Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/UYR3O70zfcRodtyVS1Ut0QzOqHE.roa
File: UYR3O70zfcRodtyVS1Ut0QzOqHE.roa (raw, json)
Hash identifier: v0e45CAxgvWlaU3XCv/tsbV6hRtjJYFOCquz1QbAa/k=
Subject key identifier: 51:84:77:3B:BD:33:7D:C4:68:76:DC:95:4B:55:2D:D1:0C:CE:A8:71
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47FD
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/UYR3O70zfcRodtyVS1Ut0QzOqHE.roa
Signing time: Sat 14 May 2022 00:30:06 +0000
ROA not before: Sat 14 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18429 (0x47fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 14 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=5184773BBD337DC46876DC954B552DD10CCEA871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fd:e8:d7:d2:aa:87:c3:05:3b:90:d7:ab:cd:
b7:0c:58:c8:15:43:d5:f1:ce:de:af:9c:2d:73:d1:
d2:dc:bf:21:53:42:2e:cb:a1:86:65:5a:1f:64:ac:
c9:c4:a2:2d:a1:34:aa:65:4d:44:c1:76:b0:ab:de:
24:57:59:ee:1a:39:64:88:04:12:26:57:52:17:8a:
20:e3:dd:ad:2d:d5:55:d5:01:f0:15:dd:95:66:c1:
57:27:9c:cc:07:49:19:6c:45:de:54:c8:51:d2:39:
65:0d:c8:16:1b:cf:0e:78:18:30:62:d4:23:ca:da:
0c:db:b2:75:01:d1:a2:95:14:32:aa:21:4c:c3:50:
e0:d2:78:63:66:a9:e0:9d:2c:06:b0:4b:37:1f:ab:
c7:37:1c:e6:c5:85:a2:16:6a:ba:f4:a0:c7:b2:cc:
1c:29:fe:53:6c:b8:2a:d0:5f:b5:b2:69:ad:a7:35:
0c:e1:18:62:e4:dc:55:54:5a:f5:a8:fa:40:d1:aa:
51:30:f9:e0:34:bb:45:2e:ef:08:03:aa:55:a6:64:
b8:8a:76:8d:12:c5:77:f3:b4:4e:ed:83:39:ed:d9:
ce:23:4b:f9:e8:63:23:20:36:ea:42:85:30:40:2c:
56:b1:53:5d:22:38:40:1c:35:e2:ba:6d:d7:7a:fd:
f0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:84:77:3B:BD:33:7D:C4:68:76:DC:95:4B:55:2D:D1:0C:CE:A8:71
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/UYR3O70zfcRodtyVS1Ut0QzOqHE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:c8:52:61:ea:7e:bd:71:31:03:5d:39:b9:a4:43:95:96:99:
1e:45:c7:f5:33:06:77:f0:c0:44:30:bb:e7:b3:f2:e9:4a:cd:
e1:f8:2a:e5:c6:a3:d2:76:37:2d:e3:fe:a4:e3:32:32:53:b5:
e0:bf:d2:8c:1d:4a:5e:b7:17:42:70:34:24:1d:a8:58:e7:f2:
6c:25:d3:aa:7e:d8:de:8f:14:72:23:88:04:30:e7:3d:36:5a:
47:c8:4e:fc:dd:c1:8d:90:67:4f:5e:b4:2e:17:44:df:08:53:
67:cc:d8:99:f7:09:84:ed:ec:c5:10:19:b5:f4:67:82:a2:4d:
17:8f:eb:87:2e:74:3a:54:30:80:67:48:cf:7c:b7:0a:f0:64:
e4:a5:e1:08:b5:4b:f0:89:65:28:3d:5e:9f:ff:b1:0a:3b:40:
3a:5c:97:ff:bf:7b:14:39:68:9d:6e:3b:39:80:db:72:a3:26:
9b:84:fa:b1:97:68:94:7d:27:51:d7:ff:11:0c:2b:e6:72:7d:
58:80:71:5d:dc:2b:b7:3b:35:b3:05:35:96:82:61:5f:18:0e:
7a:53:09:b0:69:54:b0:0b:4b:7f:3e:c9:26:5e:82:74:c9:09:
7b:be:09:d1:49:63:84:a5:07:0c:d1:31:ca:f1:f3:bf:af:88:
37:ab:90:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org