Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/pOZtRpWL5732Hd_zlTEzU7gCY9I.roa
File: pOZtRpWL5732Hd_zlTEzU7gCY9I.roa (raw, json)
Hash identifier: M/9/3tdlO+Eu7EhgdeuxE053KvT8omlDD3OBS+BT7IU=
Subject key identifier: A4:E6:6D:46:95:8B:E7:BD:F6:1D:DF:F3:95:31:33:53:B8:02:63:D2
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4773
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/pOZtRpWL5732Hd_zlTEzU7gCY9I.roa
Signing time: Wed 04 May 2022 00:30:12 +0000
ROA not before: Wed 04 May 2022 00:30:12 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18291 (0x4773)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 4 00:30:12 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=A4E66D46958BE7BDF61DDFF395313353B80263D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1a:69:e5:ab:39:76:10:09:79:07:76:ae:43:
fe:61:93:9a:d7:9f:75:e5:f1:d8:db:d7:f7:59:2f:
12:a3:72:d2:9d:52:44:a3:fd:83:e1:80:9b:5b:32:
b2:30:ba:61:16:0d:e6:86:7b:db:44:c7:85:82:67:
21:23:93:37:dd:a4:b2:73:db:45:e4:1f:d6:c5:3a:
97:5f:54:25:bf:71:0d:67:7a:d6:07:04:bc:2e:4d:
46:16:f5:79:0c:6a:21:f4:a7:ab:85:d0:35:8a:86:
66:97:8d:3f:ea:5c:95:43:f1:62:a6:32:17:fc:42:
fc:6b:e8:bd:20:70:33:c7:20:d0:82:ad:87:b7:b9:
80:18:6c:09:db:b5:b9:4e:d5:e9:2d:bc:ce:d7:02:
70:53:86:8b:5f:e2:5f:60:11:03:4a:88:e7:46:58:
ed:c7:98:7b:76:55:8e:53:37:d7:41:22:26:35:ed:
32:d8:bd:d6:08:15:50:c3:57:02:6c:ab:21:3a:c6:
f9:52:95:b2:97:81:cd:b1:c7:d3:27:5d:75:09:a6:
fe:66:0b:8b:b7:64:55:20:89:12:40:35:7b:00:33:
43:47:66:f7:fd:56:16:0c:36:58:5d:5f:ae:cb:ae:
71:e3:88:3b:26:f4:26:93:9d:a2:f8:38:cc:7f:9a:
0c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:E6:6D:46:95:8B:E7:BD:F6:1D:DF:F3:95:31:33:53:B8:02:63:D2
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/pOZtRpWL5732Hd_zlTEzU7gCY9I.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
68:cb:93:ad:08:48:d4:bf:73:a1:e4:0e:80:bb:d5:35:a6:60:
23:86:ae:38:de:2a:39:d9:bc:c2:05:a5:d8:77:e4:16:70:1c:
65:e1:2b:ad:0a:84:d2:33:80:8f:f7:e7:46:2f:ce:c8:25:76:
73:96:16:8f:e6:97:82:29:fe:c0:7c:6f:a8:bc:d2:59:6d:c4:
5f:17:f6:e1:29:f7:fd:ec:f2:3c:47:58:82:6f:5a:d6:6f:15:
26:09:c1:0c:ad:f6:3d:c7:f6:ba:f4:9d:e7:1b:a6:86:20:71:
be:ca:14:ba:c7:13:a3:a7:f9:8e:0e:79:a2:ca:29:67:1c:37:
31:33:ff:30:9e:60:72:f8:35:06:8b:4e:1a:aa:89:65:81:ef:
51:8b:4a:3d:67:64:38:96:ff:b1:62:6b:6e:6a:4a:86:a3:d1:
ed:28:ba:aa:95:13:c2:7a:63:62:22:1a:87:d0:9e:8f:c8:d2:
96:b9:c7:66:44:d4:91:73:32:04:40:2b:35:cd:a9:12:fe:da:
f5:75:cb:5e:db:a1:2f:0c:b0:23:d5:f1:4b:6c:3b:bd:b0:b4:
ef:c4:61:b6:f9:d9:6d:33:02:f6:03:58:6a:b0:05:ae:c2:4a:
2e:6f:88:43:47:d6:fa:0b:c7:5f:9c:74:39:cd:20:c9:53:4f:
81:a8:da:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org