Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/bPh-Y0hlMoAFqMepMOuqIKsULts.roa
File: bPh-Y0hlMoAFqMepMOuqIKsULts.roa (raw, json)
Hash identifier: r5Cxd3MAShet4iGND05pp81nrKIFhwuP8iQAYTPqBV0=
Subject key identifier: 6C:F8:7E:63:48:65:32:80:05:A8:C7:A9:30:EB:AA:20:AB:14:2E:DB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4703
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/bPh-Y0hlMoAFqMepMOuqIKsULts.roa
Signing time: Tue 26 Apr 2022 00:30:08 +0000
ROA not before: Tue 26 Apr 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18179 (0x4703)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 26 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=6CF87E634865328005A8C7A930EBAA20AB142EDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e7:05:31:f6:43:eb:a6:44:11:8b:9f:01:cf:
6c:59:d8:7c:ad:39:44:45:e3:7b:5c:21:94:6a:13:
67:3a:86:5b:26:d3:e0:f9:92:d0:00:6c:0d:95:89:
53:da:ea:6c:87:cb:0c:b7:75:41:1c:5b:86:38:e6:
a5:ad:98:69:45:e7:ed:7c:d7:7d:36:bd:21:37:fc:
39:46:57:3d:ff:f8:3b:27:7b:49:88:0d:95:ec:b4:
2c:f7:cf:7f:3b:da:11:a6:e7:b4:e7:e1:ac:a3:3d:
05:9c:86:62:62:79:fe:ed:cc:83:a1:69:e4:fd:23:
92:f8:23:d1:c1:ec:16:e8:e4:7e:d8:eb:f3:ea:68:
5b:a0:5e:0d:46:12:f0:3e:56:16:e1:59:6f:48:cd:
6d:8a:b1:10:51:22:c2:a4:de:e2:c3:65:b6:31:26:
cd:16:f5:52:90:e9:19:00:ee:d0:2b:82:f1:55:be:
c9:c2:a6:c8:b8:67:3c:2f:82:79:ba:70:4c:1e:fb:
fc:12:d4:d1:5d:72:8b:53:a6:c4:18:06:64:b5:15:
e9:d3:d7:dd:13:82:80:78:43:13:06:c2:da:34:46:
d7:42:91:2f:8b:2d:d9:58:a4:8a:76:a2:90:4a:87:
26:ff:7e:0f:c9:fa:ca:81:be:b0:17:ec:7c:24:e9:
5e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F8:7E:63:48:65:32:80:05:A8:C7:A9:30:EB:AA:20:AB:14:2E:DB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/bPh-Y0hlMoAFqMepMOuqIKsULts.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
80:1b:17:95:26:03:c9:65:72:06:ec:87:2f:8c:fb:50:5b:54:
26:a1:0a:c2:7b:cc:3d:6b:5a:db:dd:02:63:13:e9:7b:53:2d:
55:0c:1d:96:7a:87:a4:72:70:fd:ae:77:3c:a4:28:7b:5d:cd:
cb:2c:f6:2d:e3:56:d1:dc:8b:72:3d:ed:9a:cb:fc:53:27:92:
a3:9b:7c:a0:fe:72:3c:57:e5:31:b9:74:40:e9:b7:ac:66:0b:
c4:95:6f:c5:08:14:ca:e5:11:c3:38:2c:3e:66:8f:43:ea:7a:
62:cc:05:57:31:34:ca:4e:17:69:d2:e6:81:a0:6d:30:2b:8a:
aa:e0:6d:3a:30:2b:91:6b:4f:88:ff:6d:a3:7e:02:19:08:92:
1c:f4:48:bd:a0:e3:d2:bb:a2:dd:2f:e2:6f:14:1b:ac:d1:3a:
37:99:18:a6:de:45:e4:0a:ae:36:5f:dc:90:b9:77:84:66:1d:
27:8e:b8:63:fe:0a:32:69:4a:d8:c0:23:7b:b2:a4:83:68:b3:
7d:8e:6c:62:1e:7a:fb:cb:41:c4:16:6e:18:cb:92:ef:6e:e0:
c4:2c:57:a7:fa:59:20:cc:9e:3c:c0:ec:5c:da:52:e9:2e:3b:
3b:24:b3:c7:d0:ad:05:ff:fe:59:86:4b:dc:f8:e8:df:4f:c5:
39:a0:bd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org