Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/R7WvVdSNzj7DOgRuLQkfjCpmtyI.roa
File: R7WvVdSNzj7DOgRuLQkfjCpmtyI.roa (raw, json)
Hash identifier: LAHIIXHZSUYm/BBvIme2ETjgqcSz877+itVguO0ifeU=
Subject key identifier: 47:B5:AF:55:D4:8D:CE:3E:C3:3A:04:6E:2D:09:1F:8C:2A:66:B7:22
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 440F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/R7WvVdSNzj7DOgRuLQkfjCpmtyI.roa
Signing time: Thu 03 Mar 2022 00:30:09 +0000
ROA not before: Thu 03 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17423 (0x440f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 3 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=47B5AF55D48DCE3EC33A046E2D091F8C2A66B722
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1b:e0:7a:d7:27:4b:29:89:18:3f:91:5b:cc:
82:be:e4:f1:0a:80:b3:8c:30:4e:23:46:18:2a:f5:
7f:3e:34:a9:c8:ff:f3:48:78:06:88:5e:ba:50:28:
18:c3:fb:22:b8:89:98:b4:dd:cf:b0:86:a6:fc:a1:
91:6a:63:1d:f2:1d:ac:9d:cd:3d:35:73:f2:1f:92:
35:2d:e8:ee:24:2f:1b:6b:30:ae:1c:6a:af:d5:3e:
a4:d5:07:1b:08:02:11:39:4c:03:65:06:2e:26:a2:
dc:e2:53:17:07:a9:ad:a1:16:82:b5:73:5c:b1:13:
6c:d5:36:65:2b:7e:5d:67:d4:00:e8:b4:3a:83:15:
ff:2e:87:7c:64:5a:02:ac:67:e2:24:74:93:0d:ac:
d2:76:d1:2b:11:69:27:87:b7:43:9f:be:f8:e2:fa:
5c:52:88:d6:e9:8b:bc:d5:f3:ce:8a:93:09:81:45:
e2:b9:ef:f7:b7:52:c9:3f:d9:ea:a1:17:14:71:48:
f5:1d:be:ff:32:61:6d:89:74:76:d4:c2:f4:43:a7:
79:a5:e8:7d:02:f8:46:b1:e8:e8:e1:7d:fe:fb:d5:
9d:b3:75:50:56:f8:f0:be:77:2a:5d:d4:9e:77:e8:
a3:0a:4e:83:49:46:e1:20:46:90:61:e5:84:5e:73:
c7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:B5:AF:55:D4:8D:CE:3E:C3:3A:04:6E:2D:09:1F:8C:2A:66:B7:22
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/R7WvVdSNzj7DOgRuLQkfjCpmtyI.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
54:52:7a:dd:1b:fe:6b:6b:ad:74:38:d7:08:86:dd:4c:08:f6:
93:98:e2:a4:00:61:cb:db:e4:aa:f3:49:55:c9:bf:44:98:cf:
36:71:1d:e3:9d:37:60:2b:94:b7:0a:6c:d9:6b:9a:ef:9b:86:
4f:32:7d:b0:84:05:b2:03:ec:94:bf:fa:26:71:d9:18:17:4c:
cf:65:3d:43:1a:da:63:68:93:e1:e1:2d:29:66:09:8c:f5:65:
34:84:fd:c6:cc:68:cf:61:17:f6:a0:e6:a6:63:39:0f:7f:09:
6f:16:fa:10:20:4f:34:22:02:6a:3c:0b:55:54:43:76:31:50:
ab:8b:28:78:af:b6:3e:1f:f7:a0:a1:15:69:3e:1e:41:b3:ac:
87:e2:90:7b:86:72:59:3e:55:e5:e7:92:f4:af:ad:05:03:3b:
67:ad:37:45:8c:97:13:fb:a4:69:70:4e:fd:63:07:46:e7:cf:
cf:c7:a3:ad:d3:9b:a8:f5:94:5c:e9:cd:25:b3:b1:df:1e:a0:
d2:71:8b:a8:fc:ac:7f:bb:18:e8:38:f0:ea:ee:bd:6f:27:2d:
6c:79:df:0e:7d:af:ca:8c:41:8c:cc:b2:02:3a:52:c4:ad:93:
35:f8:78:9d:72:fc:09:81:9e:aa:bc:b7:7a:b2:e0:a3:3b:b8:
5e:17:08:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org