Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/YKNaE2PfUoHlTRJo2pwXueL8epg.roa
File: YKNaE2PfUoHlTRJo2pwXueL8epg.roa (raw, json)
Hash identifier: bc705bZE42e6+whqVgag+GrEivSe07iA6+JjzsomCx0=
Subject key identifier: 60:A3:5A:13:63:DF:52:81:E5:4D:12:68:DA:9C:17:B9:E2:FC:7A:98
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47C9
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/YKNaE2PfUoHlTRJo2pwXueL8epg.roa
Signing time: Tue 10 May 2022 00:30:10 +0000
ROA not before: Tue 10 May 2022 00:30:10 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18377 (0x47c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 10 00:30:10 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=60A35A1363DF5281E54D1268DA9C17B9E2FC7A98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e6:12:be:6c:41:69:c1:3a:5c:63:c7:4f:bc:
2d:84:95:cf:53:6a:74:bd:5b:61:be:ec:0b:d0:0f:
c9:2e:50:0e:8c:91:43:ad:33:b7:56:4e:94:60:fa:
4f:a4:ce:f5:40:e4:d5:8a:0c:45:3c:b7:2e:e6:45:
4b:2f:17:a5:ff:6d:b6:6a:2e:c0:eb:24:15:49:a4:
c3:d9:e8:6d:05:10:85:ac:9c:63:51:73:0d:a7:02:
91:50:1d:c8:01:10:37:9f:fc:ed:a8:b2:49:77:03:
30:ec:5d:75:f1:b0:79:b1:ce:6c:09:eb:39:1c:4e:
e2:eb:7b:28:5c:8f:55:3d:2e:89:d6:3b:e2:82:d7:
8d:4e:14:c3:3f:50:34:48:46:aa:8f:61:04:8b:08:
ee:97:df:d3:d5:cf:d8:d0:5a:8e:f6:f5:ff:e5:71:
69:8e:47:c6:0b:c7:80:6a:fc:b2:a2:76:b3:bb:cc:
d3:1d:ef:cb:9c:80:47:d9:26:8f:d8:1f:4d:d9:ff:
88:5e:70:f4:0e:62:de:34:75:f0:18:20:39:8e:4a:
4c:27:fc:28:a1:ba:df:59:84:dc:1f:62:e7:0b:a3:
3a:ae:66:8a:45:fc:24:7f:7d:c8:a9:b8:8b:ce:84:
08:1b:2d:b4:5e:28:fe:a2:76:74:80:5f:52:dc:66:
da:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A3:5A:13:63:DF:52:81:E5:4D:12:68:DA:9C:17:B9:E2:FC:7A:98
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/YKNaE2PfUoHlTRJo2pwXueL8epg.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
39:8b:31:e8:b2:07:9d:75:05:b5:1f:1c:63:6e:5c:7a:fb:d6:
3d:2c:04:38:bb:b9:ea:ee:76:f8:f0:40:cc:f8:37:74:fa:bf:
3d:41:8e:8c:df:ac:42:e8:f5:0a:4a:38:d0:e4:22:2d:74:53:
a1:45:84:70:9b:a1:44:9b:01:b7:e4:12:9e:08:c6:71:0c:52:
35:c9:f3:26:1a:5b:25:33:cb:fd:03:ee:3d:0c:43:cc:db:72:
6a:d8:03:55:5f:10:d1:94:b8:a5:23:0b:c8:2d:77:9d:fc:76:
4b:25:73:45:6e:43:9d:80:16:be:4c:ce:aa:64:c6:93:68:35:
65:28:20:e0:b8:c3:7f:b6:19:68:6d:69:66:87:71:a3:44:a0:
fe:cf:17:7f:9d:eb:d2:e4:eb:b5:86:6c:18:00:b1:2a:5b:2b:
29:83:d9:eb:1f:93:88:ff:b1:71:5e:fd:15:12:fb:f8:f9:cb:
b9:ce:a1:a1:c4:51:2c:e1:17:4a:b0:3c:33:34:c0:8a:90:a6:
36:d1:54:76:dd:02:c2:da:ce:b9:19:dc:27:da:6e:fc:92:11:
b2:68:42:be:b8:36:bb:08:f6:13:4f:ca:a4:15:68:33:6b:93:
eb:0e:99:f0:1a:e4:71:b9:34:bc:61:28:3b:97:7e:8f:54:46:
1a:56:24:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org