Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/0CKJC7tkvGF5TRiDgoVkV7Mcl6s.roa
File: 0CKJC7tkvGF5TRiDgoVkV7Mcl6s.roa (raw, json)
Hash identifier: 4J25TnCfyLyJtGvsdPZKBTvv7VEQfqJ1SjehrMohszQ=
Subject key identifier: D0:22:89:0B:BB:64:BC:61:79:4D:18:83:82:85:64:57:B3:1C:97:AB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4342
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/0CKJC7tkvGF5TRiDgoVkV7Mcl6s.roa
Signing time: Wed 16 Feb 2022 00:30:07 +0000
ROA not before: Wed 16 Feb 2022 00:30:07 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17218 (0x4342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 16 00:30:07 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=D022890BBB64BC61794D188382856457B31C97AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:50:b8:95:4b:4a:3f:f8:f1:10:c8:8d:fe:35:
70:af:3d:53:a4:da:7e:f8:76:3c:d6:7a:c1:53:c8:
6d:32:55:2b:71:c4:68:01:45:6d:51:dc:66:94:3d:
08:2b:3a:9e:b4:d3:b5:91:91:0d:8c:78:27:5c:4a:
b7:7b:3f:39:0b:1b:ca:e0:f1:af:f2:a3:d1:a1:a4:
f1:a5:c1:5c:b7:b2:3a:9e:58:73:14:b3:9b:fd:8c:
ae:91:df:fa:77:e7:22:a9:f2:96:74:2f:f6:30:14:
08:71:05:a6:fe:47:b4:1b:02:f3:0a:82:9f:4e:c2:
31:32:8a:46:98:b6:3c:4c:5e:25:76:0d:48:b6:e0:
59:3f:18:47:66:f3:40:dc:17:61:77:71:6c:b7:9f:
ba:98:1d:2f:19:5d:d1:e1:38:11:fa:27:79:45:a4:
b9:40:5e:7e:07:36:a9:55:e7:f4:db:8c:10:fc:c7:
7b:39:82:18:14:d7:ec:ff:cd:b9:f1:23:ad:71:a3:
ea:1e:26:a6:7b:6f:d7:8a:74:1f:4e:0b:c5:c1:e2:
47:de:10:66:ac:d9:be:25:a1:59:d3:18:52:4a:56:
ca:4c:9c:b4:0f:6f:8e:c0:21:26:4d:f9:2f:7c:0d:
b4:5e:33:88:b9:c6:7f:5b:82:11:77:93:6e:6d:19:
a6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:22:89:0B:BB:64:BC:61:79:4D:18:83:82:85:64:57:B3:1C:97:AB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/0CKJC7tkvGF5TRiDgoVkV7Mcl6s.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
35:79:e2:68:58:b9:5a:ed:73:d2:a6:3f:31:5f:6b:66:23:f0:
62:67:4c:6c:2c:b6:a6:37:96:db:e6:92:52:51:20:09:b6:82:
2a:b0:3e:2c:32:cf:b5:78:97:a1:23:fa:9a:fd:35:1c:7c:f1:
43:7c:97:dd:04:25:32:28:a4:16:67:d0:2d:ac:2f:07:cd:d7:
f2:4a:b9:e8:55:16:5c:75:4e:57:8c:5b:ee:ea:5d:08:05:83:
cc:a5:92:78:c3:79:de:7a:53:d1:d5:e9:51:76:f0:09:a8:53:
85:35:03:b3:ba:7b:5b:37:55:d0:b7:6b:0e:6b:d7:20:19:b1:
05:94:e0:8f:4f:a2:98:14:26:a7:73:1b:eb:5e:71:42:53:cb:
37:30:24:d9:8c:d5:64:cf:d5:aa:ec:7f:07:d3:3d:6c:23:0a:
1e:43:d4:96:41:05:ce:81:de:18:cd:06:93:6b:6e:b1:30:9c:
bf:0f:91:d2:71:87:90:67:10:13:b9:65:74:83:4e:5b:87:05:
55:cd:9a:8a:2e:64:57:25:1f:89:0a:74:51:ec:ca:31:e7:42:
63:5a:93:d2:66:81:9a:4a:4d:c2:32:99:2a:4d:6a:01:2a:9d:
93:48:f6:8e:b4:40:2f:2c:e1:89:24:bd:2d:10:f9:53:4c:e8:
7a:7b:b3:b7
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICQ0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjAyMTYw
MDMwMDdaFw0yMzAxMDEwMTAxMDJaMDMxMTAvBgNVBAMTKEQwMjI4OTBCQkI2NEJD
NjE3OTREMTg4MzgyODU2NDU3QjMxQzk3QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEULiVS0o/+PEQyI3+NXCvPVOk2n74djzWesFTyG0yVStxxGgB
RW1R3GaUPQgrOp6007WRkQ2MeCdcSrd7PzkLG8rg8a/yo9GhpPGlwVy3sjqeWHMU
s5v9jK6R3/p35yKp8pZ0L/YwFAhxBab+R7QbAvMKgp9OwjEyikaYtjxMXiV2DUi2
4Fk/GEdm80DcF2F3cWy3n7qYHS8ZXdHhOBH6J3lFpLlAXn4HNqlV5/TbjBD8x3s5
ghgU1+z/zbnxI61xo+oeJqZ7b9eKdB9OC8XB4kfeEGas2b4loVnTGFJKVspMnLQP
b47AISZN+S98DbReM4i5xn9bghF3k25tGaZBAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQU0CKJC7tkvGF5TRiDgoVkV7Mcl6swHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS8wQ0tKQzd0a3ZHRjVUUmlEZ29Wa1Y3TWNsNnMucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHA0wDQYJKoZIhvcNAQELBQADggEB
ADV54mhYuVrtc9KmPzFfa2Yj8GJnTGwstqY3ltvmklJRIAm2giqwPiwyz7V4l6Ej
+pr9NRx88UN8l90EJTIopBZn0C2sLwfN1/JKuehVFlx1TleMW+7qXQgFg8ylknjD
ed56U9HV6VF28AmoU4U1A7O6e1s3VdC3aw5r1yAZsQWU4I9PopgUJqdzG+tecUJT
yzcwJNmM1WTP1arsfwfTPWwjCh5D1JZBBc6B3hjNBpNrbrEwnL8PkdJxh5BnEBO5
ZXSDTluHBVXNmoouZFclH4kKdFHsyjHnQmNak9JmgZpKTcIymSpNagEqnZNI9o60
QC8s4YkkvS0Q+VNM6Hp7s7c=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:35 2023 by rpki-client on console-fra.rpki-client.org