Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/UZVZCPJEUZ_EZiOzHksIF76ETC0.roa
File: UZVZCPJEUZ_EZiOzHksIF76ETC0.roa (raw, json)
Hash identifier: +EVYzknh/WW3oFDF/k6YQbTYWO7HxNyQJnqYCdVzzBI=
Subject key identifier: 51:95:59:08:F2:44:51:9F:C4:66:23:B3:1E:4B:08:17:BE:84:4C:2D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4625
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/UZVZCPJEUZ_EZiOzHksIF76ETC0.roa
Signing time: Sun 10 Apr 2022 00:30:13 +0000
ROA not before: Sun 10 Apr 2022 00:30:13 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17957 (0x4625)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 10 00:30:13 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=51955908F244519FC46623B31E4B0817BE844C2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:ef:8f:cd:d4:67:9d:74:a7:d8:c0:31:28:50:
fc:ad:8c:85:67:86:1d:9c:23:f7:1c:a5:fe:53:e9:
cf:12:4b:dd:61:f2:bd:d7:14:57:68:46:0e:8a:8a:
88:a6:8e:cd:df:de:16:ab:c7:7c:47:90:23:f9:44:
3d:44:5f:97:02:e3:52:5d:cf:ce:12:a9:e3:70:59:
52:8c:24:e6:e0:a7:58:28:47:cb:19:d7:68:79:e9:
f1:d7:e5:c5:67:56:7d:d1:3b:32:32:15:df:c4:b2:
36:1b:08:94:d6:df:52:95:29:09:07:bb:4d:b7:c7:
a0:7a:42:43:33:d3:34:34:7f:3e:f7:21:87:18:2f:
07:1b:e7:f8:66:9a:31:70:8e:37:e1:76:10:55:6e:
f2:60:72:05:a9:0e:22:e8:7d:a8:4d:6e:2e:00:8f:
60:83:d2:13:ab:5d:f4:a5:af:b4:f9:89:84:2a:ad:
b6:eb:ab:ec:6c:10:0e:43:59:f3:b6:13:66:88:1a:
b8:1e:16:5b:a5:12:e8:80:b8:79:f3:2f:5b:e4:cd:
5b:3c:3e:f0:83:df:66:07:93:37:1e:7e:fa:36:90:
3b:a3:38:ed:71:c1:f7:75:52:22:03:45:fb:bf:d3:
27:b0:99:5a:71:19:6f:3c:40:18:4e:ba:44:55:fd:
66:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:95:59:08:F2:44:51:9F:C4:66:23:B3:1E:4B:08:17:BE:84:4C:2D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/UZVZCPJEUZ_EZiOzHksIF76ETC0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
70:d1:fb:f1:90:e8:e8:1d:fb:b7:08:95:e5:81:92:cb:cc:84:
df:9c:76:ba:c7:2e:1e:97:f6:39:be:d3:5b:d3:ea:d8:8a:75:
31:b3:10:35:19:dd:7a:49:19:dd:12:73:b5:fe:2c:dc:11:71:
ff:ca:9d:77:cf:97:d3:33:bd:19:ee:17:b7:d5:78:2d:d1:06:
bb:3c:3e:54:31:0e:25:cf:d5:5f:20:85:94:d4:87:64:4a:00:
e3:58:c1:40:2d:29:e3:2c:86:20:bc:c2:04:54:1d:38:90:fd:
4a:c2:c6:aa:f9:d6:d7:6f:b0:3f:9f:1f:bf:30:f3:2b:1d:b7:
a7:13:95:80:ae:b7:42:5a:a5:7b:2d:4e:38:a6:3a:d3:de:9a:
aa:d1:75:fe:a5:d6:2f:05:af:00:0d:90:63:5c:8e:b5:a4:a5:
49:3d:07:3d:19:c9:41:3f:77:ee:9b:ef:f2:1b:d7:8a:1e:49:
6e:4e:fe:10:0b:48:f4:b7:9f:86:ba:52:4f:2d:28:63:1f:a5:
a9:8b:38:4f:b8:b6:1c:8a:49:7a:1a:b1:97:a0:51:c3:d2:db:
df:94:4c:c9:b7:74:93:c3:80:5c:a4:b4:a5:ae:13:cd:f9:14:
fb:2c:4b:8b:3e:31:c9:9c:8e:35:07:bb:12:ba:09:4b:c7:c5:
e7:a6:b7:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org