Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/pvStONfvBHth2ImrQ7QHvLGRwAc.roa
File: pvStONfvBHth2ImrQ7QHvLGRwAc.roa (raw, json)
Hash identifier: 1O4Ns2UFegovkOBpoRYe215v3KfKv7tmuBt7SguhX/M=
Subject key identifier: A6:F4:AD:38:D7:EF:04:7B:61:D8:89:AB:43:B4:07:BC:B1:91:C0:07
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 496B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/pvStONfvBHth2ImrQ7QHvLGRwAc.roa
Signing time: Mon 06 Jun 2022 00:30:07 +0000
ROA not before: Mon 06 Jun 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 45.132.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18795 (0x496b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 6 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=A6F4AD38D7EF047B61D889AB43B407BCB191C007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:20:91:27:95:b9:21:63:95:6e:8d:52:b8:e2:
b0:8a:df:c3:3c:c2:17:a3:77:b1:f3:75:3e:a3:92:
73:fc:ce:e4:2c:1c:ff:f7:7d:ed:da:f2:6a:a7:c7:
1e:00:64:ac:8b:06:dc:82:07:ed:ff:c1:da:07:eb:
8c:33:99:57:5e:1b:4d:91:d0:55:13:f1:eb:96:1a:
e7:55:c9:7c:ed:81:62:3e:00:9f:dd:16:21:c4:98:
b2:3e:33:5c:2b:d4:9c:7b:87:98:e0:0d:40:4c:71:
37:19:b0:ae:98:ea:cd:b5:e9:27:6e:f8:94:3b:4d:
25:17:26:83:88:b7:65:8a:50:24:e8:89:84:0a:85:
97:dd:73:82:7f:35:71:d4:db:52:86:4d:38:7f:df:
62:40:64:3b:43:10:1c:5d:bb:e8:93:8c:9b:33:a6:
1f:70:5b:6e:f8:36:7d:e0:9c:c3:43:cd:1e:b3:7f:
b5:91:68:2b:05:7f:9e:e5:55:d3:d3:d4:c9:80:4b:
0e:f9:3b:c4:40:8b:d7:1f:fd:a6:24:c7:26:0c:24:
86:83:c5:cb:a0:e9:11:e9:c4:e6:43:2c:c5:e7:e1:
9f:04:7c:9a:91:4e:be:d0:75:6d:5e:8e:2a:ea:9a:
92:8a:2c:d7:ec:e9:01:f4:5a:2e:bd:87:bc:b6:8a:
09:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F4:AD:38:D7:EF:04:7B:61:D8:89:AB:43:B4:07:BC:B1:91:C0:07
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/pvStONfvBHth2ImrQ7QHvLGRwAc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.191.0/24
Signature Algorithm: sha256WithRSAEncryption
56:31:88:9e:02:71:c4:4f:74:ab:7b:5d:89:ab:8e:8d:fc:bb:
41:e4:4e:66:59:9a:de:bf:0e:05:52:1b:b7:d2:15:62:e5:b0:
35:c4:48:18:c7:8e:fb:c4:d0:1c:1f:70:9f:5f:17:bc:72:7b:
98:e6:c4:0f:be:ab:40:0a:99:45:1f:b0:65:90:6e:de:09:a7:
91:80:c1:93:61:39:58:58:c7:90:2d:81:53:36:8f:67:f5:f5:
a6:15:af:ed:a6:5b:c7:61:97:b6:4c:96:9b:99:a2:9d:96:f1:
e1:6d:63:68:3e:92:b6:93:5c:64:07:5b:75:26:4c:0c:2d:4e:
e4:d6:c8:4a:3b:b6:2c:e4:6f:da:36:b1:c6:95:c3:4c:35:29:
c2:a2:98:ea:ca:67:ab:9c:20:33:00:09:3f:ac:7e:da:e0:4e:
4a:b1:d1:8a:d5:f8:d3:e0:f0:15:33:3c:f8:49:60:e4:97:08:
62:17:b8:9c:83:e5:86:9f:65:d7:7f:66:b6:ec:4c:ae:bf:f8:
6e:9b:cf:c7:99:22:7f:fa:e0:ec:c4:91:62:d5:66:23:24:55:
c0:70:eb:12:fa:d3:34:50:dc:79:0a:b1:e6:2b:0b:b1:09:fe:
93:1c:2c:fe:16:fc:6b:24:ea:45:8a:17:6a:f1:4a:47:5f:20:
2d:d3:16:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org