Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/RkHwyfb9bWLQU00w6twTp-fTExM.roa
File: RkHwyfb9bWLQU00w6twTp-fTExM.roa (raw, json)
Hash identifier: tbcAl031dpl+1fSe8kLb5YJnnjXLxBB+ToTz5C1VgiQ=
Subject key identifier: 46:41:F0:C9:F6:FD:6D:62:D0:53:4D:30:EA:DC:13:A7:E7:D3:13:13
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4764
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/RkHwyfb9bWLQU00w6twTp-fTExM.roa
Signing time: Tue 03 May 2022 00:30:08 +0000
ROA not before: Tue 03 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18276 (0x4764)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 3 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=4641F0C9F6FD6D62D0534D30EADC13A7E7D31313
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:22:5a:64:02:da:ce:79:d2:1a:49:54:9d:bd:
55:1b:02:8e:aa:5c:d6:ba:0c:7e:64:6c:6f:a3:01:
bd:d6:7e:7b:02:2f:ac:89:90:ef:18:04:a4:48:45:
2f:8b:c1:be:52:cf:c5:ab:55:72:ab:7b:0c:64:a5:
5c:80:7c:50:04:9d:d0:84:97:19:0e:1f:e0:27:98:
14:b1:65:92:85:e0:3e:78:99:00:52:2c:f9:0b:10:
27:13:9c:f5:c3:b8:e4:79:e4:a9:af:d8:45:2d:11:
f2:15:e2:84:d2:07:d5:49:5f:0c:73:5f:d9:5b:ca:
58:c8:5e:08:4a:82:91:f8:21:63:0c:13:d8:95:b5:
4f:76:af:52:23:70:c8:00:aa:44:2e:a5:2a:93:55:
a0:aa:6a:6c:d1:b9:0b:8e:84:ba:88:09:35:d0:0c:
de:36:dd:cd:0e:97:5a:e8:43:cf:fd:f0:58:8c:d8:
42:fa:65:86:5d:de:58:f6:01:d5:81:e0:f1:79:64:
39:f9:f2:a1:9c:ed:a5:4c:12:33:b8:c5:48:7c:69:
5a:9c:cc:ba:87:6a:27:3a:fc:bc:c5:62:42:68:7e:
e6:54:cb:f2:b4:30:35:84:62:60:fe:0e:98:55:9a:
d3:07:9f:d4:0d:aa:3e:a6:43:f5:a8:bd:4d:8f:b0:
14:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:41:F0:C9:F6:FD:6D:62:D0:53:4D:30:EA:DC:13:A7:E7:D3:13:13
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/RkHwyfb9bWLQU00w6twTp-fTExM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f6:fa:99:de:fd:63:44:9e:5d:16:6c:16:0b:46:20:81:de:
4d:21:c0:3a:61:5d:8e:67:fa:81:b0:52:f3:99:cb:dc:00:e6:
94:4b:d9:d1:fa:57:08:63:69:26:e7:20:ba:c6:25:a2:b9:9e:
93:ba:8a:2a:ff:01:bc:d4:d3:96:bf:2f:96:79:71:e0:0b:d3:
f6:2f:42:d2:76:07:c9:c8:d9:11:86:3f:b1:21:94:5c:08:93:
39:5d:cc:56:7a:0f:57:a8:5a:6c:e3:20:a4:65:91:0a:60:3e:
c9:9a:58:f6:50:32:6f:eb:22:30:5a:d9:90:73:5a:3a:5b:5a:
ae:02:5d:07:be:0e:86:a8:91:a9:6d:55:48:ea:52:fe:24:bd:
2b:9c:9d:e0:e6:cd:40:44:0c:01:83:ea:97:f9:f0:c9:38:84:
7f:6e:d3:ce:02:42:89:44:4e:4b:52:97:54:6e:33:5d:2e:60:
b2:51:ec:f6:c7:ba:77:64:69:ea:9f:23:45:66:51:a4:3a:b9:
6d:b7:82:72:bb:b4:5c:f5:8b:8e:8d:2f:d4:5c:0f:de:e3:74:
81:ad:20:80:3c:72:c8:c4:30:64:18:59:e0:27:15:56:ba:fc:
11:b2:b9:64:df:1a:79:75:3b:a8:2d:51:cb:59:f5:db:59:06:
5f:4f:15:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org