Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Zsfuiv_hfYVwu5cpui73mqJIsSY.roa
File: Zsfuiv_hfYVwu5cpui73mqJIsSY.roa (raw, json)
Hash identifier: cbIF2k7nMNCOWylmOhCmGVofLhmF9YrD2XyJ7ScVflQ=
Subject key identifier: 66:C7:EE:8A:FF:E1:7D:85:70:BB:97:29:BA:2E:F7:9A:A2:48:B1:26
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4918
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Zsfuiv_hfYVwu5cpui73mqJIsSY.roa
Signing time: Thu 02 Jun 2022 00:30:07 +0000
ROA not before: Thu 02 Jun 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18712 (0x4918)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 2 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=66C7EE8AFFE17D8570BB9729BA2EF79AA248B126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:98:7d:dd:ad:ff:9c:54:59:f9:2b:f0:23:0f:
84:fb:b9:29:d3:38:80:69:91:80:61:05:3a:4e:42:
82:6d:1e:d9:e3:cd:70:ab:bb:a3:5a:8f:c7:b9:10:
f8:04:7f:bc:72:c1:23:0e:46:28:0b:a4:8e:48:05:
1e:1b:39:34:b0:0a:82:68:66:1a:76:51:e3:3c:f2:
6d:0a:6e:2e:6d:8f:10:0f:4e:13:07:eb:ac:e9:37:
3c:24:f3:22:66:9b:98:ca:84:91:91:c8:af:7d:62:
68:98:d2:75:92:af:37:5b:d1:bf:ad:6b:f5:e9:12:
4b:1d:13:06:72:83:eb:0a:21:3c:86:a9:e2:69:72:
c3:c0:8f:a2:ef:45:0b:d8:1f:02:1b:ec:30:3b:56:
6f:2a:8d:11:2a:d3:22:f1:55:83:5b:8a:13:c4:85:
71:7e:3e:4e:a0:be:7b:37:21:7e:cf:20:59:29:b8:
36:9e:88:ef:4c:04:dc:08:0c:3b:f4:b5:8f:4a:41:
53:08:7d:5d:24:1f:ec:03:b9:da:d9:f2:17:2a:35:
ae:99:3c:60:6e:92:f5:ee:f6:52:f2:1c:5d:74:ca:
19:68:fc:df:e0:ba:c0:58:00:e9:dd:90:74:8f:c5:
78:8a:68:44:03:50:4f:64:61:0a:98:18:3f:e3:64:
e4:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C7:EE:8A:FF:E1:7D:85:70:BB:97:29:BA:2E:F7:9A:A2:48:B1:26
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Zsfuiv_hfYVwu5cpui73mqJIsSY.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.14.0/24
Signature Algorithm: sha256WithRSAEncryption
02:04:61:b2:1e:eb:7e:44:2a:e2:d9:06:77:35:01:0f:c2:39:
91:83:8f:f4:db:47:ee:b8:de:8a:9f:73:cf:8c:40:a1:71:4b:
92:76:b7:e8:0e:0a:f1:31:d0:cd:4f:fd:56:3c:95:e1:bb:02:
21:61:b1:9d:26:15:d8:57:99:d0:b9:c6:88:86:77:03:da:16:
76:0f:8c:d6:6a:2b:2d:e8:f3:0e:04:47:7b:91:10:b4:a7:ff:
74:e1:8f:09:05:09:97:e0:33:61:82:39:d6:a5:53:18:4e:67:
9e:d0:8f:71:c6:9b:36:39:bc:79:65:ce:52:e1:92:81:d0:51:
5f:99:7b:df:08:f5:2a:3c:8f:a2:70:90:2f:fb:a7:29:34:a1:
89:e6:c2:11:84:66:45:44:58:c0:f9:65:d5:72:dc:46:a7:05:
05:f0:b9:27:4b:bd:b0:bd:c6:1a:b5:0b:4f:ca:e1:8e:8c:7b:
56:17:16:27:b8:67:b9:2d:b0:d6:55:fc:85:07:67:f6:c4:4c:
ab:cd:a7:b2:76:ed:a6:e8:d5:a5:cc:30:5f:02:c4:25:dc:8b:
24:79:bc:d0:08:fe:0c:ff:8f:ce:4c:be:a2:7a:7f:08:1b:9f:
5f:42:91:0d:5f:a9:e9:b9:73:e8:e9:74:cf:3f:93:09:f1:a6:
55:8c:9f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org