Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/HgQ0emb3t4CLpWSGjMYgJ-XYPqs.roa
File: HgQ0emb3t4CLpWSGjMYgJ-XYPqs.roa (raw, json)
Hash identifier: i+cnfHef3cahXSEG6x1GZoJYOqsKqf9wGO0W1JPFPMo=
Subject key identifier: 1E:04:34:7A:66:F7:B7:80:8B:A5:64:86:8C:C6:20:27:E5:D8:3E:AB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47E3
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/HgQ0emb3t4CLpWSGjMYgJ-XYPqs.roa
Signing time: Thu 12 May 2022 00:30:09 +0000
ROA not before: Thu 12 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18403 (0x47e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 12 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=1E04347A66F7B7808BA564868CC62027E5D83EAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:48:38:83:78:4e:c4:f4:6e:48:5f:9e:52:45:
04:29:23:f4:b9:44:cb:6e:87:7d:43:f0:18:e4:e8:
15:1b:41:30:db:97:bd:c3:d3:42:1d:ed:cb:b1:7b:
2c:d0:af:c7:a9:8b:d8:6c:70:b8:31:d8:c0:0a:0d:
9a:e0:c8:b2:48:6f:29:c2:92:24:e8:d1:9d:e7:ae:
d2:ac:c0:78:22:e3:f2:d6:fd:d8:53:2d:c9:67:d0:
ff:50:51:f0:66:25:e8:f4:d6:8c:84:5a:53:23:7b:
bf:f2:37:8a:22:67:84:db:b9:f9:fc:b1:8d:c9:9b:
f7:c3:cb:28:9b:87:f4:d7:81:0a:d3:e8:ab:7e:60:
82:35:19:41:68:a5:c5:b4:95:85:f7:fa:2a:a6:c7:
92:f4:39:69:e4:9f:24:d3:ba:27:84:55:cf:f7:b1:
7f:46:0a:e3:be:6b:7e:f9:08:5c:50:b9:f6:d7:c5:
8f:f6:aa:92:92:e5:59:f4:6a:6a:1e:c3:af:fd:dc:
15:a6:32:2a:6d:0b:7f:fc:26:c7:b0:e4:78:8f:81:
c4:dc:56:0e:ec:b5:f9:82:89:b9:ed:50:bb:84:80:
19:f3:1b:94:e3:a8:d0:5e:0c:71:04:16:36:8a:11:
61:f2:bc:04:d9:76:7a:f3:1d:c6:8f:f1:fc:75:6b:
7f:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:04:34:7A:66:F7:B7:80:8B:A5:64:86:8C:C6:20:27:E5:D8:3E:AB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/HgQ0emb3t4CLpWSGjMYgJ-XYPqs.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a7:ff:3b:64:8d:15:20:74:3d:f2:97:43:32:e5:80:d1:34:
b4:83:4d:eb:1e:49:54:e8:e3:16:f0:df:1c:58:c1:97:1c:18:
1a:af:4c:a3:ea:70:c6:26:de:5e:59:ff:db:96:66:59:fa:22:
ef:1f:d1:8a:ec:3e:10:00:68:d8:84:60:93:f8:af:68:fe:83:
f2:06:f8:db:8f:5e:a8:01:b5:d1:33:c9:d3:b8:6c:82:29:6b:
82:88:37:e0:cb:c8:89:ba:8c:fd:f2:aa:43:9a:64:87:28:cc:
a3:d3:1c:17:63:37:e6:cf:7d:30:82:b6:85:37:99:a7:5f:42:
7e:c7:48:be:88:5a:b0:6a:3a:ee:9b:bb:e3:07:2c:18:7d:e0:
64:7f:5a:12:4a:e0:7a:31:dd:58:e4:d0:b8:2c:30:a3:ec:0d:
5f:2b:38:81:ae:04:6e:01:f2:a3:ab:4c:bc:8d:18:cb:d7:4c:
9f:70:8c:a3:3b:ea:3f:7d:13:5a:e0:33:5a:9b:2e:b0:3b:1f:
64:1d:e4:6b:ce:a2:57:70:de:9b:50:44:a8:fd:aa:bb:62:82:
bf:16:9f:c6:d3:23:75:07:fc:42:fd:2c:e1:3b:ee:f1:9a:36:
05:22:1f:c8:49:1b:73:96:8b:26:34:47:41:21:23:16:15:df:
21:4d:72:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:36 2023 by rpki-client on console-fra.rpki-client.org