Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/QToCjxRyb3DmhjssXMfIHqjdiPU.roa
File: QToCjxRyb3DmhjssXMfIHqjdiPU.roa (raw, json)
Hash identifier: 9BSXgmliHP2eHjoMJuDJnA0bcODhVCs1F5FNBaNPzs8=
Subject key identifier: 41:3A:02:8F:14:72:6F:70:E6:86:3B:2C:5C:C7:C8:1E:A8:DD:88:F5
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47BB
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QToCjxRyb3DmhjssXMfIHqjdiPU.roa
Signing time: Mon 09 May 2022 00:30:14 +0000
ROA not before: Mon 09 May 2022 00:30:14 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18363 (0x47bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 9 00:30:14 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=413A028F14726F70E6863B2C5CC7C81EA8DD88F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:c7:97:50:61:90:a3:58:4d:e1:6d:1c:d1:b3:
b9:89:44:57:f1:bd:f6:c5:20:fa:9c:b1:24:79:03:
c0:c0:ae:97:0c:ae:b1:8b:7d:a0:27:16:63:5e:92:
20:3f:42:ab:79:de:04:6c:43:55:07:12:b2:01:ba:
07:6c:d5:57:ec:03:e6:f8:69:00:76:5d:ce:8c:7b:
99:5c:f9:12:26:a1:17:5e:e9:15:5b:94:19:9d:0e:
82:9e:57:9d:ec:67:53:97:4a:6e:8d:6a:90:eb:75:
08:c6:27:d3:88:fe:94:a9:87:85:2d:25:16:d9:42:
dd:33:62:e5:34:04:e0:75:14:dd:27:d3:a1:ad:f6:
7a:2d:6b:e5:e5:52:89:26:7b:97:56:a6:5c:87:9d:
67:a6:24:d2:3e:d5:f9:41:e9:af:42:83:ca:fd:21:
5b:62:a1:7a:5e:76:56:0d:c8:06:ce:b5:de:4a:b7:
bc:5c:6c:67:87:41:e3:79:b6:79:37:05:b8:56:d7:
92:98:e0:3a:e5:1e:ed:49:c1:9c:21:6b:7d:ff:6c:
7e:50:93:21:09:06:a1:fa:82:89:16:68:0c:7b:73:
4e:ec:8e:77:9c:2d:0d:82:07:8c:e5:62:81:66:62:
db:bc:9a:80:63:75:98:ee:da:4b:d0:b4:45:98:fc:
7b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:3A:02:8F:14:72:6F:70:E6:86:3B:2C:5C:C7:C8:1E:A8:DD:88:F5
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/QToCjxRyb3DmhjssXMfIHqjdiPU.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
89:1d:d1:47:4f:a0:3b:5b:8c:bb:09:e6:2d:cd:1d:dc:27:ec:
15:ea:ef:14:e1:a2:c4:cb:60:ce:c9:92:4e:33:0f:d3:8b:90:
b2:61:a9:0e:29:f0:f1:60:06:4f:8a:0a:18:91:1f:75:2f:b5:
f8:b1:4d:71:81:b2:6e:fa:17:ad:5b:d5:ee:6b:42:96:66:53:
fd:bc:f6:14:44:30:b4:55:f7:27:3b:46:4e:5a:ce:02:31:57:
43:a2:a4:f4:79:a9:a7:af:44:f7:94:70:7f:33:88:0f:8c:55:
c2:0f:c1:e1:bb:c9:64:19:0b:d0:2f:92:e6:e0:8e:65:45:ca:
89:d4:8f:5e:06:e2:76:be:fe:83:62:f3:2a:03:e4:cf:1e:10:
e2:27:c4:3e:b9:8e:95:52:a5:47:f8:b8:79:77:7f:4e:90:e8:
dc:fa:2c:0b:1a:25:43:2a:61:cc:c7:e1:a9:7b:a3:8a:7b:97:
97:ae:3f:9a:df:2d:03:78:2d:6c:6d:1f:c2:51:74:f6:fb:c5:
9b:ac:e2:f0:24:81:af:52:d2:4a:cf:81:aa:08:9f:a9:a5:92:
75:1c:39:b3:8e:50:84:a5:6b:7c:a5:49:5f:46:e1:6d:04:a5:
ec:c3:b1:af:2b:1a:d8:2c:d8:40:15:51:be:83:0a:11:42:3e:
57:bd:6e:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org