Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/hYwkN4ShKTqO_B1-sPEksy9FMaI.roa
File: hYwkN4ShKTqO_B1-sPEksy9FMaI.roa (raw, json)
Hash identifier: wAwdVWmALoSLOBg6mpnC4qO7VoBcjA538x+j9CHW3ec=
Subject key identifier: 85:8C:24:37:84:A1:29:3A:8E:FC:1D:7E:B0:F1:24:B3:2F:45:31:A2
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4755
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hYwkN4ShKTqO_B1-sPEksy9FMaI.roa
Signing time: Mon 02 May 2022 00:30:09 +0000
ROA not before: Mon 02 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18261 (0x4755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 2 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=858C243784A1293A8EFC1D7EB0F124B32F4531A2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:3a:b5:54:87:10:dc:0e:9d:2d:2a:43:f8:ad:
25:fb:a8:06:65:bd:59:01:3a:b1:f9:8e:0c:08:83:
87:64:2c:c6:72:0e:4c:2e:6a:cf:df:1d:bb:99:2d:
85:3a:73:dd:1a:f9:a2:9a:a3:45:e5:f0:ab:90:e3:
da:8f:e5:7f:70:b4:b3:01:dd:e2:2b:a3:bb:00:28:
62:b5:c5:32:6c:27:10:3f:2e:31:26:ad:37:89:84:
20:1b:e5:2b:09:d6:8f:bd:8b:ae:a4:9b:36:82:f0:
6d:7a:49:7c:33:48:88:66:8b:cf:87:74:55:df:93:
21:45:e1:f7:01:4b:45:ed:3a:da:e0:d0:c4:eb:db:
90:3b:94:50:35:21:32:40:a5:17:47:70:a9:7e:47:
3c:ff:a1:0e:d4:cf:8b:5d:7b:cf:7b:0b:d3:82:48:
de:da:87:a2:ba:6f:b0:43:35:75:00:cc:b8:7f:d8:
b8:23:30:bf:01:c5:f2:c4:5c:5f:0f:ef:0e:e1:8a:
d4:a2:1b:e2:a1:f3:6e:5c:ba:d8:8d:dd:02:14:d7:
b3:59:32:e0:7e:10:c0:49:ce:21:67:b6:05:79:6e:
3f:7f:a0:4c:6d:56:49:d3:09:a8:4f:8c:59:98:31:
6d:45:2c:1e:c6:bb:de:b5:f3:4f:ce:9a:a2:47:74:
a5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:8C:24:37:84:A1:29:3A:8E:FC:1D:7E:B0:F1:24:B3:2F:45:31:A2
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hYwkN4ShKTqO_B1-sPEksy9FMaI.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
38:cf:a5:93:11:fc:d0:45:1b:1d:10:d7:29:db:03:f0:1e:cf:
ab:bd:99:e9:ce:5b:93:d0:ae:a0:4b:de:93:50:b2:d1:4b:64:
7e:f4:e2:8d:6b:a8:34:ab:a4:d3:d2:14:da:55:7b:15:df:b4:
67:12:c4:4f:b4:f0:3f:49:45:cb:bc:75:4a:5c:e6:d2:5c:17:
93:e4:10:c8:b5:7e:5b:ee:14:fa:cc:4b:87:58:30:10:4b:06:
ed:94:bd:a2:9a:30:7b:b5:a0:b6:2c:e3:31:b2:dd:56:70:0e:
2e:c3:fd:59:f8:35:c7:61:e3:4e:27:ff:59:27:79:dc:36:27:
e3:b1:69:62:32:cf:ac:4a:c5:de:b5:1c:7c:1a:fe:98:d9:fd:
d7:b6:d4:04:bd:89:8c:b6:c4:61:19:79:31:3c:92:90:b3:09:
eb:ec:2a:62:28:d0:02:aa:34:0e:8a:e0:5b:c8:95:ee:60:2f:
69:b2:30:a2:48:56:b2:d0:e7:3d:20:a8:11:26:28:db:76:7f:
c5:a2:35:f4:ef:60:c0:9c:a2:b4:38:05:59:1f:82:6a:6d:05:
92:f8:b7:3c:0d:2b:4f:25:ac:fe:e6:da:3d:57:d5:1b:99:34:
0d:f7:18:95:44:0e:59:c7:ec:cf:55:d7:7d:56:65:97:cf:f9:
ce:8a:98:a3
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICR1UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MDIw
MDMwMDlaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDg1OEMyNDM3ODRBMTI5
M0E4RUZDMUQ3RUIwRjEyNEIzMkY0NTMxQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCyOrVUhxDcDp0tKkP4rSX7qAZlvVkBOrH5jgwIg4dkLMZyDkwu
as/fHbuZLYU6c90a+aKao0Xl8KuQ49qP5X9wtLMB3eIro7sAKGK1xTJsJxA/LjEm
rTeJhCAb5SsJ1o+9i66kmzaC8G16SXwzSIhmi8+HdFXfkyFF4fcBS0XtOtrg0MTr
25A7lFA1ITJApRdHcKl+Rzz/oQ7Uz4tde897C9OCSN7ah6K6b7BDNXUAzLh/2Lgj
ML8BxfLEXF8P7w7hitSiG+Kh825cutiN3QIU17NZMuB+EMBJziFntgV5bj9/oExt
VknTCahPjFmYMW1FLB7Gu96180/OmqJHdKVBAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUhYwkN4ShKTqO/B1+sPEksy9FMaIwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9oWXdrTjRTaEtUcU9fQjEtc1BFa3N5OUZNYUkucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAkwDQYJKoZIhvcNAQELBQADggEB
ADjPpZMR/NBFGx0Q1ynbA/Aez6u9menOW5PQrqBL3pNQstFLZH704o1rqDSrpNPS
FNpVexXftGcSxE+08D9JRcu8dUpc5tJcF5PkEMi1flvuFPrMS4dYMBBLBu2UvaKa
MHu1oLYs4zGy3VZwDi7D/Vn4Ncdh404n/1knedw2J+OxaWIyz6xKxd61HHwa/pjZ
/de21AS9iYy2xGEZeTE8kpCzCevsKmIo0AKqNA6K4FvIle5gL2myMKJIVrLQ5z0g
qBEmKNt2f8WiNfTvYMCcorQ4BVkfgmptBZL4tzwNK08lrP7m2j1X1RuZNA33GJVE
DlnH7M9V131WZZfP+c6KmKM=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:37 2023 by rpki-client on console-fra.rpki-client.org