Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/w1DacGwKoIwsM2bWVwSLzlYuOUs.roa
File: w1DacGwKoIwsM2bWVwSLzlYuOUs.roa (raw, json)
Hash identifier: GPXOgwlhhb2Tkxfyi6UZ2sKEcYgyy45iLxA21WAEOl8=
Subject key identifier: C3:50:DA:70:6C:0A:A0:8C:2C:33:66:D6:57:04:8B:CE:56:2E:39:4B
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 440C
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/w1DacGwKoIwsM2bWVwSLzlYuOUs.roa
Signing time: Thu 03 Mar 2022 00:30:08 +0000
ROA not before: Thu 03 Mar 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17420 (0x440c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 3 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=C350DA706C0AA08C2C3366D657048BCE562E394B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b1:da:dc:50:89:a8:2b:ed:99:08:9b:34:fe:
b8:fe:16:29:4c:57:69:4b:f5:9a:2b:bb:11:4b:78:
9d:fb:2d:b8:b7:34:b9:94:c4:13:a2:20:61:85:d6:
13:92:6b:1b:47:9f:9d:dc:6e:23:51:ee:5d:58:dc:
c9:e2:a3:99:7f:70:45:37:6e:00:ad:ec:98:6c:ba:
95:e5:4d:88:2f:03:0d:2f:4d:2d:4d:1d:db:4a:e8:
e8:40:c3:a8:d7:d6:6b:d5:73:b1:28:80:ac:a7:c7:
45:e7:a0:a7:ef:2d:fe:70:10:6a:7d:48:a7:4e:e1:
53:c0:c1:f6:8e:c7:79:f0:a4:61:64:3a:b0:be:96:
b8:a0:75:02:a0:b7:5a:46:4a:91:af:34:58:e8:6d:
90:58:49:52:7b:94:a2:24:f3:72:8f:1a:f1:0d:88:
90:44:b9:95:d2:2c:2c:4e:ae:d1:ca:a5:23:54:be:
30:bf:0b:f0:e8:95:8a:e9:63:ca:b3:ee:46:10:6c:
a7:f4:eb:a7:86:1e:d8:23:9a:6a:96:4a:de:d6:58:
35:d9:d4:73:44:a6:ca:7e:21:e5:9c:44:35:f0:c8:
2c:56:74:05:ab:9c:b7:49:fd:85:be:d0:50:21:53:
28:ad:49:d1:3b:0a:77:ee:ae:7a:23:90:43:74:2a:
81:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:50:DA:70:6C:0A:A0:8C:2C:33:66:D6:57:04:8B:CE:56:2E:39:4B
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/w1DacGwKoIwsM2bWVwSLzlYuOUs.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:c5:ab:70:89:92:bc:7f:0c:e8:06:39:8f:2b:95:74:5c:9c:
0e:68:9a:57:e7:61:24:86:27:8b:97:f4:f4:07:2a:5e:1f:64:
1a:0b:18:83:0d:ac:00:bd:43:66:b3:d8:04:31:ee:ee:43:cc:
aa:03:d4:30:2b:91:1c:9b:06:98:47:7c:17:fd:28:36:90:71:
8b:42:a4:67:da:48:d6:76:6f:ee:ce:22:23:59:d6:3b:fb:92:
80:e1:f5:a0:ba:a1:d2:84:b7:44:8f:26:90:a4:90:eb:bb:79:
6a:c8:ee:0a:fb:de:64:b4:56:0e:bc:fb:27:50:ca:24:44:9c:
f2:e4:55:37:c8:da:f7:a2:dc:7a:9f:32:27:14:c2:9e:84:de:
ac:43:cb:cb:35:99:00:fa:e3:49:b7:79:13:bf:0c:00:e6:f9:
19:27:b5:42:a8:c8:40:80:32:18:88:1f:88:4e:cc:d9:ba:3e:
38:9d:c4:b4:1d:31:97:07:cd:24:f5:96:78:30:d0:70:ad:92:
40:74:9e:36:57:39:ea:e3:5c:61:6e:5b:5b:99:c7:67:d5:90:
ee:86:14:ff:ef:96:4e:01:02:31:fe:34:32:3e:46:62:c4:5a:
b4:38:17:e2:ad:9d:d2:d4:04:16:9a:05:36:9e:89:63:ed:41:
42:13:9e:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org