Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/bjzef683dwLmfvvs_gDVfiyACgE.roa
File: bjzef683dwLmfvvs_gDVfiyACgE.roa (raw, json)
Hash identifier: 6mwN2tCwmNXHRDHsQZWHwujlWEIkmpnNs65qhaGUm5U=
Subject key identifier: 6E:3C:DE:7F:AF:37:77:02:E6:7E:FB:EC:FE:00:D5:7E:2C:80:0A:01
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 42F0
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/bjzef683dwLmfvvs_gDVfiyACgE.roa
Signing time: Thu 10 Feb 2022 00:30:09 +0000
ROA not before: Thu 10 Feb 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 45.132.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17136 (0x42f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 10 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=6E3CDE7FAF377702E67EFBECFE00D57E2C800A01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:57:3c:df:9a:cb:9a:b0:99:7a:8c:4c:87:b8:
13:e5:48:b4:b9:9f:3b:38:33:32:3c:98:d0:6d:0e:
9f:9b:7d:fb:5d:83:9a:e2:d5:02:5b:cf:24:42:bc:
43:fa:72:72:61:ac:ae:db:26:c5:ce:a9:76:e8:c4:
b3:d7:a1:41:0e:6f:15:84:19:59:65:3e:eb:5e:d1:
25:7b:17:b2:9d:0b:82:85:e0:d5:1f:b1:a5:23:e1:
e6:bc:75:88:5c:99:bd:df:81:d2:ef:76:1f:2b:c1:
48:7f:3c:79:6f:20:76:d0:8b:f5:69:aa:31:41:be:
b4:72:55:f7:a6:bf:4f:55:19:52:dd:a9:34:35:6f:
ee:13:e6:da:a8:25:5f:c2:0a:cf:ce:85:af:d3:31:
f3:62:11:2b:d4:d5:82:6a:28:c2:a2:ac:10:96:e9:
20:d5:f5:73:86:dc:94:4e:00:b8:5c:42:79:20:3f:
7e:38:d7:e9:48:68:80:53:cd:71:43:62:5e:96:d4:
eb:c6:28:f7:0f:25:6a:51:8b:90:51:d8:cd:de:6c:
a2:7e:a7:91:48:ad:b5:82:62:ca:03:6a:44:50:c0:
91:58:76:e0:08:d1:0a:90:13:c1:ca:49:25:ea:01:
5c:79:73:12:43:0a:cd:31:d4:d1:97:0d:fd:49:86:
2e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:DE:7F:AF:37:77:02:E6:7E:FB:EC:FE:00:D5:7E:2C:80:0A:01
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/bjzef683dwLmfvvs_gDVfiyACgE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
54:b1:51:d5:24:e6:45:ab:2e:b1:41:41:d2:a5:1e:6e:2f:7a:
88:e0:17:80:49:47:81:32:50:1b:2f:98:d7:99:38:4d:20:45:
c7:20:22:26:09:15:04:88:ed:39:af:ca:f5:46:3f:f0:d4:d7:
21:b3:30:83:0b:51:32:ca:35:a4:36:86:8e:56:38:21:b2:83:
c0:d1:d0:ec:c3:d9:5b:9e:67:d5:d7:c8:0b:b3:57:ec:9e:bd:
8b:0b:9c:76:6b:24:bb:96:00:54:45:c5:7c:5f:10:f3:07:2a:
38:f2:d0:08:62:6f:2f:c7:a1:d4:41:6d:96:d7:2d:6a:fb:48:
c9:9d:46:13:d9:f9:d1:fe:88:a8:af:f0:f3:6a:f1:f7:a7:23:
a9:10:c1:de:09:0f:86:8f:9d:e1:7a:11:b7:ee:57:41:6f:52:
2d:b5:98:98:cb:32:00:c5:0d:19:25:49:27:20:93:60:48:0d:
46:b5:3b:9b:41:6f:03:6f:71:61:9d:66:09:14:52:d6:eb:7d:
b9:3c:0b:64:e0:16:9e:45:ee:6e:96:f0:66:7c:89:e2:e4:dd:
60:5b:30:22:90:6a:fa:07:c5:e1:1b:c1:cb:89:08:de:33:9d:
d5:ca:5b:da:50:90:05:af:c1:d4:3b:0b:97:51:45:2c:99:71:
3c:5b:de:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org