Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/_dpwfHlV2JsTWv8hgwJvM6MBmd8.roa
File: _dpwfHlV2JsTWv8hgwJvM6MBmd8.roa (raw, json)
Hash identifier: DtoCsSQeZZvKbof4idmAZdcUQ0ZOFY7C8qMtkQLjOgs=
Subject key identifier: FD:DA:70:7C:79:55:D8:9B:13:5A:FF:21:83:02:6F:33:A3:01:99:DF
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 46D8
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/_dpwfHlV2JsTWv8hgwJvM6MBmd8.roa
Signing time: Sat 23 Apr 2022 00:30:09 +0000
ROA not before: Sat 23 Apr 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18136 (0x46d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 23 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=FDDA707C7955D89B135AFF2183026F33A30199DF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ba:2b:10:41:56:79:39:2d:d7:a9:cc:84:36:
cd:9c:aa:5b:9b:d6:ce:40:d6:1b:af:73:20:02:f6:
b7:2a:27:d0:3c:e8:f5:ec:0a:c8:0c:bb:dd:a0:6f:
de:b8:4a:e6:bc:79:f5:2c:db:0d:42:bb:7a:48:25:
97:2e:e7:49:0f:30:c9:4f:66:3d:93:18:74:7c:6a:
0a:b4:11:9d:f5:ae:03:c8:64:eb:b5:74:c8:f9:de:
82:a4:b6:11:e8:1f:41:e5:be:c2:c5:d0:64:65:0e:
b6:b6:cc:f3:f9:8e:8c:3c:fc:6d:2b:1d:1b:2b:70:
74:8a:1c:fe:df:00:35:36:7f:09:a2:25:b7:21:d5:
dd:46:e9:15:00:3c:84:47:5e:b4:5c:b9:14:c6:52:
fc:28:7d:2b:f3:87:5a:33:0e:33:7e:b4:94:ae:f7:
5b:41:16:ed:a7:da:b5:a0:57:0b:f6:59:51:8e:43:
39:c3:90:64:be:a5:3a:01:d7:2c:43:d3:20:10:63:
05:68:b1:9b:66:0e:ba:0f:4c:06:81:45:30:1c:03:
e0:4b:be:69:a8:09:aa:87:41:b5:86:5f:73:68:3d:
9f:4d:ca:c4:03:d8:5c:7d:38:f5:5e:b1:cb:75:1f:
61:18:46:c5:1a:c3:9c:3b:51:8e:bf:bc:00:c2:bd:
71:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:DA:70:7C:79:55:D8:9B:13:5A:FF:21:83:02:6F:33:A3:01:99:DF
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/_dpwfHlV2JsTWv8hgwJvM6MBmd8.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:17:35:9d:3f:53:2d:db:62:2b:94:17:cd:34:ce:35:11:fe:
23:2b:c1:28:24:af:dc:f1:c8:c2:9b:a9:39:d7:f5:24:00:05:
8d:6c:27:be:9e:85:4d:8c:f8:63:13:e5:8c:5c:06:af:71:8a:
06:22:8c:96:76:d5:59:b1:6c:82:fd:71:6b:2d:60:43:9f:84:
df:d7:a9:81:b1:63:86:87:eb:42:3e:55:1e:55:2c:77:c6:19:
72:e3:f3:86:a3:1c:1c:dd:04:3d:5d:0b:7b:fb:24:58:1b:c5:
9c:8c:83:75:a4:22:df:b3:8f:cf:a7:04:8a:c2:f1:12:0c:58:
a6:9f:d9:bb:56:c0:c2:e3:8d:91:8d:4e:b4:29:04:bd:91:f9:
a3:1c:01:da:d1:1a:80:56:ab:3f:76:d2:6c:33:e5:6b:8a:b4:
e6:ee:25:c2:1e:79:d5:75:83:a8:a7:05:b8:5a:b2:34:0a:f8:
cc:fd:9d:d5:51:d5:8e:64:7c:c2:59:94:dc:bf:2d:1c:7d:f2:
bb:cf:92:c5:c5:b1:7c:fe:5c:8a:39:2f:77:d1:f1:ba:e2:4a:
82:65:c8:2d:59:63:1b:81:4f:18:4e:1f:df:f4:c1:10:a3:5c:
4a:11:3d:8c:ce:27:2b:da:60:23:3c:cb:de:ca:d4:2a:7b:6f:
07:1a:b9:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org