Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/h9Ei1lDHNzDuHNrep5hq2yhS5rk.roa
File: h9Ei1lDHNzDuHNrep5hq2yhS5rk.roa (raw, json)
Hash identifier: 5RxJpYx1B4uojGGgeGoyxAKkPbkynyQNwmf/9OuBPKM=
Subject key identifier: 87:D1:22:D6:50:C7:37:30:EE:1C:DA:DE:A7:98:6A:DB:28:52:E6:B9
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4870
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/h9Ei1lDHNzDuHNrep5hq2yhS5rk.roa
Signing time: Sun 22 May 2022 00:30:10 +0000
ROA not before: Sun 22 May 2022 00:30:10 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 45.132.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18544 (0x4870)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 22 00:30:10 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=87D122D650C73730EE1CDADEA7986ADB2852E6B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:34:0a:43:7e:1c:14:71:d9:b3:19:e9:02:d9:
3f:0b:b4:31:fa:cc:29:72:0f:25:28:62:02:76:f4:
de:66:84:6d:36:1c:49:9a:0a:56:e6:cc:8d:c8:9e:
99:0f:bd:9a:3a:4f:09:27:24:39:42:11:fe:73:30:
0c:3b:f5:a7:c6:3b:1f:27:77:a6:27:c9:a1:cb:2c:
8f:b5:6f:2a:49:60:ce:3c:cd:8c:43:63:85:ea:c0:
7d:50:e3:15:f1:30:65:e2:39:d5:fe:d2:5a:77:99:
12:74:66:e9:5b:ba:93:36:d6:5f:99:9a:3b:04:64:
22:93:21:6e:0d:9f:a2:32:84:48:ea:06:5f:dc:fb:
65:e1:c7:f8:b0:39:d8:a8:73:9f:c8:26:b9:c2:11:
b5:c4:18:3f:4b:a8:05:d4:be:ca:d9:b2:08:ff:58:
66:46:9d:1d:94:0d:33:c9:eb:92:ad:77:1e:83:fa:
7d:5b:e2:de:c8:5a:5d:ae:47:8d:50:7a:70:68:85:
dc:aa:c2:55:21:a8:7e:56:26:3b:16:9d:f2:78:64:
69:1e:6d:46:b1:71:3d:55:2c:11:e0:42:f8:8f:bf:
7b:bf:a6:7a:d1:e1:05:cc:08:ca:b6:c9:f5:6c:c1:
2e:74:e2:47:b2:9c:70:3d:f4:f1:91:51:7b:da:a7:
ca:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D1:22:D6:50:C7:37:30:EE:1C:DA:DE:A7:98:6A:DB:28:52:E6:B9
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/h9Ei1lDHNzDuHNrep5hq2yhS5rk.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d9:1d:ec:8d:b1:4f:87:de:27:61:2f:65:e9:68:b2:46:d3:
5c:aa:b7:37:49:94:fd:db:2f:08:f1:53:0d:b6:d0:48:1b:5e:
c8:af:55:5f:18:5b:50:a7:57:51:c6:be:9b:df:bf:06:87:5d:
61:38:06:05:52:1c:aa:1c:1a:a6:67:03:22:05:46:6c:7c:0f:
ab:7a:3a:3d:52:d9:5c:86:37:f0:e9:58:71:aa:aa:35:14:ae:
aa:db:88:c2:c2:6d:a3:f5:0e:74:90:c9:7a:6e:a7:19:83:a1:
d3:c4:97:ea:ee:14:12:13:2c:f6:99:d0:c7:36:41:a2:3b:d0:
1c:a4:e3:6c:9a:d8:46:0d:db:e3:de:5e:02:b1:3d:77:33:39:
56:8e:c9:3f:a9:1b:9f:fa:df:93:2f:29:fe:79:bb:e0:b5:ab:
3e:e4:87:09:75:cd:26:80:d3:a7:65:1d:d5:fe:aa:d0:2e:78:
8b:51:a2:ca:7c:df:d9:51:30:71:5d:0f:c1:5d:44:69:a9:62:
5e:bd:8d:ea:28:56:c4:fc:ec:b2:62:c8:82:c0:0e:96:56:47:
9c:22:d0:6b:c1:ce:e4:af:44:6a:a3:de:16:b7:79:14:25:c3:
22:5e:1b:c3:4a:b4:68:de:cf:e0:83:fc:dc:ec:d6:15:76:a8:
ba:09:e7:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org