Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/4fnd44Yh4_gDHOhGf87RrsGlx6w.roa
File: 4fnd44Yh4_gDHOhGf87RrsGlx6w.roa (raw, json)
Hash identifier: Czf/p2OvtRq5CAVc1Gjc2+IY+nd+B6iCpd6PqT5V+6g=
Subject key identifier: E1:F9:DD:E3:86:21:E3:F8:03:1C:E8:46:7F:CE:D1:AE:C1:A5:C7:AC
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 442C
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4fnd44Yh4_gDHOhGf87RrsGlx6w.roa
Signing time: Sat 05 Mar 2022 00:30:09 +0000
ROA not before: Sat 05 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17452 (0x442c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 5 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=E1F9DDE38621E3F8031CE8467FCED1AEC1A5C7AC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:82:df:d3:5d:53:a3:c9:a3:f8:16:67:46:3a:
b7:76:69:72:c6:0a:2d:54:3b:0e:90:b6:56:98:ef:
1e:3b:2d:46:4a:c0:6d:df:bd:6d:77:e8:08:38:d2:
79:53:04:aa:6c:a2:32:81:a0:5f:94:e3:9e:e8:a5:
e7:ff:8e:00:69:62:77:58:0d:1e:82:ab:e7:98:94:
04:cf:85:ff:f6:80:8a:c4:f4:d1:c2:55:1f:15:91:
8d:3a:72:71:5c:10:92:82:fe:b9:35:67:79:27:d1:
c4:8d:78:15:5f:8d:b2:8d:ec:5b:18:38:f7:0a:97:
9a:49:28:a3:d3:96:82:a4:46:6d:57:a3:b5:9c:25:
48:ac:51:2d:dc:63:b9:e5:42:92:90:91:93:73:26:
51:ea:6c:22:8f:32:e2:12:2e:b1:56:5d:e7:62:d6:
6b:20:8f:2d:f6:12:50:eb:92:02:fa:cb:32:6a:cb:
22:0c:fc:f0:fc:6a:29:de:73:d4:bd:59:5f:f8:6b:
50:32:d0:c3:fd:db:b2:2b:47:93:ad:ae:e4:cb:91:
67:ca:04:5c:b5:68:09:a3:56:39:f8:9d:d1:6e:56:
eb:ca:45:53:8a:01:b1:ff:b7:9f:69:e0:64:45:b3:
3e:06:dc:ca:2c:a3:51:03:6b:72:22:83:91:83:88:
7f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F9:DD:E3:86:21:E3:F8:03:1C:E8:46:7F:CE:D1:AE:C1:A5:C7:AC
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4fnd44Yh4_gDHOhGf87RrsGlx6w.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ae:af:6c:c1:dd:b6:21:81:8c:ad:fa:cc:8d:82:84:4e:fd:
46:d3:85:ff:30:10:42:62:55:32:83:fa:53:73:a7:87:ad:83:
84:84:2d:a1:9c:85:52:37:21:43:0b:0a:00:58:3e:9e:94:a5:
cb:a4:5e:9c:a8:d4:00:45:7e:65:38:08:00:89:f6:f9:29:37:
90:41:31:ff:5f:f6:28:4f:68:c3:4c:49:b4:a1:23:d7:2a:90:
35:b1:df:71:d9:9f:94:3b:71:41:d3:f0:9c:17:19:34:a0:4d:
b5:b9:46:28:c3:11:d6:12:1b:d8:46:dd:25:28:f5:27:3d:78:
fd:2f:77:d4:4f:64:f2:ef:47:b7:99:0a:ca:52:37:2c:0c:92:
1a:8c:d7:6e:ff:aa:f4:d1:81:68:07:b4:7d:06:59:eb:a0:7e:
34:48:11:7f:80:d7:55:a2:2e:97:b0:2e:7e:68:67:b2:ab:bf:
c7:c8:d6:0a:47:44:47:a7:f1:84:36:0c:b8:2e:85:e0:d4:f1:
1a:d0:a0:31:f4:e1:7d:68:28:52:61:96:c4:79:35:5e:b0:66:
20:5b:77:2d:75:f7:14:b7:76:25:e3:d0:1e:73:97:93:45:81:
5a:61:95:d0:8f:3d:f3:98:9b:91:8e:83:3e:99:14:29:a7:bf:
a7:a5:ee:b9
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRCwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjAzMDUw
MDMwMDlaFw0yMzAxMDEwMTAxMDJaMDMxMTAvBgNVBAMTKEUxRjlEREUzODYyMUUz
RjgwMzFDRTg0NjdGQ0VEMUFFQzFBNUM3QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdgt/TXVOjyaP4FmdGOrd2aXLGCi1UOw6QtlaY7x47LUZKwG3f
vW136Ag40nlTBKpsojKBoF+U457opef/jgBpYndYDR6Cq+eYlATPhf/2gIrE9NHC
VR8VkY06cnFcEJKC/rk1Z3kn0cSNeBVfjbKN7FsYOPcKl5pJKKPTloKkRm1Xo7Wc
JUisUS3cY7nlQpKQkZNzJlHqbCKPMuISLrFWXedi1msgjy32ElDrkgL6yzJqyyIM
/PD8ainec9S9WV/4a1Ay0MP927IrR5OtruTLkWfKBFy1aAmjVjn4ndFuVuvKRVOK
AbH/t59p4GRFsz4G3Moso1EDa3Iig5GDiH+ZAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQU4fnd44Yh4/gDHOhGf87RrsGlx6wwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS80Zm5kNDRZaDRfZ0RIT2hHZjg3UnJzR2x4Nncucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAMwDQYJKoZIhvcNAQELBQADggEB
AAuur2zB3bYhgYyt+syNgoRO/UbThf8wEEJiVTKD+lNzp4etg4SELaGchVI3IUML
CgBYPp6UpcukXpyo1ABFfmU4CACJ9vkpN5BBMf9f9ihPaMNMSbShI9cqkDWx33HZ
n5Q7cUHT8JwXGTSgTbW5RijDEdYSG9hG3SUo9Sc9eP0vd9RPZPLvR7eZCspSNywM
khqM127/qvTRgWgHtH0GWeugfjRIEX+A11WiLpewLn5oZ7Krv8fI1gpHREen8YQ2
DLguheDU8RrQoDH04X1oKFJhlsR5NV6wZiBbdy119xS3diXj0B5zl5NFgVphldCP
PfOYm5GOgz6ZFCmnv6el7rk=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org