Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/UwX5-WdWqJG1qhRb3yM92qf_wvM.roa
File: UwX5-WdWqJG1qhRb3yM92qf_wvM.roa (raw, json)
Hash identifier: QqNkghV5wDNWx+9rirQd94gcHOLGPfRCSLiEwq8pfxI=
Subject key identifier: 53:05:F9:F9:67:56:A8:91:B5:AA:14:5B:DF:23:3D:DA:A7:FF:C2:F3
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4403
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/UwX5-WdWqJG1qhRb3yM92qf_wvM.roa
Signing time: Wed 02 Mar 2022 00:30:16 +0000
ROA not before: Wed 02 Mar 2022 00:30:16 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17411 (0x4403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 2 00:30:16 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=5305F9F96756A891B5AA145BDF233DDAA7FFC2F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:72:3a:cf:4d:0a:91:e8:15:78:7a:35:bf:a2:
91:42:5f:2e:53:79:f0:ff:df:73:0b:c3:2a:2a:f6:
e2:24:5b:86:32:94:c2:34:bc:38:4d:df:a4:19:da:
db:64:e7:de:a4:34:3c:ec:42:99:37:85:82:4b:bd:
9b:fc:16:32:69:bc:98:ab:7b:bc:e3:4c:9f:a1:68:
5e:dd:09:7e:d3:8e:7e:1a:db:97:78:ac:85:10:42:
2e:3b:a4:d1:69:06:9a:67:b2:83:5a:93:eb:c2:db:
17:e1:1f:e0:5c:cc:fc:81:c8:d3:33:d0:80:86:eb:
35:f0:6d:5c:66:d0:80:5b:70:b4:8d:e8:f5:ef:fb:
3b:47:db:d0:e5:96:7e:e0:c2:83:0e:ce:de:aa:08:
b7:7c:9b:16:76:99:cf:ea:58:62:62:f3:6b:33:df:
ee:2c:f1:16:a2:d3:c0:20:46:48:b4:7f:2a:88:d1:
f7:ee:a0:64:af:a7:be:9e:fe:0e:f5:30:50:91:cd:
0b:e8:85:a9:7e:b0:8b:fa:1b:8c:e0:08:fd:de:22:
4b:04:d3:ba:99:c1:46:40:f4:dd:12:ab:ac:5b:cd:
e7:c6:a0:a6:85:db:56:d6:e0:fa:32:88:e3:10:93:
d4:62:55:2a:89:9a:8b:26:4d:86:67:18:3f:2c:72:
c9:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:05:F9:F9:67:56:A8:91:B5:AA:14:5B:DF:23:3D:DA:A7:FF:C2:F3
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/UwX5-WdWqJG1qhRb3yM92qf_wvM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:93:1c:0c:66:8a:0a:f7:f5:ab:7c:2a:ad:37:eb:6a:01:85:
f4:bd:1d:de:bc:8e:13:94:ca:bb:48:a6:51:a7:ea:9b:ca:99:
ff:1e:54:d1:70:25:49:2c:52:3f:69:36:ce:87:81:d4:e0:8a:
ff:de:e3:75:df:65:9a:31:73:19:43:e9:f1:48:a7:73:b5:12:
25:b1:0a:c6:8d:10:93:db:9d:46:c1:89:02:dc:43:44:61:28:
e7:a5:87:49:16:e6:39:e6:6d:44:af:d0:8d:31:71:65:3c:00:
75:da:3a:7f:74:89:b7:97:a5:61:5e:8f:67:20:52:a1:1a:55:
17:64:44:00:19:8b:08:63:d8:ab:7b:84:f6:20:7d:b2:11:10:
cf:49:ff:5c:6f:db:b9:3a:b1:cd:d1:f8:8a:e9:39:49:47:a3:
ff:b5:2d:8f:90:c2:c3:23:00:00:3d:93:6b:ba:05:a9:7d:18:
f6:25:a2:d9:94:10:e7:a7:35:5b:cf:6e:ce:6b:bb:c1:a1:15:
b4:aa:a4:f3:14:f6:fc:59:77:fb:89:4e:ac:96:09:11:7c:3e:
fc:51:04:b3:79:37:0d:d0:66:5c:40:e5:13:e8:85:85:6e:d2:
f5:d1:ed:cd:f3:dc:a6:b0:0b:1f:47:41:02:c4:6b:5a:37:89:
d8:cd:2a:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org