Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/mmbBnmaCG5cyolIt_7G57paH9aY.roa
File: mmbBnmaCG5cyolIt_7G57paH9aY.roa (raw, json)
Hash identifier: nhNimTQFJ6odEO07/57L42qPgS988mKwDHU97mRBPcI=
Subject key identifier: 9A:66:C1:9E:66:82:1B:97:32:A2:52:2D:FF:B1:B9:EE:96:87:F5:A6
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 490B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/mmbBnmaCG5cyolIt_7G57paH9aY.roa
Signing time: Wed 01 Jun 2022 00:30:12 +0000
ROA not before: Wed 01 Jun 2022 00:30:12 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 45.132.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18699 (0x490b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 1 00:30:12 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=9A66C19E66821B9732A2522DFFB1B9EE9687F5A6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:71:eb:77:9f:33:60:34:6d:e7:b4:da:30:5b:
67:18:9b:09:ca:7a:96:16:16:16:76:5f:3b:08:50:
43:89:42:42:71:18:8a:ac:28:ec:6e:07:b7:5b:0c:
8f:c3:91:ee:e0:aa:48:be:36:48:41:0e:5b:5e:9a:
ae:46:b8:3b:2e:4d:97:84:9f:f9:ed:20:f7:10:dd:
a3:cd:7e:51:f1:98:21:7d:d2:ad:39:54:bc:94:3a:
56:d2:12:1a:19:97:c8:f1:13:19:81:76:2a:60:d5:
66:85:09:32:d0:79:5a:6e:b4:17:91:64:0b:3a:d8:
57:d7:c0:3c:d7:d5:50:d6:69:12:cc:ad:36:c7:0f:
54:f3:a9:db:57:b8:9c:0c:9c:86:cd:41:eb:b0:e7:
e4:f8:7e:d3:8d:49:c9:a8:ce:1a:70:4c:73:60:ed:
22:ec:e5:52:c7:08:bc:66:79:65:47:ab:da:91:79:
1f:81:24:e1:1c:95:48:7d:a7:07:f1:06:5f:ab:58:
6c:43:d0:78:a8:2d:e7:91:b1:49:23:71:78:68:2e:
da:e2:ea:53:6d:62:48:41:60:e3:8c:0c:29:e6:89:
90:75:fa:ef:8f:c8:f4:35:21:60:84:8f:d9:22:90:
61:37:cb:eb:f0:8e:31:db:7c:0e:44:66:46:49:fe:
0b:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:66:C1:9E:66:82:1B:97:32:A2:52:2D:FF:B1:B9:EE:96:87:F5:A6
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/mmbBnmaCG5cyolIt_7G57paH9aY.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.190.0/24
Signature Algorithm: sha256WithRSAEncryption
64:f2:af:be:86:13:65:d1:02:c5:64:c5:b4:1a:0f:6a:3f:01:
5a:82:e7:1d:60:0e:b7:ed:78:3e:c3:ed:97:2d:99:46:eb:a6:
d0:62:29:21:22:b0:74:eb:df:64:8c:71:4d:33:d6:6e:f7:d7:
a0:94:c6:8f:04:31:7a:1c:bb:44:ca:7c:9c:5c:c7:60:4b:14:
c3:9a:15:b1:e9:e5:d7:03:51:62:ee:66:ed:90:ee:fd:9d:ad:
2d:be:f1:54:79:7a:0f:96:42:a2:a8:a3:b2:b1:fa:7c:29:07:
7c:77:fa:ce:d8:32:aa:87:76:9e:34:77:d1:80:67:c5:4c:44:
31:35:d8:a9:a7:ae:ea:96:ba:ac:32:42:63:9f:0a:17:af:3f:
a2:98:35:1f:b6:96:e1:e4:b9:c4:7f:74:d8:88:92:84:af:9e:
dc:0e:ce:39:5f:6c:97:16:ff:43:3f:52:84:fb:7f:b5:58:90:
d4:75:52:25:02:db:e2:cc:75:22:95:ae:eb:f9:16:01:b8:a3:
6e:9a:5f:67:41:c0:b2:26:79:03:b4:c5:7a:23:c6:66:99:52:
b3:90:fc:be:4f:55:74:1b:3c:79:80:a7:cd:f0:35:09:eb:16:
c2:3f:f9:84:c2:57:0f:07:e8:25:23:9d:bd:70:bc:86:07:58:
54:e3:70:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org