Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/_2abSmHERskVf0rH3368pezUJ7U.roa
File: _2abSmHERskVf0rH3368pezUJ7U.roa (raw, json)
Hash identifier: HOA8eHfaUF3uL3laLGOUMus1WcHaCH/d5hZdzNxwCtM=
Subject key identifier: FF:66:9B:4A:61:C4:46:C9:15:7F:4A:C7:DF:7E:BC:A5:EC:D4:27:B5
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 485C
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/_2abSmHERskVf0rH3368pezUJ7U.roa
Signing time: Sat 21 May 2022 00:30:05 +0000
ROA not before: Sat 21 May 2022 00:30:05 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18524 (0x485c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 21 00:30:05 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=FF669B4A61C446C9157F4AC7DF7EBCA5ECD427B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:23:47:fb:8d:0f:e7:00:41:eb:1c:46:0a:f8:
d5:98:a0:42:d7:ec:fb:da:48:ec:0c:17:1e:5b:c5:
bb:16:ac:3c:d6:52:d4:5f:ed:be:26:71:73:f2:ee:
75:80:ef:82:22:72:c0:80:6c:37:9b:4f:75:7d:b1:
97:be:e3:d3:f1:f3:96:96:5b:41:75:1d:68:31:55:
4a:46:96:77:9a:81:7a:f0:fa:94:0a:2a:f2:8c:ad:
60:38:81:6e:88:f8:7f:00:c1:f4:e9:c6:0f:ab:53:
ab:4c:33:b4:c6:5e:b6:ac:52:9d:7c:49:98:f4:64:
5a:c9:43:11:87:76:34:2c:38:ac:67:75:94:9a:35:
b5:89:d8:6b:87:d7:04:a1:1b:28:2f:ae:03:80:03:
ab:dc:b6:35:f0:15:33:e0:cd:00:c1:df:7c:01:ff:
5d:0c:cf:8a:e1:cd:41:ff:0a:83:17:e0:11:00:8c:
1f:ec:82:0b:11:30:11:56:8f:f4:6f:e0:16:30:5e:
ee:16:83:22:ca:7b:cd:54:95:bc:af:f6:78:53:da:
b0:5a:ad:1c:d1:38:c1:63:ca:79:aa:1a:6d:b3:cf:
b6:1d:b9:b6:e8:df:51:7d:c6:d5:0d:35:04:bd:76:
e0:bb:a3:d5:45:6e:87:4a:7e:8e:7c:f6:cc:9d:cc:
05:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:66:9B:4A:61:C4:46:C9:15:7F:4A:C7:DF:7E:BC:A5:EC:D4:27:B5
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/_2abSmHERskVf0rH3368pezUJ7U.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:f9:23:01:a3:72:d9:f6:77:39:5c:e3:51:63:0e:26:c8:bc:
a3:de:ce:74:6f:e9:dd:93:bc:e6:d9:f1:42:85:ac:4c:4d:45:
37:be:43:2b:17:f2:1e:1c:25:b3:b6:c0:5a:76:53:ce:1a:2c:
63:ad:de:66:0d:7a:43:d9:fb:b4:3b:cc:e9:86:de:bb:ae:68:
bf:14:1e:d4:bd:c9:bd:85:a5:86:9a:bd:b4:00:48:67:97:ee:
e7:5f:86:31:b7:4d:4c:2e:77:3e:0f:48:a6:d5:3a:c4:25:a6:
e6:af:01:49:bf:50:5a:95:dd:b5:5e:e0:97:52:65:4e:f3:ae:
84:79:df:9d:af:2a:9c:df:8a:b3:26:57:66:00:a8:46:10:91:
49:4a:a9:f1:dc:32:44:ab:41:f0:e0:1c:32:04:7a:6f:c0:04:
8a:29:58:b7:7d:6d:0f:24:60:84:83:7c:76:90:d9:08:28:02:
26:e2:ee:e8:e0:7f:41:c2:70:a8:a4:2c:e1:6b:d0:98:fc:c8:
e8:a7:05:d3:c8:a3:d3:73:27:9e:83:98:73:15:2f:9d:31:f5:
63:65:3a:d3:7d:b8:ac:00:78:fd:04:c0:21:df:d5:da:21:ae:
43:db:f8:c2:06:37:de:ee:86:b9:85:12:46:85:cc:9b:73:63:
08:02:92:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org