Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/mVjdnrVCco2prUatCan0FWcJVTk.roa
File: mVjdnrVCco2prUatCan0FWcJVTk.roa (raw, json)
Hash identifier: H4NCRziu8rM7yvdZI5dHrojWLH/EWns1ttHppJqZ//0=
Subject key identifier: 99:58:DD:9E:B5:42:72:8D:A9:AD:46:AD:09:A9:F4:15:67:09:55:39
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 471E
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/mVjdnrVCco2prUatCan0FWcJVTk.roa
Signing time: Thu 28 Apr 2022 00:30:09 +0000
ROA not before: Thu 28 Apr 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18206 (0x471e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 28 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=9958DD9EB542728DA9AD46AD09A9F41567095539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:49:c5:e0:67:3d:b1:bb:bd:8c:b9:fb:24:3a:
d9:e5:62:b5:48:9d:ab:ac:77:0b:95:f8:b0:29:a3:
4c:24:22:1b:e3:17:93:36:f7:e7:08:fa:d1:0c:fc:
1d:dc:a4:c8:cd:e2:77:b9:81:5c:76:15:56:7e:ac:
ee:8d:6a:5c:d1:ba:c8:f5:08:b3:83:85:04:47:95:
da:30:00:a3:df:67:5f:6c:51:ad:25:6b:4d:78:a8:
e6:6f:a9:7b:06:44:a3:5b:0c:14:1e:9c:cc:ae:c3:
69:e0:bd:e0:be:f7:a2:0e:b9:ac:76:4b:07:3b:6e:
6f:49:7e:8b:1b:ce:e8:5e:1c:8f:3b:49:84:13:66:
6f:b3:13:d7:e8:e9:c9:9e:13:75:ef:f3:45:ec:c4:
fb:ab:72:40:c4:2e:af:46:e3:6f:9a:9c:09:56:98:
51:bc:13:58:18:aa:88:a9:d5:40:41:7c:84:78:ae:
31:60:f4:80:86:0f:c1:52:0d:4f:57:5e:10:0c:bc:
e2:d7:09:bb:d2:d5:51:d3:69:88:68:e6:93:ab:10:
32:81:20:69:f2:91:ed:22:f3:a4:8b:a7:44:8a:1f:
03:59:c1:5c:e4:77:89:9a:e6:24:08:79:62:0f:24:
8c:cf:c6:a6:60:14:10:72:bb:aa:10:b8:e0:0d:b5:
a4:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:58:DD:9E:B5:42:72:8D:A9:AD:46:AD:09:A9:F4:15:67:09:55:39
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/mVjdnrVCco2prUatCan0FWcJVTk.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:a9:20:3d:fe:b8:f8:90:71:d6:5a:8d:7f:3e:ad:5c:79:9a:
f2:de:de:2a:ba:68:e7:16:1b:46:31:d2:25:0a:03:f3:df:cc:
e9:85:56:82:e0:03:cc:3e:31:42:fa:ff:4d:74:fc:d4:88:f5:
99:f5:70:7b:4a:10:26:c0:24:ac:17:35:d4:51:df:17:83:b3:
06:61:9f:68:e6:81:e6:7e:84:db:93:14:c6:88:f5:d6:cb:be:
64:b5:15:41:32:d1:df:23:83:16:83:3c:f2:45:59:d7:c1:7a:
71:bf:5a:d0:9f:e5:21:5b:9a:87:39:43:66:b5:86:3b:5f:c5:
05:fd:c2:12:9a:1b:e1:5f:dd:82:cc:ac:8f:d1:3c:a8:25:b9:
6d:d6:9f:d8:ad:8f:b1:d6:e9:8b:32:3c:5e:4c:56:8b:9d:04:
1b:29:43:1b:3d:0b:8a:73:e3:50:ca:cd:ea:81:23:c8:ec:c7:
e6:a6:8c:47:6f:5c:ae:ab:f0:b6:01:97:e7:46:58:5e:93:93:
77:05:8a:46:1f:1f:40:01:31:40:51:c7:a1:77:c3:53:09:d8:
2f:2b:f5:7e:55:88:38:67:93:ec:48:cb:8e:20:3a:ea:82:bb:
25:4a:76:64:64:d0:71:6c:46:29:91:87:1c:01:98:f7:f6:3a:
43:6b:12:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org