Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/TXl0f5lIBYNYYtf_jLSe40G50rE.roa
File: TXl0f5lIBYNYYtf_jLSe40G50rE.roa (raw, json)
Hash identifier: mtZM3JMqRVHp4MjeleIatZrgdgrrB8VP/2OADVnS60g=
Subject key identifier: 4D:79:74:7F:99:48:05:83:58:62:D7:FF:8C:B4:9E:E3:41:B9:D2:B1
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 449B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/TXl0f5lIBYNYYtf_jLSe40G50rE.roa
Signing time: Sun 13 Mar 2022 00:30:09 +0000
ROA not before: Sun 13 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17563 (0x449b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 13 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=4D79747F994805835862D7FF8CB49EE341B9D2B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:3e:73:a4:38:88:73:29:a5:15:0c:db:18:66:
d3:8d:68:a1:6b:c2:07:b2:b8:91:9a:4d:3f:11:fa:
36:6e:7b:e5:bc:73:16:31:bc:eb:c4:b6:07:28:28:
62:75:d2:37:14:7b:83:8f:18:b6:dc:91:3f:0a:e9:
e8:9c:0e:96:80:be:9a:56:6d:49:f8:95:fa:41:a3:
67:2c:ee:57:3e:34:e3:43:89:bc:11:b3:52:17:f2:
d6:9e:5f:97:3f:0c:fb:90:7f:23:e4:80:e1:eb:08:
80:72:63:70:39:82:de:a5:78:54:e5:6b:1e:27:94:
20:23:93:7f:3e:93:37:e4:cc:55:94:35:68:a2:7a:
62:9c:19:2c:67:b5:b1:18:39:69:30:f2:79:79:8b:
43:f7:35:d2:8a:a3:db:52:a9:2d:83:8b:62:d2:c5:
11:ae:97:1e:22:06:d9:58:96:ef:55:67:73:7f:d3:
f1:54:8d:a5:a5:6f:1d:59:18:af:e4:f2:a8:ca:e1:
43:1f:88:63:7b:0b:92:fe:16:51:bb:1f:a0:08:ee:
de:3d:10:a3:17:44:98:fb:23:dd:20:4e:f0:a4:b5:
6d:f2:19:88:20:da:b8:86:52:64:3d:65:5c:a1:ed:
58:24:18:13:82:0c:e0:c2:4d:67:66:52:b6:22:78:
db:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:79:74:7F:99:48:05:83:58:62:D7:FF:8C:B4:9E:E3:41:B9:D2:B1
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/TXl0f5lIBYNYYtf_jLSe40G50rE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
50:33:e6:4a:1a:ff:00:49:1f:bc:7b:10:9d:72:15:e1:f7:c0:
18:e5:a4:c6:06:de:d0:2b:a0:4f:29:8d:41:f2:97:8a:46:ef:
5d:6f:19:99:90:b5:c0:a3:5f:82:cf:68:41:3a:de:5c:cd:25:
a5:03:0e:cb:b0:c1:f3:35:22:7d:39:24:75:9e:5d:fc:73:d8:
9d:91:6c:92:84:4a:d7:6b:7c:55:e2:fe:a4:0f:a0:b6:ea:0e:
c7:ed:5b:f1:f9:7d:ff:aa:4d:7a:41:70:41:ec:52:6b:c8:c2:
a2:b6:b1:d8:1b:44:aa:89:75:4b:8a:4a:08:41:7e:dd:95:14:
8f:0b:f4:5e:5a:a4:54:6c:5a:ee:13:34:92:b5:2e:96:42:d2:
4d:88:60:79:8f:3a:eb:32:e2:d8:bd:61:7d:8a:06:5f:5c:d3:
4d:f6:76:c4:71:52:9d:c9:19:a2:b8:05:fb:46:87:d6:e3:4b:
ea:2f:1f:07:f5:6a:0f:d3:d3:59:75:4d:73:67:c6:5b:f0:c0:
16:28:6d:fe:cf:5f:6c:26:8e:99:56:01:5a:ef:0f:95:8f:40:
2a:25:e0:de:d5:dc:f9:c5:21:e6:f4:96:47:36:68:3f:e0:ae:
4a:49:87:e1:0b:43:7c:e3:08:b0:61:63:89:9e:32:c1:b0:3a:
38:3f:8a:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org