Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/iowbGp8ljSc6G76gYB0XV0LXBzo.roa
File: iowbGp8ljSc6G76gYB0XV0LXBzo.roa (raw, json)
Hash identifier: pK0wHVQqjO0zWWKVQNSHUBR9JNsmoJHNtVrvY+l8ep0=
Subject key identifier: 8A:8C:1B:1A:9F:25:8D:27:3A:1B:BE:A0:60:1D:17:57:42:D7:07:3A
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 43BA
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/iowbGp8ljSc6G76gYB0XV0LXBzo.roa
Signing time: Fri 25 Feb 2022 00:30:08 +0000
ROA not before: Fri 25 Feb 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17338 (0x43ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 25 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=8A8C1B1A9F258D273A1BBEA0601D175742D7073A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:98:99:57:9d:ab:bd:8b:97:12:32:fa:3c:1d:
b2:e6:76:cf:8a:8f:61:38:83:6a:55:a4:61:2b:fa:
c8:63:fd:c2:ac:b4:99:5e:63:a8:6a:d5:6d:41:aa:
96:65:46:f9:b1:f7:22:e7:b6:54:4d:58:df:f6:d7:
93:ee:7f:1d:b9:fa:9d:bb:fb:c8:b7:d8:bf:a2:cb:
16:08:2a:e6:c4:6e:89:bb:19:08:f0:56:c4:02:44:
ce:96:33:77:da:14:d9:61:7a:1e:e7:5d:54:83:5b:
ba:a0:cf:25:36:6f:72:d5:22:6f:3c:81:be:e1:78:
e4:bd:47:db:13:53:22:87:d1:17:8e:89:da:6f:f4:
e4:94:a6:fe:fd:04:6e:90:fd:ae:8b:00:f4:f3:72:
8c:05:d9:ac:7e:ed:33:e4:64:c5:1a:16:89:6b:25:
af:1b:96:6b:f9:90:8b:0d:44:5a:35:8d:40:1e:14:
eb:07:eb:3d:f5:79:2d:62:5a:c4:b5:b0:1f:26:f1:
1f:d6:d1:1d:bb:b3:fb:b8:f5:81:d8:a3:7a:2e:ac:
15:1c:82:5f:3f:7c:90:b6:9f:c7:d6:c3:54:72:08:
3a:36:22:03:d1:4a:00:70:97:d6:e5:bc:7c:30:fb:
10:09:a4:90:98:eb:88:23:fc:cc:46:6e:1b:ed:c5:
e3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:8C:1B:1A:9F:25:8D:27:3A:1B:BE:A0:60:1D:17:57:42:D7:07:3A
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/iowbGp8ljSc6G76gYB0XV0LXBzo.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:93:93:63:e5:c5:1c:ab:04:a4:2e:e4:6b:3d:34:44:6c:18:
99:65:67:0a:e6:bd:55:3c:a5:d8:e3:0c:11:bf:53:57:a8:d6:
78:05:73:58:45:dc:d4:4f:79:d4:6c:9c:b3:73:ba:c1:aa:2c:
ee:44:98:31:c3:2e:d3:75:53:46:39:dc:67:1b:50:4f:3d:38:
ba:ed:5d:69:17:89:d4:ea:af:6d:e6:89:79:dd:6e:ef:61:eb:
86:cf:f5:13:45:42:2e:da:d1:ce:a0:51:10:0c:a9:71:70:cd:
90:3e:50:2d:9a:0b:64:63:14:8b:8a:5c:d0:a9:fd:7c:ae:28:
8d:1f:41:07:60:5a:59:35:8f:29:84:54:48:8d:d5:11:b5:e3:
bf:36:87:1e:36:cc:b5:29:8b:2b:c1:c4:ff:b4:ec:bb:8c:ba:
d7:95:42:46:6f:50:37:9a:cc:d0:ba:f3:cd:01:84:13:70:1f:
95:7a:e2:25:ad:2b:b9:52:6b:02:93:a9:3c:94:a8:ce:db:6b:
ce:de:c4:ec:35:38:b3:61:a9:ef:f9:21:b0:42:4b:2e:7b:17:
55:97:07:82:bf:18:1b:d6:f0:56:94:1f:c4:c6:a3:ef:d3:d1:
bf:29:41:40:df:32:e5:5b:4d:33:4a:c8:16:f1:c2:fb:de:13:
86:2d:c6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:37 2023 by rpki-client on console-fra.rpki-client.org