Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/uUGa9EbCKjWP7uk7QNYAN5H6B-Q.roa
File: uUGa9EbCKjWP7uk7QNYAN5H6B-Q.roa (raw, json)
Hash identifier: 243375QXjDr+O3kmrY5PMtR4qDPYnbgQSDJWRcEvjeo=
Subject key identifier: B9:41:9A:F4:46:C2:2A:35:8F:EE:E9:3B:40:D6:00:37:91:FA:07:E4
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 496E
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/uUGa9EbCKjWP7uk7QNYAN5H6B-Q.roa
Signing time: Mon 06 Jun 2022 00:30:08 +0000
ROA not before: Mon 06 Jun 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18798 (0x496e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 6 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=B9419AF446C22A358FEEE93B40D6003791FA07E4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:77:6a:e6:21:4f:6a:bd:ea:6a:84:d8:91:f7:
8a:23:e5:e8:c1:b3:5c:cd:76:4b:05:35:d3:c4:6d:
c3:6e:b0:1e:80:8a:ec:4a:2b:d7:dc:e5:bc:e1:7c:
b7:d7:4f:12:40:c3:db:d0:27:7f:74:d3:f2:52:31:
f6:27:f7:7f:71:77:f6:2f:3b:8e:82:58:7a:de:2a:
28:e1:39:fb:60:5c:fc:37:db:4c:9d:2c:62:25:95:
7e:73:df:17:1c:ff:5f:2f:d4:53:94:38:5a:be:89:
58:5a:d6:51:18:19:bf:5d:ae:0a:88:a1:80:d7:c5:
36:e3:5f:1f:64:00:9e:52:79:b3:49:42:8b:82:55:
a4:89:41:8e:d9:e3:c7:6e:51:d1:d3:89:49:52:f6:
49:da:d3:b5:37:d5:84:88:fc:49:52:89:66:23:3c:
26:36:53:db:39:60:d8:02:2c:37:bb:0d:2a:97:6a:
25:d7:73:f9:ca:9e:41:83:f7:50:e2:91:d2:2c:a0:
3e:a0:11:80:22:4d:c8:7d:8f:eb:1b:eb:b0:25:b2:
fc:00:d8:53:b4:f2:98:b4:df:eb:87:f2:d1:be:f1:
01:a7:7c:d2:78:db:01:c9:ce:4f:65:55:01:ca:94:
0e:f8:b7:24:5b:39:74:81:ed:94:a5:80:27:4a:a6:
a6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:41:9A:F4:46:C2:2A:35:8F:EE:E9:3B:40:D6:00:37:91:FA:07:E4
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/uUGa9EbCKjWP7uk7QNYAN5H6B-Q.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:2a:a3:c3:a6:af:f5:2d:63:e3:06:5a:7d:ad:d3:99:7c:0e:
e1:19:b5:a8:89:b8:10:64:45:b0:4d:a7:08:34:1a:1a:aa:8c:
fc:f1:b3:86:f6:c7:69:16:21:3e:41:c7:0d:0a:5d:ef:2f:8c:
ec:d3:f0:e6:d2:49:97:c0:a5:eb:3c:fc:1e:fc:9c:01:fd:a5:
3b:ed:e8:db:27:4e:7d:a2:3f:59:67:c3:e8:a0:83:27:90:61:
96:71:5e:2a:0c:bf:39:8e:ae:6d:12:ea:44:7a:40:87:2e:a0:
5e:58:be:ed:b1:f5:a9:0f:c3:c8:1e:e7:45:a2:64:ce:84:ae:
98:3a:02:0e:c1:87:3e:56:88:7d:c9:84:fd:9d:88:5e:0b:09:
b5:0e:05:79:6b:df:9c:c5:ec:7f:3a:5f:d4:ef:7c:f4:59:96:
d8:dc:07:c0:7e:7a:dd:23:2e:5d:42:d2:70:2e:fc:7a:4a:0e:
0b:10:fe:38:10:b0:4a:44:61:18:71:f8:09:09:8b:1f:78:6b:
77:67:d4:8a:98:b9:5f:31:e5:77:96:26:dc:bb:5f:8d:86:02:
22:35:5c:93:73:08:64:4e:73:02:0f:94:df:82:cc:4f:3c:b8:
8b:0f:5f:7e:20:96:61:5f:9b:ad:91:78:6c:17:63:61:12:18:
11:c5:54:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org