Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/w1v9czBqfaPPsWz0NWAjHWnjI5I.roa
File: w1v9czBqfaPPsWz0NWAjHWnjI5I.roa (raw, json)
Hash identifier: ST2/woC7JlSYbmUa/jVPcosarxV9MiOAkMTQlm1zG7A=
Subject key identifier: C3:5B:FD:73:30:6A:7D:A3:CF:B1:6C:F4:35:60:23:1D:69:E3:23:92
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4254
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/w1v9czBqfaPPsWz0NWAjHWnjI5I.roa
Signing time: Sun 30 Jan 2022 00:30:07 +0000
ROA not before: Sun 30 Jan 2022 00:30:07 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16980 (0x4254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jan 30 00:30:07 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=C35BFD73306A7DA3CFB16CF43560231D69E32392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:b2:05:a1:0d:ba:b8:a3:b1:d7:70:27:fa:51:
e4:6d:af:93:5e:2c:8a:9b:bb:43:2f:23:c3:d1:4e:
7e:a6:58:0a:88:44:17:05:e4:bb:72:99:1e:9c:31:
d3:e5:18:ae:67:ee:e3:0f:bf:8a:79:66:7f:05:9a:
90:d8:aa:f1:46:dd:33:6b:4c:a9:ba:3c:28:ec:d8:
18:80:25:a1:f2:03:64:08:aa:b5:a8:e8:b3:bf:c8:
8d:52:b6:a1:ba:49:ca:58:fb:6d:c4:97:2d:00:54:
58:27:44:af:45:08:dc:b6:b0:b0:81:5c:a9:63:b6:
16:d9:9f:8a:0d:5c:0d:4a:42:b0:b0:51:1d:e8:26:
55:a0:94:00:9c:86:0e:36:f8:d5:60:8b:1f:01:39:
45:5d:c9:3d:e3:26:91:d3:dc:4e:88:05:52:2f:16:
57:e2:51:15:d1:f5:ff:5a:c0:de:be:7c:df:a1:f0:
8d:a3:54:7a:14:d7:be:2c:e0:42:28:59:c3:9e:1b:
ed:e5:fb:2c:ed:7d:c9:b9:7f:c3:4e:64:7d:da:72:
3a:89:da:52:44:ec:9c:2b:71:bc:59:71:bd:88:00:
44:7f:f2:87:91:25:b4:28:90:f2:f6:07:4c:6d:18:
2c:9b:82:fe:d9:09:2d:bd:e4:6c:cf:18:3f:10:18:
13:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:5B:FD:73:30:6A:7D:A3:CF:B1:6C:F4:35:60:23:1D:69:E3:23:92
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/w1v9czBqfaPPsWz0NWAjHWnjI5I.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:d9:6a:a8:98:aa:00:a6:10:c8:2e:19:b6:f9:9f:7c:37:6d:
72:a3:5d:ff:73:b3:b6:06:f4:df:2b:5c:6a:a9:56:d6:82:a7:
f4:7d:00:5c:3f:25:e9:a1:6f:c9:b2:78:9d:4c:69:a6:47:dd:
5f:fb:17:61:67:58:a5:35:76:34:05:fb:6d:8f:e1:3b:d7:ed:
1a:03:81:aa:e9:62:54:49:8b:1f:32:3f:00:4b:8c:fb:68:72:
0c:13:e3:85:b3:f5:e2:74:b1:b4:f9:e0:6d:6f:09:8a:4b:46:
b7:b8:5c:d1:91:db:42:f2:10:95:79:d4:46:e6:00:0e:b1:90:
f9:b6:2c:f2:b5:78:01:cf:c2:3f:73:b5:75:e6:fc:4f:75:61:
54:69:33:06:1d:40:92:65:9f:f1:8b:d0:0c:c5:38:c6:06:5a:
0b:e9:a4:76:c0:b0:ee:2b:29:ba:11:5d:3a:55:e1:c6:47:42:
25:59:51:6a:fb:2d:f6:e7:d5:79:63:3f:58:7d:63:03:a9:10:
26:28:4c:9b:4d:4c:e5:64:af:bd:22:63:e7:da:d4:b7:95:f3:
48:e1:f2:d5:bf:5d:b1:3d:94:19:1e:ff:36:c0:3a:2b:fa:23:
40:27:79:c0:9b:23:38:30:6a:b3:a6:98:e7:e1:b0:ee:5b:10:
8a:3f:51:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org