Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/2kkF8Cd-JBk6vxAZ0FHeeCykf3Y.roa
File: 2kkF8Cd-JBk6vxAZ0FHeeCykf3Y.roa (raw, json)
Hash identifier: hOYnL+AOj/4xzD+UvVtnPv1zRlSUWE4VQOOKEiqR1QU=
Subject key identifier: DA:49:05:F0:27:7E:24:19:3A:BF:10:19:D0:51:DE:78:2C:A4:7F:76
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 497B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2kkF8Cd-JBk6vxAZ0FHeeCykf3Y.roa
Signing time: Tue 07 Jun 2022 00:30:07 +0000
ROA not before: Tue 07 Jun 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18811 (0x497b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 7 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=DA4905F0277E24193ABF1019D051DE782CA47F76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c2:bd:38:c7:15:ef:55:fc:e4:de:b3:fe:f4:
5c:c5:b1:2a:c0:ca:87:ce:38:77:99:16:31:d8:bb:
f2:ff:12:fa:e2:26:08:e0:49:c6:c0:7f:76:3d:e0:
4a:e3:6b:00:cc:cb:db:bc:ba:23:8d:d1:78:89:9c:
75:f5:8b:39:18:be:32:fb:4e:39:29:92:fb:18:91:
3f:80:10:e6:6a:ea:3e:16:89:e6:ea:60:7c:05:5b:
62:44:07:57:55:93:ff:f9:9f:d1:e8:96:9c:e8:31:
43:51:ad:a5:2a:d8:47:14:65:82:74:a6:1e:4b:7c:
46:20:c7:8f:14:45:cf:cb:d3:4a:5f:a7:9c:cb:e1:
fc:cd:a3:c2:3c:52:19:29:5b:e5:e3:ef:97:b0:23:
b2:40:9e:54:b0:21:00:ec:4a:25:4a:85:fe:e4:63:
50:9f:fc:77:50:3d:27:4e:29:c6:9f:6c:23:6f:2d:
cd:7a:ad:ba:42:a5:9c:09:06:3e:38:e6:fd:bb:51:
a1:2f:69:4b:e9:f6:82:6f:6d:61:c1:06:fe:da:16:
6e:58:a9:37:dc:4c:b8:f7:0e:fb:2a:b4:03:30:dc:
67:48:0c:8a:10:de:48:19:a4:de:d9:e5:ea:71:79:
8a:be:e3:19:ee:ac:60:c1:8a:e4:e7:53:f2:11:c5:
b9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:49:05:F0:27:7E:24:19:3A:BF:10:19:D0:51:DE:78:2C:A4:7F:76
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/2kkF8Cd-JBk6vxAZ0FHeeCykf3Y.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:f8:a0:04:f2:ff:40:87:f6:17:24:ba:cc:95:38:79:87:5f:
92:10:8b:ac:00:d8:50:a0:39:8c:f8:82:a7:f2:2d:77:ff:fb:
e7:a4:00:9e:1e:30:c7:13:23:26:70:8f:ff:1f:5f:0a:e3:36:
7a:63:d3:b6:82:a3:6b:83:3d:51:38:4f:a2:9e:ef:eb:b5:ac:
57:6a:ea:72:8d:41:ea:78:7d:af:96:00:da:5d:cf:43:37:04:
05:4b:cb:ef:08:94:a7:59:a2:d7:97:a0:63:ea:96:93:e4:20:
96:01:28:2b:9e:d8:5e:98:aa:3a:76:d0:90:e5:0c:b2:7b:a2:
40:c6:0e:38:7f:29:8e:78:7f:31:66:75:a7:17:67:74:9a:a5:
84:57:29:70:ff:12:68:46:ce:c4:47:52:b5:05:69:9d:de:b7:
c8:fa:48:a9:7f:1a:f6:e1:21:32:59:c6:c8:a6:64:66:4e:9a:
6e:81:2d:d5:11:ec:9d:dc:17:55:5d:f5:10:00:a6:5e:d6:15:
4d:55:40:da:85:ff:e9:c3:4e:5c:8b:f9:29:da:9c:3d:64:ff:
68:d4:fe:af:b9:b3:74:48:92:c2:33:84:55:cb:2f:09:01:b6:
ae:c0:59:ea:15:05:7f:0a:0f:9b:c0:a0:12:cf:7d:14:22:49:
04:fe:54:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org