Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/_UfmzKXnENh-vRjtn5d8n9SH-js.roa
File: _UfmzKXnENh-vRjtn5d8n9SH-js.roa (raw, json)
Hash identifier: aqNNzM/8vwzMc0lrWA2hNbNw27SacGQbKbpEnuig+oc=
Subject key identifier: FD:47:E6:CC:A5:E7:10:D8:7E:BD:18:ED:9F:97:7C:9F:D4:87:FA:3B
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4507
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/_UfmzKXnENh-vRjtn5d8n9SH-js.roa
Signing time: Mon 21 Mar 2022 00:30:06 +0000
ROA not before: Mon 21 Mar 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 45.132.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17671 (0x4507)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 21 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=FD47E6CCA5E710D87EBD18ED9F977C9FD487FA3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:70:69:29:9d:b0:08:a7:9b:dd:99:e3:be:
b3:92:87:d0:81:65:00:82:8f:9d:98:4a:41:df:28:
b9:ef:e6:93:06:59:ec:11:71:1d:59:28:86:7b:59:
c9:9f:36:b5:58:39:b8:7a:ec:11:64:ca:c2:21:c8:
e1:4f:6f:67:a2:39:b7:bb:e1:fa:19:b1:61:87:6b:
49:48:47:ae:fe:d4:24:58:e7:23:07:09:1e:29:51:
52:dc:a0:c6:d5:61:9b:e5:7f:df:74:b1:a2:18:9d:
e1:33:f9:8e:ad:2d:fd:9a:f3:02:3c:bb:7e:95:28:
06:c8:d5:0c:10:2e:fa:f7:e6:ff:ae:73:8d:be:18:
e5:07:7d:75:fc:50:6a:a5:99:e1:51:29:da:f9:93:
64:da:bb:4f:04:ef:93:8c:76:19:68:dc:e9:bc:c4:
40:d6:a2:67:c5:32:71:6c:7f:01:27:fd:0c:2b:93:
24:e0:88:45:56:7b:89:86:99:dc:23:64:58:c2:fd:
6b:4a:ab:99:03:8c:51:20:da:82:b4:51:c5:de:00:
38:0f:af:71:3e:cb:10:ab:c1:9b:7a:8f:86:f3:ba:
60:af:34:99:ec:b9:3b:80:74:81:f0:76:6b:14:18:
86:0e:47:59:3c:2e:c9:73:96:2e:2b:0c:e6:fb:04:
16:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:47:E6:CC:A5:E7:10:D8:7E:BD:18:ED:9F:97:7C:9F:D4:87:FA:3B
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/_UfmzKXnENh-vRjtn5d8n9SH-js.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.191.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:88:01:46:d7:c3:2d:fe:b9:2e:49:3c:db:37:57:0b:df:a3:
f7:2c:de:4a:77:16:c5:76:29:ad:cd:29:f2:1f:16:be:97:b3:
cf:09:6f:a7:62:69:2b:f0:98:b7:65:66:52:58:9c:82:fb:42:
40:17:76:3e:74:f8:aa:2a:60:e1:59:98:95:1f:3f:47:90:4a:
60:19:e9:4e:9f:a7:ea:44:8c:50:75:57:63:4c:12:62:89:43:
d6:e5:df:a0:8a:4b:3c:8f:66:21:8f:82:ed:24:0e:60:37:7d:
fe:ce:60:95:79:bb:ff:47:54:41:60:76:54:84:96:9a:89:1f:
88:be:7e:c4:dc:38:6e:d3:91:69:5b:b5:ba:50:e3:76:fb:4a:
9f:c9:ea:a4:b4:d1:82:a9:38:dd:a2:73:1c:70:87:1b:4d:bf:
4c:cc:de:8a:9a:83:92:b7:6c:f9:ba:e3:b1:80:c2:81:39:2c:
40:b7:58:f8:1c:a8:4e:72:ff:a7:f5:24:83:18:14:e6:be:91:
bc:e8:07:2a:48:52:a9:5c:0d:82:5e:c8:50:90:a3:6b:12:81:
a6:d7:ba:48:3a:e9:45:19:44:e8:09:5b:64:d4:25:8f:6f:d7:
65:60:9c:01:9a:a5:56:1e:0b:a1:7d:b5:17:63:19:f2:81:2e:
31:30:da:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org