Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/ZFSYhuecz1IWZO632I2JgL_shH0.roa
File: ZFSYhuecz1IWZO632I2JgL_shH0.roa (raw, json)
Hash identifier: YzWu2NAYXZgQVZQ+xW4nGG695mOZQmBbRZCsTFcHNHU=
Subject key identifier: 64:54:98:86:E7:9C:CF:52:16:64:EE:B7:D8:8D:89:80:BF:EC:84:7D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 49CB
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/ZFSYhuecz1IWZO632I2JgL_shH0.roa
Signing time: Mon 13 Jun 2022 00:30:06 +0000
ROA not before: Mon 13 Jun 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18891 (0x49cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 13 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=64549886E79CCF521664EEB7D88D8980BFEC847D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:fe:77:f4:83:7a:71:af:71:6c:84:9a:10:e9:
6e:2f:ad:8d:f0:77:89:2b:44:d3:00:55:ee:2d:ca:
92:02:73:e4:19:ae:3c:5f:ec:c5:1d:d6:5c:2b:ad:
95:35:4e:33:1d:44:bb:b6:c6:13:f5:26:07:a4:ba:
3f:fb:0d:10:b0:15:ef:43:f0:d7:4d:0e:86:9a:a3:
42:00:c9:c0:5c:56:f1:94:6e:7d:8e:15:61:1f:2a:
48:ee:14:35:7a:e2:fc:50:49:67:ef:8e:14:d8:98:
29:66:e8:ee:c1:7b:a0:66:c2:8f:1b:14:4a:e2:45:
9e:77:4d:b4:1c:27:c4:2d:53:ce:0a:02:f0:b3:60:
4b:a1:96:f2:3f:4e:cc:3d:76:42:94:7f:d5:cc:d1:
06:69:db:5a:44:2c:8d:03:6e:73:ed:e2:57:a8:27:
1c:a6:ac:1f:e9:47:bc:4d:28:51:1d:4f:7d:d3:ff:
81:00:8d:96:49:6d:3d:02:99:77:63:cf:78:61:15:
b1:3a:fc:a5:98:e0:70:ed:f4:b4:bc:b1:e6:e5:68:
79:41:cb:8e:54:70:ff:c6:1d:d0:18:ae:e7:c1:2b:
c8:4f:06:e4:02:4e:2c:c7:96:ab:66:84:1f:f7:51:
41:9d:e7:f6:b9:89:5b:65:9e:95:0b:7d:07:43:74:
0b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:54:98:86:E7:9C:CF:52:16:64:EE:B7:D8:8D:89:80:BF:EC:84:7D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/ZFSYhuecz1IWZO632I2JgL_shH0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:77:69:e9:1d:83:fd:e8:e1:55:96:28:b3:6c:90:43:01:ae:
83:65:2f:1e:a7:97:95:a7:1c:f8:8b:44:f6:ae:8f:cc:34:79:
cf:82:9a:0a:2a:1c:30:9a:01:2a:c5:93:16:e7:93:fa:23:4a:
1c:ba:43:02:50:3f:9c:f2:cf:50:5d:22:99:fb:cf:1a:0e:ee:
47:47:46:da:1d:3e:15:d9:e9:55:ba:4d:f7:c2:f9:23:3f:5b:
58:d9:1a:61:43:f3:f9:51:b1:21:75:ce:f9:89:8f:50:04:ea:
7b:31:4d:5c:68:8c:7f:27:54:a4:ac:77:56:8e:dd:36:eb:0b:
c9:c8:41:29:7e:8e:ed:1a:2d:1f:1b:d5:41:62:6f:79:0f:87:
0e:da:06:bc:4a:09:0b:8c:fa:c5:44:cd:75:15:e4:cc:cd:92:
3e:b9:27:c3:43:05:80:a5:84:fc:97:64:44:eb:1e:9d:04:c9:
dc:78:9d:42:95:9d:12:ae:42:3b:13:ed:cb:e2:a0:ae:3d:98:
22:6a:8c:e5:db:75:c5:db:17:47:93:71:f5:36:cd:f2:c8:48:
81:b4:92:f6:5b:91:98:41:9f:e9:9e:b6:04:6e:72:21:6f:e7:
42:c7:04:d7:cb:15:1d:14:fd:6f:47:19:0e:0e:89:c9:73:ef:
98:fe:01:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org