Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/rydHB8SKpwFnRhVdDud8wPmA8a4.roa
File: rydHB8SKpwFnRhVdDud8wPmA8a4.roa (raw, json)
Hash identifier: TifOFlCFi0k2HEpMchuWYp2DjTgoM6YEz8k8t+44iYU=
Subject key identifier: AF:27:47:07:C4:8A:A7:01:67:46:15:5D:0E:E7:7C:C0:F9:80:F1:AE
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 42AA
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/rydHB8SKpwFnRhVdDud8wPmA8a4.roa
Signing time: Sat 05 Feb 2022 00:30:08 +0000
ROA not before: Sat 05 Feb 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 45.132.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17066 (0x42aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 5 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=AF274707C48AA7016746155D0EE77CC0F980F1AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:18:86:b5:f9:9c:06:fc:f2:ab:4c:ef:fe:89:
49:9e:a0:30:dd:17:55:a1:16:09:05:4c:61:8e:ac:
af:91:1f:21:5d:41:0b:1d:b9:20:63:56:f2:7f:24:
7d:cd:5d:52:86:60:b6:3a:83:5c:35:94:dc:a0:57:
5b:78:a6:a1:a5:ed:4a:3d:8e:57:8a:28:f8:c0:d3:
71:90:c5:ea:57:53:c6:17:29:66:b6:6a:97:d6:59:
d9:2a:ee:00:22:4b:5d:95:8f:fd:6e:02:31:2e:9f:
02:ac:eb:76:a3:ce:db:c3:6d:b8:4a:c7:1d:c5:d4:
ed:db:c2:ef:f0:d2:16:bc:b8:01:37:cb:2b:18:2a:
7b:54:a0:1a:5a:4f:36:7d:80:36:9c:e9:63:29:32:
ec:c7:45:55:07:1c:38:f5:14:a7:c1:8a:33:78:5d:
d2:a1:be:ad:5a:fe:f7:01:7e:fa:b0:f8:be:50:74:
13:d3:58:4c:89:dc:4e:df:2e:e6:7a:24:e9:42:0d:
3e:50:f8:b5:83:10:a0:01:33:eb:db:0f:77:e3:a6:
9b:94:29:db:2d:14:ad:d5:48:90:a7:8c:0e:e2:64:
23:8c:4f:43:bf:bc:a2:b2:65:4c:23:d1:1e:03:e4:
1f:d0:c5:a4:8b:3e:9f:fe:63:09:54:93:2b:94:69:
d5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:27:47:07:C4:8A:A7:01:67:46:15:5D:0E:E7:7C:C0:F9:80:F1:AE
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/rydHB8SKpwFnRhVdDud8wPmA8a4.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
05:fa:3c:ff:9f:19:b7:d7:9b:55:93:fc:eb:f9:b8:5e:8a:7d:
bd:ab:ad:53:1f:af:33:8d:f6:5f:0f:a2:64:15:34:40:d7:0d:
d9:dd:1c:fa:6b:0d:64:05:86:33:6c:15:57:d9:4d:a3:88:98:
e6:8d:5a:f1:16:02:8b:e3:e9:dd:ae:d5:4c:a7:c4:d9:7d:79:
99:37:6a:29:1f:8d:78:59:80:fb:f3:df:8f:de:be:3b:fc:c3:
c9:b0:2b:de:f8:f7:6b:df:34:8d:e4:ce:8c:c8:9d:a4:91:7d:
b0:e4:9e:b8:31:fa:72:db:2d:45:df:b2:90:0e:da:e5:f1:a7:
d5:39:2d:1a:36:f7:44:05:23:e9:80:45:fb:eb:e5:94:e7:04:
39:15:be:4c:a2:32:97:3d:5f:6d:90:fc:7c:48:fc:b0:cf:4a:
13:78:77:1e:16:ae:b0:fd:c9:6a:76:01:e6:df:7d:0e:af:98:
82:cb:bd:ce:84:1d:c0:4c:ab:79:c5:4c:11:23:0c:4c:64:ae:
72:9c:4f:fe:a7:a2:68:0e:37:55:96:79:b0:d9:8a:8c:95:95:
62:73:13:45:bc:5f:91:2e:7b:48:bc:0d:14:30:aa:68:28:05:
f2:37:1a:82:4d:d8:3d:6d:fb:03:a5:37:40:15:86:d7:50:b3:
67:53:eb:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org