Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/4w5pB86pl5gvXMEJzCdaDu8Bv34.roa
File: 4w5pB86pl5gvXMEJzCdaDu8Bv34.roa (raw, json)
Hash identifier: ksrd3/0aXgeaYGLHYMuxE5LaR2Imgx+MtFmRl5053G8=
Subject key identifier: E3:0E:69:07:CE:A9:97:98:2F:5C:C1:09:CC:27:5A:0E:EF:01:BF:7E
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 46A0
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4w5pB86pl5gvXMEJzCdaDu8Bv34.roa
Signing time: Tue 19 Apr 2022 00:30:07 +0000
ROA not before: Tue 19 Apr 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18080 (0x46a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 19 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=E30E6907CEA997982F5CC109CC275A0EEF01BF7E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cc:a0:75:32:55:e9:bd:92:d3:40:12:d1:f8:
a3:df:fa:aa:70:2d:fb:18:22:08:c1:d2:db:a3:d8:
06:31:8f:b4:59:d6:c0:cd:93:5e:7f:53:d5:00:25:
98:c8:ac:60:cb:ad:07:86:6f:80:18:63:90:b5:86:
03:18:49:3c:fe:bb:2d:d6:f7:bf:37:8f:61:f6:e9:
ab:d6:18:33:11:f8:14:e8:c5:5d:48:fb:63:90:a9:
c0:b9:e1:71:f1:3b:52:4b:a4:db:be:6f:f0:6e:52:
a3:04:40:9b:4f:1f:02:d9:99:47:83:9f:51:7a:36:
49:c6:71:75:fa:92:72:f4:7a:ab:0e:e0:32:0a:5c:
54:18:11:c3:48:d6:84:3c:2d:d9:cb:d2:53:8c:5b:
69:0e:61:0d:89:b0:d9:9e:9b:d0:5f:5d:59:48:a7:
7f:f8:57:f8:a2:35:a5:a7:10:3f:92:05:30:ad:28:
45:2f:69:a6:96:fe:e0:f6:74:e2:7e:74:db:7c:52:
48:01:e8:70:c9:51:db:2a:e6:3d:61:11:a8:9d:1b:
16:ac:a1:9a:fb:a0:e8:39:cd:d7:b5:c3:b4:6a:7f:
10:45:ff:dd:8e:25:e5:53:a7:fc:2d:36:2c:23:de:
fe:5b:98:b6:90:1a:16:32:7c:f1:fa:2e:64:a2:21:
fc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:0E:69:07:CE:A9:97:98:2F:5C:C1:09:CC:27:5A:0E:EF:01:BF:7E
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/4w5pB86pl5gvXMEJzCdaDu8Bv34.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
00:92:a9:b8:6c:c5:20:70:e7:64:b2:22:82:7d:7c:66:94:77:
2b:35:79:a5:f7:1f:14:b6:a5:43:a9:3e:38:bc:7b:2b:2d:44:
ba:fa:04:7d:58:0b:65:a9:7d:39:92:4c:17:1e:33:9e:5f:2e:
c5:0e:63:21:2c:6d:cf:10:e4:47:5c:bf:d8:97:f3:67:3d:8c:
8c:73:67:ce:76:5f:53:b5:b7:b2:c1:4e:5e:9a:23:16:e1:9d:
45:12:91:0b:ba:fb:db:b7:9f:57:d7:56:e5:0c:50:93:03:7d:
fe:05:45:a9:e6:28:89:88:87:36:8a:ca:df:01:c1:20:3d:9d:
7b:6a:a7:11:61:a6:64:1e:16:a4:4a:5e:00:6d:da:42:ab:8b:
cc:cb:aa:26:5e:7e:c8:5f:ba:aa:3e:d2:07:b9:3d:62:0b:bb:
52:90:57:14:2b:34:bf:f7:34:dd:e9:a1:82:d6:06:22:e0:5c:
f7:81:88:22:a6:d7:46:0e:4d:1c:f9:b5:c5:d1:13:28:74:9a:
af:91:a2:4b:ee:1b:21:ff:dc:95:dd:8b:42:55:27:ed:f8:a8:
cd:b2:99:a4:0d:74:39:ca:1a:6f:2f:2d:d6:24:64:0f:ee:a9:
2f:5c:46:13:cb:80:0e:66:68:d6:32:b2:02:f7:c3:ee:d9:2f:
92:91:47:1d
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRqAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA0MTkw
MDMwMDdaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKEUzMEU2OTA3Q0VBOTk3
OTgyRjVDQzEwOUNDMjc1QTBFRUYwMUJGN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqzKB1MlXpvZLTQBLR+KPf+qpwLfsYIgjB0tuj2AYxj7RZ1sDN
k15/U9UAJZjIrGDLrQeGb4AYY5C1hgMYSTz+uy3W9783j2H26avWGDMR+BToxV1I
+2OQqcC54XHxO1JLpNu+b/BuUqMEQJtPHwLZmUeDn1F6NknGcXX6knL0eqsO4DIK
XFQYEcNI1oQ8LdnL0lOMW2kOYQ2JsNmem9BfXVlIp3/4V/iiNaWnED+SBTCtKEUv
aaaW/uD2dOJ+dNt8UkgB6HDJUdsq5j1hEaidGxasoZr7oOg5zde1w7RqfxBF/92O
JeVTp/wtNiwj3v5bmLaQGhYyfPH6LmSiIfx3AgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQU4w5pB86pl5gvXMEJzCdaDu8Bv34wHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS80dzVwQjg2cGw1Z3ZYTUVKekNkYUR1OEJ2MzQucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHA0wDQYJKoZIhvcNAQELBQADggEB
AACSqbhsxSBw52SyIoJ9fGaUdys1eaX3HxS2pUOpPji8eystRLr6BH1YC2WpfTmS
TBceM55fLsUOYyEsbc8Q5Edcv9iX82c9jIxzZ852X1O1t7LBTl6aIxbhnUUSkQu6
+9u3n1fXVuUMUJMDff4FRanmKImIhzaKyt8BwSA9nXtqpxFhpmQeFqRKXgBt2kKr
i8zLqiZefshfuqo+0ge5PWILu1KQVxQrNL/3NN3poYLWBiLgXPeBiCKm10YOTRz5
tcXREyh0mq+RokvuGyH/3JXdi0JVJ+34qM2ymaQNdDnKGm8vLdYkZA/uqS9cRhPL
gA5maNYysgL3w+7ZL5KRRx0=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:52 2024 by rpki-client on console-fra.rpki-client.org