Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/YRfHGbFEON0SfR1EFMVB_EfCNi0.roa
File: YRfHGbFEON0SfR1EFMVB_EfCNi0.roa (raw, json)
Hash identifier: hPc6gtqKxB0/QYVbcDuN3FRWzrxgPHaCd2BmYFRKRuU=
Subject key identifier: 61:17:C7:19:B1:44:38:DD:12:7D:1D:44:14:C5:41:FC:47:C2:36:2D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 495B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/YRfHGbFEON0SfR1EFMVB_EfCNi0.roa
Signing time: Sun 05 Jun 2022 00:30:05 +0000
ROA not before: Sun 05 Jun 2022 00:30:05 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18779 (0x495b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 5 00:30:05 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=6117C719B14438DD127D1D4414C541FC47C2362D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:d8:c5:a1:65:19:0e:cc:00:9d:61:43:59:ec:
b0:cc:23:04:5e:2f:4a:dd:da:f9:e8:ab:bf:b0:7e:
a0:1e:d5:f0:cb:5e:58:5a:b9:d4:b2:29:0b:4d:c4:
ec:bd:83:5a:3a:dc:52:17:c3:1f:ed:f8:bc:e8:4f:
83:74:5b:26:3a:b2:51:01:a0:8b:f2:8b:c1:42:4a:
5a:4e:26:5b:e1:d1:fe:b0:67:54:f8:5f:59:d2:36:
a4:b7:a8:3a:25:54:55:6e:35:18:8d:59:bb:b7:4f:
62:66:d6:64:50:a8:d0:6e:fd:7e:e3:0f:34:66:52:
1f:e9:1c:fe:65:55:46:75:0b:84:59:74:22:d7:21:
b9:7c:53:08:96:cf:7c:21:f0:d2:e0:f8:a2:ba:ae:
1f:fa:26:51:28:0b:3f:f9:c5:9c:18:02:15:27:f9:
6c:a3:62:bc:b8:4d:ef:84:e0:04:4f:e8:de:e2:03:
65:dc:a5:bd:73:64:17:cc:67:d4:89:ea:f1:5a:5c:
38:71:35:6a:cf:90:ab:d9:d2:0c:19:12:45:c2:7b:
78:c8:0c:52:da:6a:c9:d3:35:67:d9:e3:9d:5c:ad:
9d:d6:08:72:fa:96:03:17:f2:c5:c0:19:96:7d:4d:
6a:d8:40:45:81:dc:5e:45:a0:15:bf:16:eb:52:0b:
b7:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:17:C7:19:B1:44:38:DD:12:7D:1D:44:14:C5:41:FC:47:C2:36:2D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/YRfHGbFEON0SfR1EFMVB_EfCNi0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
97:a1:41:e8:d6:7d:e8:d6:29:96:dc:92:41:6e:a2:db:74:63:
e4:73:7e:bf:88:c8:f1:ca:41:1b:92:a9:fb:ec:b6:e0:cd:50:
a4:97:50:ac:ca:22:d0:40:00:ad:05:b5:40:1d:c9:53:cf:58:
f9:7a:32:8a:d6:e6:08:13:7d:07:fe:ea:79:aa:2f:44:f7:88:
4e:35:0f:91:73:bb:6e:94:93:c6:54:dc:47:52:ac:c1:70:5f:
5d:30:83:ab:a7:f7:74:f6:55:bd:1e:d3:75:73:d8:3d:47:7b:
e4:64:1b:b7:20:fb:f6:09:3c:ab:5c:64:dd:84:8d:7d:6b:1c:
ce:da:fa:3f:ba:13:31:16:eb:9a:fd:8b:f1:9e:2a:d6:c5:ef:
1d:ec:4c:28:74:d6:40:f8:75:90:45:fb:f6:2e:53:f8:db:9d:
00:c7:81:88:ae:1a:2e:ca:77:d4:3e:93:9b:69:22:0d:ff:dc:
43:e1:74:42:a5:fd:12:f5:c8:64:44:1e:e7:3e:bc:79:60:bb:
c3:bb:75:ca:54:63:73:2e:e3:e4:58:70:99:2c:e7:53:c9:48:
3f:17:92:1b:8a:8f:03:35:c6:f1:0c:76:c4:8a:e3:22:42:12:
46:de:39:53:03:8e:2a:42:9f:ec:96:53:42:90:87:be:55:15:
ca:5e:24:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org