Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/yafEFchEpnv3mwtrvbiDs38Sev8.roa
File: yafEFchEpnv3mwtrvbiDs38Sev8.roa (raw, json)
Hash identifier: lBuxbJMMKXFBOq5y+jMuoI2R8b+IWxfEV4E/qvIOQZk=
Subject key identifier: C9:A7:C4:15:C8:44:A6:7B:F7:9B:0B:6B:BD:B8:83:B3:7F:12:7A:FF
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4999
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/yafEFchEpnv3mwtrvbiDs38Sev8.roa
Signing time: Thu 09 Jun 2022 00:30:10 +0000
ROA not before: Thu 09 Jun 2022 00:30:10 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 45.132.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18841 (0x4999)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 9 00:30:10 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=C9A7C415C844A67BF79B0B6BBDB883B37F127AFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3c:c2:a2:7d:a2:3b:47:21:b5:02:ac:36:50:
b7:94:33:50:32:16:de:08:a8:19:f7:3f:09:00:33:
2a:b4:b7:42:8f:0f:f2:54:e6:81:6b:ae:34:1f:cf:
82:c3:57:f9:e2:65:53:0f:cd:78:a7:7a:51:8d:e7:
ae:b2:6f:4d:1f:38:cb:bc:25:64:da:2c:80:bb:c9:
2a:cf:bd:7f:03:73:e7:4c:b2:7d:bd:81:99:07:be:
bf:5e:69:56:95:0f:d8:8d:bb:89:ad:d8:d2:95:5b:
b1:9d:f9:a1:9b:21:65:5f:3c:28:64:cd:07:f3:4e:
f9:4a:7d:e2:e3:48:66:5c:a2:be:2d:d5:5f:fb:cd:
9a:0d:6d:20:bf:ef:e9:77:c0:c2:e7:46:fe:54:de:
29:6a:ee:1a:c0:1e:05:3b:49:11:fa:47:53:e9:55:
b6:af:df:e6:c5:ff:1c:39:67:a7:ab:1c:72:ca:b5:
ca:9e:15:07:0f:39:94:1a:58:69:ef:31:a9:f9:5d:
ac:4f:37:11:7a:7e:b7:8e:0f:a6:9a:33:ce:bd:bc:
25:a2:70:b5:ae:91:ca:19:00:37:23:64:b8:ab:4a:
a2:d2:cd:93:83:9f:12:25:31:c8:e0:a0:e2:56:71:
7f:c7:d8:a3:a0:fa:e0:46:8e:d7:fd:b7:83:6e:62:
ca:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:A7:C4:15:C8:44:A6:7B:F7:9B:0B:6B:BD:B8:83:B3:7F:12:7A:FF
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/yafEFchEpnv3mwtrvbiDs38Sev8.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
45.132.189.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e8:4e:d8:66:c2:73:db:23:95:a2:19:31:23:d4:89:98:f2:
04:e8:fe:53:90:43:f4:70:a4:09:89:64:b3:73:01:e1:18:c8:
17:b0:c9:63:08:ed:86:f5:e1:53:05:38:f8:35:07:73:16:af:
9b:31:ee:78:01:01:28:cc:1a:d8:53:4b:ea:a6:72:97:14:33:
c8:a7:96:37:9a:18:35:3f:08:95:da:36:83:20:9a:e6:da:4e:
37:fd:56:9c:e6:3d:e1:e9:9e:5f:4f:00:cc:61:f5:18:99:20:
7b:84:ee:75:d7:67:3b:5d:c3:04:f7:c4:a4:3e:9b:6e:fe:8c:
84:8f:7b:94:76:37:1b:5b:2d:12:17:f4:5f:53:9f:05:a6:55:
35:8f:f8:2a:2d:11:6a:2d:7d:4f:2e:3c:7a:b8:6c:ee:65:8e:
6a:db:f8:70:cd:d1:cd:b1:d4:ae:61:b5:63:58:ca:b2:76:17:
29:79:75:2a:39:75:63:5c:62:79:79:1d:44:f0:8b:02:c5:7d:
db:ff:5d:f1:17:4f:b6:10:a4:65:ec:08:5e:b3:a2:fe:ea:96:
60:64:9c:28:7d:f1:71:34:d4:62:ee:6a:40:da:ce:aa:b1:93:
57:8c:a9:53:ab:b7:3b:48:09:8d:37:1f:d0:6b:ee:99:82:38:
b9:e7:81:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org