Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/rqbZ2QKg4s7OjTYVdvGe5Rk2LPc.roa
File: rqbZ2QKg4s7OjTYVdvGe5Rk2LPc.roa (raw, json)
Hash identifier: kCZhhUfKurBWbp0YRON+hbF+04RwrV0K/YxympTzNQQ=
Subject key identifier: AE:A6:D9:D9:02:A0:E2:CE:CE:8D:36:15:76:F1:9E:E5:19:36:2C:F7
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 433F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/rqbZ2QKg4s7OjTYVdvGe5Rk2LPc.roa
Signing time: Wed 16 Feb 2022 00:30:06 +0000
ROA not before: Wed 16 Feb 2022 00:30:06 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17215 (0x433f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 16 00:30:06 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=AEA6D9D902A0E2CECE8D361576F19EE519362CF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:44:28:c2:d2:2b:ef:41:38:eb:d0:96:8c:a4:
90:5e:1e:91:96:0b:9b:04:8d:9c:17:46:22:23:68:
ee:b8:2a:63:5a:35:df:15:45:e9:78:f3:ad:c6:c5:
ee:19:a4:1b:03:ee:21:a3:06:8d:9a:97:76:45:8d:
47:8f:83:c8:07:4e:50:71:e0:ea:42:12:80:ee:95:
18:1f:9f:0a:c2:73:b8:b1:80:2a:a2:76:3d:22:3e:
96:f1:66:83:48:a9:a2:3e:a8:cc:6d:e3:66:57:33:
ea:2c:32:81:bc:bb:48:77:9f:56:36:44:2d:f9:a3:
3b:a4:ff:8e:55:7f:66:3d:91:b0:4b:80:5e:51:d9:
a6:e7:f2:55:d2:70:18:55:86:d3:a2:6a:c3:b3:20:
16:72:96:9e:83:51:4a:31:e0:1a:ea:2b:c8:ec:4b:
90:54:b1:7a:67:a0:ad:cf:03:44:2f:81:98:a5:85:
74:df:b8:50:23:80:80:af:36:8b:8a:14:a9:2a:e8:
57:23:17:12:37:c7:9b:bf:6c:91:00:c7:42:f0:cf:
43:fb:38:9b:4c:d6:db:cf:09:34:83:3b:cd:8d:12:
32:cf:0b:3a:1f:45:9c:ce:dd:4c:bf:f8:53:ab:a6:
14:b9:2e:49:5c:ba:85:51:d6:93:8f:93:1e:e7:a9:
08:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:A6:D9:D9:02:A0:E2:CE:CE:8D:36:15:76:F1:9E:E5:19:36:2C:F7
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/rqbZ2QKg4s7OjTYVdvGe5Rk2LPc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:1a:5d:d1:a5:a0:b6:1f:cd:21:8f:49:73:99:e5:c3:96:d8:
ea:19:88:ed:66:79:af:61:b4:62:e7:31:e8:a5:a6:79:f4:11:
3d:c7:ed:b6:ed:13:97:9c:9f:35:d8:4c:31:ec:db:34:00:71:
a9:f8:85:38:15:f2:33:32:d0:78:61:84:e2:75:b1:8a:e1:a6:
47:64:60:91:7b:17:5c:87:6f:55:be:a2:87:d7:e6:03:38:06:
ba:51:8f:11:42:4a:9f:89:53:85:9f:64:1f:3d:5d:61:65:c7:
5e:a7:5e:48:69:c0:c0:e5:09:4d:9f:56:dc:65:88:dc:7f:07:
db:cc:85:54:fb:7f:66:7b:21:b4:30:55:ae:40:87:65:64:18:
76:d0:8b:93:14:cf:19:2e:92:9a:5f:ab:39:fe:92:d3:8a:d0:
da:ab:7e:3c:5a:5b:20:8b:d7:3a:f7:2b:07:8b:14:d2:5f:74:
3f:a6:da:60:35:41:1f:21:da:09:8d:8a:5f:3e:87:c0:11:55:
8e:74:21:9f:1e:97:ad:95:9c:bf:df:5d:ad:9d:22:b9:b8:82:
a3:1f:7a:5b:05:9e:ad:30:7f:e7:a2:31:4f:79:90:a7:e7:ee:
33:07:22:3a:d5:fc:58:54:09:cc:27:0a:ae:3c:0b:26:e4:0d:
c7:f3:27:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org