Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/U1-YOVUpssSmT30KlM04nWpne7Q.roa
File: U1-YOVUpssSmT30KlM04nWpne7Q.roa (raw, json)
Hash identifier: xfWGF6CycMSpiJyI/1+OpVDeknRLO4Usmn2yFWg16JU=
Subject key identifier: 53:5F:98:39:55:29:B2:C4:A6:4F:7D:0A:94:CD:38:9D:6A:67:7B:B4
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 480D
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/U1-YOVUpssSmT30KlM04nWpne7Q.roa
Signing time: Sun 15 May 2022 00:30:08 +0000
ROA not before: Sun 15 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18445 (0x480d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 15 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=535F98395529B2C4A64F7D0A94CD389D6A677BB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:46:b4:7c:15:2a:38:a1:29:b1:15:c1:3f:61:
ff:9c:76:3b:82:78:8f:1f:a9:cc:53:8e:64:50:2c:
d5:18:cb:ff:6f:62:e1:37:43:ae:ea:8b:c5:d3:c2:
fc:9c:17:e2:ef:d7:fd:31:ad:ab:95:29:84:a5:c3:
56:76:3d:fb:d9:45:26:c6:f1:f3:8d:f9:81:12:38:
0a:65:f0:51:33:e7:fa:1d:62:56:31:0d:fc:8b:45:
e3:c1:26:6b:4c:6a:28:04:46:dc:6e:fe:bf:2d:3a:
1d:d9:eb:2d:84:75:1e:29:aa:08:77:3e:41:69:46:
24:ed:9c:23:f7:bb:12:d4:5a:4c:e9:c8:34:1f:11:
65:f8:9e:cb:a5:79:c2:bc:aa:98:51:10:23:b4:5d:
a3:4d:de:9c:4c:04:ba:db:3a:1a:dc:ef:a2:1a:d3:
94:8a:d1:3d:49:58:a1:7e:97:59:74:e1:5c:7a:b1:
0b:3d:5d:74:8c:f6:07:71:19:c0:81:c7:37:85:49:
b9:7c:0f:99:cc:a9:f1:0c:8c:e5:85:ee:54:fb:1a:
32:fd:e5:62:5a:f6:c9:4b:9a:fc:28:1d:4d:18:8a:
63:fe:b2:8f:e9:6a:91:a0:64:f4:24:2f:ce:56:e8:
41:fd:89:08:7d:8f:23:2a:a2:1f:8d:63:35:f4:f3:
15:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:5F:98:39:55:29:B2:C4:A6:4F:7D:0A:94:CD:38:9D:6A:67:7B:B4
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/U1-YOVUpssSmT30KlM04nWpne7Q.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
21:c2:e4:04:f3:6e:ee:09:d5:80:26:d8:1d:e6:bd:42:d4:dc:
d2:b0:12:7e:02:d6:8d:90:c4:92:87:2f:b1:5c:23:5d:e7:eb:
54:3b:49:d4:a3:c4:98:fe:2e:7e:d0:6e:5f:8f:ee:ee:e3:6c:
a2:eb:ad:ec:6a:77:59:8d:d4:81:94:d7:9a:da:79:55:b1:45:
67:20:9a:f2:72:a7:a4:0d:05:fc:69:c7:c8:85:6d:53:75:e6:
26:ba:3e:51:16:ac:85:ba:25:b0:69:b8:5a:c9:c4:82:d2:0d:
0a:44:b4:f5:7b:e3:fa:20:03:7b:19:8f:3c:a5:d9:f1:70:f7:
14:4c:f6:2f:83:0e:a3:60:67:bd:ca:20:28:51:ba:ea:a5:4c:
8c:fa:fc:e7:a9:96:67:a7:c9:4d:29:5d:a1:a6:9b:e7:c5:e3:
f0:fe:bf:b9:b9:be:f5:73:65:4b:be:91:c6:65:d3:9b:a4:2e:
5d:bb:db:63:77:b8:ec:44:52:0f:48:f5:e7:37:0b:a4:5c:61:
3e:1a:fc:fd:a0:51:55:1b:45:00:6a:76:6c:77:a9:78:8b:4a:
2b:0e:a1:03:16:fe:a4:d7:42:1a:d5:f6:69:b5:15:30:09:71:
4b:63:b0:7a:08:aa:83:6c:d7:cc:25:14:07:f8:b4:39:26:97:
18:4b:a8:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org