Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/zmoHv66MNuMsFtVpHOFzeLBqHwE.roa
File: zmoHv66MNuMsFtVpHOFzeLBqHwE.roa (raw, json)
Hash identifier: sSstgVoMl03SEi+UgRYseHUgG7y9YSNw4yKiSB6t2w0=
Subject key identifier: CE:6A:07:BF:AE:8C:36:E3:2C:16:D5:69:1C:E1:73:78:B0:6A:1F:01
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 480F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/zmoHv66MNuMsFtVpHOFzeLBqHwE.roa
Signing time: Sun 15 May 2022 00:30:09 +0000
ROA not before: Sun 15 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18447 (0x480f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 15 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=CE6A07BFAE8C36E32C16D5691CE17378B06A1F01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:c5:f3:9c:c9:49:54:24:b5:23:a7:8b:cf:f1:
48:8c:b9:8d:1f:a7:be:2e:8c:58:65:83:6a:05:92:
f4:75:4a:c2:3d:7b:93:af:ea:d5:63:68:d3:15:e9:
1a:1f:52:fd:24:76:4d:07:ee:08:30:f5:a2:9b:53:
97:86:31:e8:8f:c9:db:70:d6:71:9a:dd:c8:0f:ca:
bb:70:50:74:ca:f4:8a:c2:44:32:f1:35:c2:12:04:
6e:d4:8d:e3:d6:d3:4c:bb:72:e4:f3:8f:d5:f9:ec:
f2:4a:4a:af:f2:68:96:df:c6:1e:6c:bc:bb:03:a4:
59:25:22:e0:bf:b4:05:51:c1:cf:42:5e:c7:05:e1:
56:7f:58:7e:9c:32:02:bb:14:7f:eb:bd:af:9d:9f:
ff:b5:6a:61:df:2a:80:9e:f3:f9:5e:ca:6f:f4:a2:
f4:64:49:82:7e:95:6e:86:f4:3b:e6:1d:be:37:45:
24:38:88:8f:85:7a:10:00:87:cf:d7:ea:31:2c:60:
7a:35:a3:07:41:75:65:1c:eb:02:c7:75:d0:ef:18:
51:b0:99:35:24:73:5c:9c:be:56:18:0c:ce:3c:d3:
9e:41:cf:b5:87:fa:e4:64:f8:25:9b:4a:95:65:a6:
1e:b2:25:89:e0:e5:a1:de:3f:5e:27:e8:ec:29:73:
b8:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:6A:07:BF:AE:8C:36:E3:2C:16:D5:69:1C:E1:73:78:B0:6A:1F:01
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/zmoHv66MNuMsFtVpHOFzeLBqHwE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:ab:0e:dd:93:dd:8d:41:f8:06:35:d2:10:99:cc:9a:30:b5:
ac:28:5e:34:2e:60:e6:52:a1:89:3d:cd:09:e4:ba:e7:8e:db:
1a:ed:99:46:c1:d9:b5:32:68:85:61:60:a8:f6:5f:3d:42:7b:
e4:f3:0e:53:73:be:db:36:47:05:ba:19:22:95:a9:a7:64:98:
13:c3:f9:22:3e:54:8e:95:71:a6:1a:48:d5:a6:89:9f:8f:35:
fd:10:ec:53:a3:0c:96:16:eb:12:20:b5:f5:95:76:28:85:91:
d4:f4:39:2b:7d:9b:5f:fd:5b:9d:5d:60:8f:1d:81:35:5d:c6:
92:62:5c:24:29:35:e7:98:db:3e:d4:1f:78:46:60:0b:88:2f:
ef:03:28:20:85:93:13:48:c0:fd:b9:0d:bd:6b:e0:b6:e2:db:
49:00:4d:48:d6:a8:0a:bc:6b:b3:a4:3f:b2:7d:5c:2a:e1:9d:
88:8f:3a:04:4f:f1:b0:29:12:4d:0c:f5:2a:ab:ab:b4:c6:14:
6d:75:17:28:54:d9:9f:57:f1:29:41:a4:24:d6:8c:84:fb:01:
9c:f8:0c:89:33:76:29:f2:14:7d:f4:16:68:bd:7b:c5:7a:79:
95:93:85:6f:d1:6a:3d:23:18:cc:d7:4b:79:f9:f9:70:6b:3f:
14:50:d4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:54 2024 by rpki-client on console-fra.rpki-client.org