Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/9QPJHlixIS8r9HW9TQQAy0VjU5c.roa
File: 9QPJHlixIS8r9HW9TQQAy0VjU5c.roa (raw, json)
Hash identifier: fucqLFAvN9FWWuvsmVwHa9SR8nUMfFfXqkaCVL+i8tE=
Subject key identifier: F5:03:C9:1E:58:B1:21:2F:2B:F4:75:BD:4D:04:00:CB:45:63:53:97
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4861
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/9QPJHlixIS8r9HW9TQQAy0VjU5c.roa
Signing time: Sat 21 May 2022 00:30:08 +0000
ROA not before: Sat 21 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18529 (0x4861)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 21 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=F503C91E58B1212F2BF475BD4D0400CB45635397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:a5:d4:54:07:b4:e4:b1:4f:ab:c7:1e:1b:fc:
27:e7:8a:00:1b:49:70:62:3f:42:5e:7d:a7:46:1e:
17:47:05:51:01:5f:0b:49:44:b5:92:5e:3b:ca:7c:
86:d1:4c:35:0a:3a:8d:6b:29:2c:65:4d:07:77:b6:
53:ee:3d:09:75:d3:6d:f2:d0:fc:7a:a8:df:49:dd:
87:37:0c:ae:8a:8d:0d:9a:93:32:78:18:9a:cd:3b:
15:cc:20:f6:e0:df:b5:fa:ff:bc:0d:87:aa:c9:92:
50:c3:c7:cb:33:45:01:e6:b4:59:04:d5:20:94:fd:
68:dd:43:91:1d:c8:e9:5e:c6:8a:ef:86:e6:4d:68:
6d:3e:75:25:04:fc:06:39:9e:ce:68:41:d3:00:c8:
6b:b0:ac:87:fd:dc:b5:ae:19:d7:3b:5c:d3:6f:fa:
a5:09:a3:6c:47:0f:15:76:30:8a:3f:aa:3c:3d:db:
4a:a3:63:5c:a7:67:1d:b3:86:d2:80:e8:e6:4d:7b:
97:7f:ce:b2:74:d9:84:2a:d5:4d:fc:c0:0a:4c:81:
17:c9:3e:16:26:07:c3:79:4d:e4:be:f9:57:6f:17:
c3:ff:11:a6:f2:5d:94:12:ff:02:30:63:55:0b:d4:
ca:dd:40:cf:95:8d:b5:6c:d9:ab:f3:aa:03:f5:1a:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:03:C9:1E:58:B1:21:2F:2B:F4:75:BD:4D:04:00:CB:45:63:53:97
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/9QPJHlixIS8r9HW9TQQAy0VjU5c.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:7f:68:6c:6d:25:25:e0:86:1b:94:b3:2c:e7:ce:a9:1f:7e:
07:35:a1:b3:49:e8:4f:66:bf:18:64:f6:23:26:ce:77:ed:40:
4a:94:71:34:49:74:0a:55:6f:24:03:2e:ca:8e:9c:0b:1b:87:
48:38:8c:52:84:76:92:32:4a:1b:ef:e4:47:3e:db:2f:d7:36:
6f:5b:c4:4e:68:47:aa:45:97:20:5e:c4:58:4f:a7:17:c8:13:
4e:00:14:59:68:60:d5:f0:45:a0:f9:36:3d:b0:1a:da:ec:b1:
49:cd:37:2b:33:7f:f8:fb:ea:87:7a:d6:e6:d7:c4:56:5a:1f:
96:25:2d:9b:db:ac:f8:c5:87:60:c5:75:ac:2d:26:b1:6b:fe:
97:62:e5:16:76:c4:24:7d:a6:9d:56:f5:91:36:47:58:3a:ad:
03:9d:6c:82:df:f6:a5:e2:b3:71:30:14:9e:69:15:a6:34:43:
09:fe:2a:de:ce:ef:32:f3:35:90:44:d6:30:76:15:17:b3:c3:
1a:26:bb:94:c2:d2:9c:4d:46:90:0c:6f:04:7f:9e:d3:74:b0:
ff:91:63:08:96:40:92:db:33:4f:bc:ac:53:9d:cf:81:2d:3a:
f1:99:3d:a7:79:4f:76:a0:23:7a:36:9b:f6:fe:a6:1c:50:ab:
42:a5:18:8f
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICSGEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MjEw
MDMwMDhaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKEY1MDNDOTFFNThCMTIx
MkYyQkY0NzVCRDREMDQwMENCNDU2MzUzOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDtpdRUB7TksU+rxx4b/CfnigAbSXBiP0JefadGHhdHBVEBXwtJ
RLWSXjvKfIbRTDUKOo1rKSxlTQd3tlPuPQl1023y0Px6qN9J3Yc3DK6KjQ2akzJ4
GJrNOxXMIPbg37X6/7wNh6rJklDDx8szRQHmtFkE1SCU/WjdQ5EdyOlexorvhuZN
aG0+dSUE/AY5ns5oQdMAyGuwrIf93LWuGdc7XNNv+qUJo2xHDxV2MIo/qjw920qj
Y1ynZx2zhtKA6OZNe5d/zrJ02YQq1U38wApMgRfJPhYmB8N5TeS++VdvF8P/Eaby
XZQS/wIwY1UL1MrdQM+VjbVs2avzqgP1GlFfAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQU9QPJHlixIS8r9HW9TQQAy0VjU5cwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS85UVBKSGxpeElTOHI5SFc5VFFRQXkwVmpVNWMucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAMwDQYJKoZIhvcNAQELBQADggEB
ALR/aGxtJSXghhuUsyznzqkffgc1obNJ6E9mvxhk9iMmznftQEqUcTRJdApVbyQD
LsqOnAsbh0g4jFKEdpIyShvv5Ec+2y/XNm9bxE5oR6pFlyBexFhPpxfIE04AFFlo
YNXwRaD5Nj2wGtrssUnNNyszf/j76od61ubXxFZaH5YlLZvbrPjFh2DFdawtJrFr
/pdi5RZ2xCR9pp1W9ZE2R1g6rQOdbILf9qXis3EwFJ5pFaY0Qwn+Kt7O7zLzNZBE
1jB2FRezwxomu5TC0pxNRpAMbwR/ntN0sP+RYwiWQJLbM0+8rFOdz4EtOvGZPad5
T3agI3o2m/b+phxQq0KlGI8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:35 2023 by rpki-client on console-fra.rpki-client.org