Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/lYfpO5jVwJ762YYSZbeDQ58mXAw.roa
File: lYfpO5jVwJ762YYSZbeDQ58mXAw.roa (raw, json)
Hash identifier: Ql68fwMHfRSzirYcSDFwU1GmZxGf/F32XHs3F8IozUk=
Subject key identifier: 95:87:E9:3B:98:D5:C0:9E:FA:D9:86:12:65:B7:83:43:9F:26:5C:0C
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 45A0
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/lYfpO5jVwJ762YYSZbeDQ58mXAw.roa
Signing time: Fri 01 Apr 2022 00:30:05 +0000
ROA not before: Fri 01 Apr 2022 00:30:05 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17824 (0x45a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 1 00:30:05 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=9587E93B98D5C09EFAD9861265B783439F265C0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e1:9f:67:c9:23:be:d7:7b:89:59:c9:c2:05:
54:d6:1a:45:c0:41:ea:48:bd:8a:a9:61:47:5c:43:
c9:cb:82:de:49:c7:db:ad:db:c3:23:51:cb:9a:aa:
a1:85:3a:df:70:7e:97:ae:ab:46:e8:a3:7f:03:f9:
6a:3d:04:9e:8d:8d:52:e7:e0:88:2f:e1:68:dd:72:
1f:d3:59:03:f9:19:e2:f8:4e:d7:8f:72:2a:5b:6b:
be:d8:51:9c:59:d4:2a:8f:85:02:e9:25:63:1e:c8:
94:f5:1c:6b:9f:94:6a:5f:cb:a3:f4:04:2f:bd:77:
48:08:2f:be:bd:70:03:85:01:39:91:39:84:21:55:
b0:a1:fb:18:b6:4e:d3:44:8b:e7:cf:93:52:94:03:
08:50:ea:2c:c1:02:24:16:37:9d:f7:41:3e:a4:0c:
96:8f:a1:01:c7:7e:22:57:f6:33:79:57:cb:ad:35:
49:99:8d:ba:b5:c0:92:b1:d2:b0:a2:aa:5c:69:8a:
05:32:c9:20:44:2e:a3:6f:c7:e2:45:73:b2:c3:67:
bc:2a:de:33:10:ae:45:65:97:a4:f6:ba:22:37:25:
f8:c2:e9:ab:ff:f2:19:f5:e4:b4:1d:83:a5:73:86:
1f:6e:c8:86:df:57:e5:e0:ff:01:a5:de:c0:86:2b:
88:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:87:E9:3B:98:D5:C0:9E:FA:D9:86:12:65:B7:83:43:9F:26:5C:0C
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/lYfpO5jVwJ762YYSZbeDQ58mXAw.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
87:6a:ca:77:56:a8:bb:a2:4f:03:10:7d:ef:26:69:de:20:37:
3a:3c:5b:bf:1a:8f:26:62:e9:9d:0d:42:49:d3:b3:45:f0:0c:
ec:4c:74:d1:84:1a:3b:e1:c1:63:1e:b0:c2:40:e1:08:89:2d:
89:5a:42:f1:fd:9f:b4:a7:92:aa:59:47:05:4d:8c:af:4c:3b:
22:3c:4a:eb:78:a8:4f:fc:92:c3:24:a1:ed:d1:c6:34:12:b4:
fc:af:64:cd:2e:4b:f9:dd:f7:02:aa:17:72:eb:21:22:ba:3e:
be:39:ed:c8:8b:c6:b1:4d:66:c6:c7:09:05:5c:28:72:b1:0d:
70:c8:64:68:71:b3:8a:79:1f:a3:4d:de:b9:cc:51:8e:67:25:
c4:08:dc:2c:40:75:0f:c3:3a:2a:19:e7:fe:6f:f8:f8:7f:8a:
4b:43:27:31:2a:d2:90:cd:b5:00:fd:4e:32:93:bd:62:c1:7d:
31:89:9c:7d:67:7c:b4:12:67:89:83:4c:46:28:0e:27:d8:85:
80:5b:31:38:77:cd:1b:b9:14:d5:4b:ea:41:05:d7:1c:a6:0f:
bc:d0:90:6a:5d:58:e5:49:21:8c:ba:69:77:e4:e0:19:c5:f1:
22:24:de:03:4d:85:2d:63:b6:70:1c:5d:23:54:70:e9:4e:f3:
58:34:d0:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org