:
fd:11:28:2f:f8:b1:e7:ea:5c:70:e5:8b:79:fc:dd:
51:b0:4a:7a:45:b9:2b:66:ea:da:84:55:0c:f3:b3:
2a:a5:7c:87:5a:37:e2:46:28:e4:e6:94:f4:3b:72:
a1:fd:2c:82:e4:b1:cd:73:7d:36:ef:c9:97:28:0d:
de:9c:f0:13:b6:2e:78:04:a3:af:90:49:5f:31:6d:
5d:9a:9d:46:89:ef:a7:27:30:52:49:ee:a2:0a:35:
da:84:08:9b:30:6c:4c:2b:4f:9f:6e:3c:26:eb:3f:
67:24:9d:14:5b:f9:1b:d7:04:8e:a1:ad:0d:60:2e:
dc:1f:66:c5:54:71:93:db:59:3b:b5:1e:ec:b8:4b:
26:0f:aa:04:f0:f0:69:43:62:0d:27:53:45:dd:ac:
2e:d3:36:ae:fe:db:5d:a9:e0:b4:f3:3a:a2:f7:98:
fb:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:75:B9:51:6F:90:04:AD:41:78:87:A5:26:A4:73:AD:82:13:3B:B8
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/R3W5UW-QBK1BeIelJqRzrYITO7g.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
78:17:8b:52:3d:9f:22:db:a8:df:07:27:8d:fe:51:e7:de:d9:
c1:be:7f:be:69:e4:70:d5:dd:b0:44:ec:80:90:32:ce:55:14:
91:83:0b:a8:33:82:69:f1:da:94:fc:04:d1:0d:36:e2:fe:63:
37:06:36:d7:0a:af:fe:84:1d:b9:7d:09:16:3d:36:41:cc:35:
93:af:a9:b7:87:3f:c7:23:ab:ba:06:78:64:e2:dd:7a:41:88:
17:fc:da:88:6f:d4:1e:b8:29:5a:d7:57:04:56:63:c9:a8:5a:
ae:c9:2d:c8:2d:5e:4d:43:fa:ea:72:86:f5:cb:00:ad:5f:f4:
b0:19:eb:ea:5a:8b:b3:bb:51:db:0e:0b:b4:56:c3:d1:1a:2a:
8e:83:4f:6a:78:90:23:c4:ea:7a:20:99:57:3e:9d:8f:5e:b3:
b4:8f:e0:4c:c8:2c:a0:b6:ce:ce:00:be:71:95:5c:f5:ce:23:
90:16:fd:b7:77:60:8c:57:2b:ba:84:68:23:ae:75:16:55:c1:
ce:a3:26:49:6b:1c:fd:63:06:cd:4e:b1:4c:60:f5:cb:03:bf:
66:63:77:ed:a3:51:21:41:aa:a6:24:2a:04:78:cf:9d:21:4a:
ba:da:dd:95:87:75:f9:b0:bf:42:01:71:b8:4b:8d:2b:e3:ba:
c1:93:59:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org