Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/g0kSlgOxtxIH3_59XL4FK3XViwM.roa
File: g0kSlgOxtxIH3_59XL4FK3XViwM.roa (raw, json)
Hash identifier: n5f1N57314mcR397OWgiWq9M45E0+gfqJK1WA3WATxg=
Subject key identifier: 83:49:12:96:03:B1:B7:12:07:DF:FE:7D:5C:BE:05:2B:75:D5:8B:03
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 434C
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/g0kSlgOxtxIH3_59XL4FK3XViwM.roa
Signing time: Thu 17 Feb 2022 00:30:04 +0000
ROA not before: Thu 17 Feb 2022 00:30:04 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17228 (0x434c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 17 00:30:04 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=8349129603B1B71207DFFE7D5CBE052B75D58B03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:04:c9:7d:fd:ae:d7:68:19:47:9b:1b:bf:b0:
94:e6:08:48:7d:e4:83:9f:99:00:ea:0e:88:7e:c8:
e5:3c:38:00:ed:03:e0:3f:40:91:dd:23:c2:db:6e:
13:0d:9e:b6:a2:77:c2:cc:ee:0e:52:52:73:69:2f:
79:6c:af:97:5c:98:51:1a:03:56:4e:7e:a0:f5:94:
81:65:55:5c:3f:51:28:0e:47:73:c5:7a:ed:51:41:
6d:df:57:94:04:49:9b:42:57:4b:08:17:ea:bb:a6:
c5:00:53:15:d4:39:1f:22:15:c5:cc:b0:2b:d8:98:
18:02:d4:18:db:49:78:c8:66:55:79:f1:b7:33:4c:
01:bd:72:b1:67:c6:5e:5e:ce:7e:e9:79:37:92:45:
01:ce:48:b0:14:44:c0:f1:0a:3a:0d:42:f8:fa:17:
20:19:af:5a:0f:2c:3f:6f:b1:bc:29:86:f1:34:c8:
c8:28:7e:55:4c:fe:3d:cd:66:46:31:d2:4c:a6:8b:
25:24:b3:11:5c:4b:b2:61:f2:88:5b:dc:b9:47:f4:
e0:98:34:50:95:f2:22:db:24:29:b9:79:69:48:bd:
91:b2:24:44:5d:64:ba:65:a3:b6:d6:7a:33:5e:d4:
a1:3b:45:b5:25:a8:b2:04:ec:89:20:cc:f2:7f:82:
3d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:49:12:96:03:B1:B7:12:07:DF:FE:7D:5C:BE:05:2B:75:D5:8B:03
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/g0kSlgOxtxIH3_59XL4FK3XViwM.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:71:f7:95:c4:78:43:6a:90:38:85:b5:18:c2:ce:a0:0b:5a:
a7:62:f9:a3:14:b0:5c:2a:70:b0:94:35:47:0f:40:84:c8:6b:
8a:d1:7f:3d:ce:b9:95:2d:a3:77:d1:45:90:2b:c9:2a:06:13:
86:92:0c:99:69:15:60:73:20:ab:f4:c3:43:f3:f4:ae:21:ea:
37:11:cd:a9:47:65:19:9c:35:2c:64:5b:e1:0a:8b:8e:da:3d:
c1:68:96:3d:93:8e:67:3a:1f:5a:cd:34:52:eb:d0:e2:f6:ec:
5c:f9:30:f4:83:6c:d0:12:d5:a7:e2:ed:6f:25:8c:dc:54:a0:
10:6e:b7:c9:07:46:48:6e:04:3f:60:54:7b:c6:02:fd:76:cd:
e4:8c:cb:24:5c:b1:61:41:bc:1c:8f:f5:6f:02:e3:40:93:ce:
fd:eb:96:96:7b:3c:15:3b:82:d4:07:74:a3:70:28:39:01:03:
2c:8f:59:41:e1:ca:ea:72:2c:62:1c:7d:e5:ff:20:90:62:54:
7a:65:5d:a4:5b:54:28:d1:ba:e2:7a:ee:8f:17:0e:88:14:70:
5b:36:16:4c:d8:50:7c:17:a3:79:b8:ee:28:59:70:2b:2b:a9:
bb:34:32:f5:37:48:88:91:62:00:ab:bb:17:9d:15:d1:43:40:
05:00:82:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org