Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/7AQUHARhYosEapYSzWRieGqyW2c.roa
File: 7AQUHARhYosEapYSzWRieGqyW2c.roa (raw, json)
Hash identifier: SxzcPaKCt0aDbWZUBFff56+KQqwi2ab+T/ZFznCbVQU=
Subject key identifier: EC:04:14:1C:04:61:62:8B:04:6A:96:12:CD:64:62:78:6A:B2:5B:67
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4763
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/7AQUHARhYosEapYSzWRieGqyW2c.roa
Signing time: Tue 03 May 2022 00:30:07 +0000
ROA not before: Tue 03 May 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18275 (0x4763)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 3 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=EC04141C0461628B046A9612CD6462786AB25B67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:32:fc:91:9d:fe:0d:d5:a7:38:3e:3c:30:
69:b0:58:cf:da:b1:45:10:1a:53:d6:a9:ff:f3:0d:
a0:97:fa:56:a9:69:24:b3:66:b3:ae:aa:2a:91:88:
64:01:71:9d:df:e0:0b:31:a4:e3:90:6c:2b:9d:0c:
42:ab:34:a6:31:f8:ac:85:6d:17:77:78:6b:ce:0b:
3b:a2:08:b9:54:1c:ca:fe:45:e2:5c:d7:4b:ce:5e:
f6:1c:d3:e4:c7:62:2d:87:1c:e9:69:d7:ed:d9:55:
54:38:e2:97:bc:78:a1:af:19:50:46:70:5b:69:1e:
eb:b9:95:02:d9:ae:d8:cc:42:61:bc:8d:f6:e6:13:
81:46:fd:f1:8f:c0:46:0c:9c:a9:a1:03:90:e4:2b:
f7:fb:74:1d:93:f9:0a:58:a0:03:bd:d7:e2:ad:29:
26:6b:54:6c:35:48:4c:82:a1:45:ee:92:74:d9:30:
ad:7e:6a:2a:8b:76:51:b0:ee:b5:58:f0:c7:43:79:
b0:50:70:09:2f:7e:48:9a:7d:ac:9c:1f:6a:9c:2e:
e1:4a:54:97:f0:85:09:95:78:a1:02:ed:af:15:1b:
25:03:85:51:a1:52:8c:7a:23:32:2a:14:8b:2a:5b:
3e:94:d0:5d:e7:24:eb:e1:d6:b5:10:1d:46:bd:1f:
56:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:04:14:1C:04:61:62:8B:04:6A:96:12:CD:64:62:78:6A:B2:5B:67
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/7AQUHARhYosEapYSzWRieGqyW2c.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:48:3e:3a:80:42:67:71:4c:cb:97:5d:bb:45:2f:07:dc:e4:
c0:93:f5:c2:e7:c6:e1:df:9a:e7:2e:17:2c:60:fc:59:e7:43:
b6:5d:38:a0:8b:d7:9a:50:a0:e1:a2:c7:bf:e9:40:23:51:ca:
69:88:6f:e6:25:9a:e8:fd:3d:e1:16:d3:88:d6:5d:be:71:4c:
70:87:6d:70:d2:eb:e2:22:97:e2:5a:a3:ef:c6:59:21:6e:5e:
2f:72:4f:b7:6f:af:79:55:a5:fe:fc:c9:a4:f5:81:40:e9:18:
68:40:39:25:f4:38:f6:14:e1:50:54:f9:cb:3b:40:9f:b9:4e:
92:9c:37:0b:38:3d:48:08:1c:c7:14:80:4e:20:f9:24:0f:dc:
6e:cd:8a:e3:ec:5e:3a:55:80:98:47:cf:ec:34:06:7b:8d:91:
2f:07:c7:27:11:f1:3d:4a:bd:46:fb:7f:d0:93:a7:fb:6e:49:
24:14:40:df:d1:06:bf:58:48:8c:f5:78:aa:2c:50:0b:fa:4d:
8c:93:fa:58:c2:aa:0a:d4:71:f7:6d:e2:67:66:3f:0b:df:e3:
6e:f6:23:6b:94:5d:ac:42:20:30:1a:60:92:88:3b:9f:58:32:
68:dd:cf:46:c3:83:c8:02:08:21:51:79:77:54:40:7d:80:41:
9c:52:45:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org