Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/iwffzEVkveHQRgUVFZsR9lECAeE.roa
File: iwffzEVkveHQRgUVFZsR9lECAeE.roa (raw, json)
Hash identifier: xKPbOsYLDPTLvzaRFwF6AAPgIMHAu7WV75M9+XPol00=
Subject key identifier: 8B:07:DF:CC:45:64:BD:E1:D0:46:05:15:15:9B:11:F6:51:02:01:E1
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4330
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/iwffzEVkveHQRgUVFZsR9lECAeE.roa
Signing time: Tue 15 Feb 2022 00:30:05 +0000
ROA not before: Tue 15 Feb 2022 00:30:05 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17200 (0x4330)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 15 00:30:05 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=8B07DFCC4564BDE1D0460515159B11F6510201E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:0b:fe:93:00:73:17:dd:d7:87:f9:a6:52:3d:
3e:f8:c3:fd:d3:12:3c:0c:29:cf:55:cd:9a:60:80:
e7:10:5a:41:3d:b8:58:e0:af:9b:61:48:a1:aa:f6:
fe:a6:1c:d8:b6:24:c9:e7:d4:2f:47:9c:73:6d:dc:
77:d2:f8:ea:ea:76:02:05:5f:e7:60:c7:3a:17:53:
f2:b7:94:b1:07:5c:ac:20:e3:84:d4:da:e1:32:f8:
c7:6d:fe:4e:f5:a9:30:47:79:12:eb:67:64:cf:d2:
04:4a:9b:37:be:75:66:f0:f5:4d:c0:c4:07:b7:1c:
23:04:bc:75:ea:c2:b2:16:30:c9:01:ce:ed:04:c3:
81:20:78:35:4d:ad:95:19:2a:c0:9f:8e:3c:ec:c2:
59:47:4a:31:e6:99:07:b6:f5:d3:8d:5d:67:bc:7c:
e2:19:43:f5:40:7d:d6:60:f8:cd:a6:b9:15:30:8a:
80:44:b0:4b:59:f0:7d:1a:35:ab:24:f9:4a:a2:6c:
ce:08:69:3f:0e:3b:5e:18:b0:88:bc:64:2c:fa:56:
c6:b2:e1:ba:b2:86:c7:e3:bd:12:c5:14:78:6f:2a:
f4:28:7c:97:1d:d6:00:8e:f1:9e:24:69:27:c3:fb:
a2:05:df:54:91:65:51:a0:02:34:41:9d:4f:9c:8e:
64:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:07:DF:CC:45:64:BD:E1:D0:46:05:15:15:9B:11:F6:51:02:01:E1
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/iwffzEVkveHQRgUVFZsR9lECAeE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
37:79:79:1f:49:cd:e0:44:0a:d9:f4:86:92:1a:7b:3d:0d:a4:
de:0d:c3:66:ae:cf:82:b8:0f:ef:b3:69:31:80:35:ee:31:d7:
56:3c:b5:24:1d:f1:25:83:18:f5:27:85:13:be:ce:62:c7:0f:
18:d0:b5:e9:dc:1f:57:2c:e1:47:6b:b7:eb:82:78:c2:ae:8f:
23:c1:41:79:e5:30:44:a0:a8:26:01:e6:c2:e3:bc:e3:d3:85:
49:57:db:e7:b1:a1:4e:0d:04:96:32:65:1f:2e:87:07:c2:db:
01:1e:6e:28:45:a5:9e:19:d3:c8:1b:c9:d4:42:bd:81:ef:9f:
03:a1:68:cb:93:42:3c:e8:0d:07:ab:28:11:3f:c8:e6:a2:6c:
ca:b6:4a:4b:af:de:09:17:af:d5:e8:81:18:54:04:71:42:b9:
09:f9:78:75:c8:59:79:f5:0f:d8:b3:4f:d7:e3:ad:35:04:a6:
92:2d:12:dc:6d:be:6c:41:20:30:53:35:54:db:d1:b3:dc:19:
1b:ca:83:8f:6e:e2:17:a6:48:e4:2e:db:8b:b6:f1:e5:96:54:
b0:55:27:2f:a0:de:3c:26:ce:17:c3:01:fe:d8:34:f9:90:52:
59:8f:f8:08:f8:3c:9b:20:fe:7e:77:56:72:b2:f8:54:a1:ff:
3a:06:c7:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org