Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/WntUgGCKWpjoFBDi78X5GHpOIdc.roa
File: WntUgGCKWpjoFBDi78X5GHpOIdc.roa (raw, json)
Hash identifier: A2a+DiNqaK7zV+qc1Gy7EGEdKgERdgGkvFv18SMPWCA=
Subject key identifier: 5A:7B:54:80:60:8A:5A:98:E8:14:10:E2:EF:C5:F9:18:7A:4E:21:D7
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 46E5
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WntUgGCKWpjoFBDi78X5GHpOIdc.roa
Signing time: Sun 24 Apr 2022 00:30:08 +0000
ROA not before: Sun 24 Apr 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18149 (0x46e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 24 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=5A7B5480608A5A98E81410E2EFC5F9187A4E21D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b7:77:ab:a1:71:41:e6:d5:8c:7b:a9:38:87:
20:29:e1:0b:09:11:60:1c:5c:b2:8e:87:94:ec:b5:
ca:95:ec:96:e2:90:ff:2d:36:b6:a8:25:d4:b8:6d:
76:16:e3:34:d9:37:1b:9b:6e:15:b9:51:1a:d6:57:
58:e0:ba:03:79:a9:ad:e3:19:66:98:ab:eb:e2:db:
ca:30:ad:9f:34:70:28:a2:a1:be:52:5f:4c:cd:88:
e2:58:23:bd:24:06:45:d6:b0:55:92:c8:b6:0f:b0:
65:f6:f0:f7:bd:f2:4a:08:e7:56:e1:ad:6c:05:14:
14:ff:bc:a5:cb:3f:3c:15:2c:dd:2d:6d:8a:52:43:
81:b3:7c:a5:c1:69:34:e7:37:1f:67:33:f9:af:5e:
54:ee:e7:15:e6:b9:38:06:53:59:4a:81:b1:bb:11:
72:e5:0a:a3:47:84:22:8d:be:4d:92:be:09:ff:08:
78:3f:a5:8e:d9:39:08:28:1e:6f:cc:22:aa:c8:c9:
ee:b5:95:7c:cd:8d:3d:5d:e7:40:36:40:aa:d4:31:
2d:0e:d8:42:7b:eb:65:ec:cc:72:ae:53:b1:6d:93:
ae:45:17:e8:25:c1:3e:7a:70:c4:a1:74:1d:82:f7:
f7:d2:8a:b2:d4:5f:7d:7a:a7:e8:a9:d6:7a:75:14:
24:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:7B:54:80:60:8A:5A:98:E8:14:10:E2:EF:C5:F9:18:7A:4E:21:D7
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WntUgGCKWpjoFBDi78X5GHpOIdc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:7e:68:8a:3a:3e:09:a9:69:f7:54:44:24:8d:b3:48:48:8a:
3a:d6:5e:6b:f9:df:5a:e8:bc:b2:37:76:59:e5:ef:21:0c:12:
12:2c:66:f9:8b:bc:62:dd:a4:a0:cd:39:99:90:1c:b8:24:f9:
ac:29:1a:a8:8d:92:d4:48:f5:a4:79:f7:01:b8:be:07:ff:35:
6b:ae:e1:4e:f5:f0:d6:3c:20:91:64:09:06:8c:ca:f0:61:7f:
90:64:d0:86:ba:f1:eb:a0:76:ff:7b:44:f7:ee:c2:ff:29:1c:
50:b5:42:07:11:2c:3f:19:30:09:af:59:8d:8b:f3:50:52:8b:
b1:88:22:a3:05:cd:ed:e4:30:7b:c1:cc:da:ff:de:f1:b2:0a:
0a:ff:68:5a:13:db:04:de:33:6d:15:05:5d:bb:63:34:a4:64:
5f:7c:1b:0e:c0:b3:aa:89:be:44:f0:e2:39:dc:7a:e8:26:e6:
9a:5c:ed:90:16:33:68:cb:79:86:76:c1:e3:43:02:cc:f3:cc:
20:90:6a:df:16:a3:51:cd:72:7e:20:35:2d:b2:b9:77:60:93:
2e:ec:04:84:9c:f9:ac:aa:32:0e:12:70:3d:d7:a0:b6:56:8a:
b0:f7:09:27:95:6f:16:aa:f9:c2:f3:53:03:3d:d7:c2:37:de:
08:7d:a0:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org