Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/8mkfJXu3hoKzvUe3YM2riRZ0O78.roa
File: 8mkfJXu3hoKzvUe3YM2riRZ0O78.roa (raw, json)
Hash identifier: sP6QrgeYxmwho9vZpShU9mo3q6OKrh4IHMFmVN+RFHk=
Subject key identifier: F2:69:1F:25:7B:B7:86:82:B3:BD:47:B7:60:CD:AB:89:16:74:3B:BF
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 464D
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/8mkfJXu3hoKzvUe3YM2riRZ0O78.roa
Signing time: Wed 13 Apr 2022 00:30:07 +0000
ROA not before: Wed 13 Apr 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17997 (0x464d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 13 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=F2691F257BB78682B3BD47B760CDAB8916743BBF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:cd:81:34:64:66:8b:65:fb:5c:79:d5:9a:
b3:47:86:73:1c:6d:49:95:3c:28:5b:01:10:15:5f:
6d:14:7e:b0:ae:cd:f8:71:05:5a:fd:38:f3:a9:d4:
41:e6:2c:f5:08:f2:85:d2:7c:57:7b:e3:ed:0c:34:
2c:f7:db:18:25:01:73:bf:cd:83:b2:ec:48:ab:e5:
16:e9:f3:3e:85:72:fd:31:f8:8f:d2:05:75:9c:d1:
20:fa:6a:33:d7:dd:ad:32:d5:d2:f4:fa:24:fa:86:
1a:0d:f0:4a:3a:9e:b4:ba:0d:47:c1:73:bd:0e:bc:
fc:db:f9:bb:38:63:88:83:2c:4e:62:2f:2f:ee:e2:
41:fe:68:75:9f:84:f0:8c:58:80:d2:e0:f9:e2:15:
d0:55:f8:c0:14:40:0b:fd:90:df:f1:c5:d3:fd:9a:
d9:e4:93:0f:9a:98:9a:81:52:d3:0a:6e:5c:41:1e:
76:a0:30:f4:47:a9:3b:92:7c:2c:bd:33:c2:27:80:
ec:20:fa:0c:e8:8e:07:dc:61:af:7d:5c:8c:05:2b:
21:19:f3:4c:12:33:3f:80:1b:98:b4:a0:99:49:3c:
0a:4b:4d:05:51:f7:c6:03:81:1f:18:d2:75:99:96:
10:88:3d:4b:79:e9:e3:ea:6b:95:55:c3:8b:db:11:
fb:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:69:1F:25:7B:B7:86:82:B3:BD:47:B7:60:CD:AB:89:16:74:3B:BF
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/8mkfJXu3hoKzvUe3YM2riRZ0O78.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:32:96:cf:37:4e:ca:a7:f5:ee:97:66:60:53:ec:60:2c:22:
e6:11:9c:0e:cb:83:81:9a:66:34:f1:f2:80:d1:ad:29:c4:a7:
fb:99:52:80:74:12:79:d9:79:bc:43:c8:ec:72:42:24:fa:37:
cd:66:8a:b7:5e:c5:68:e9:f2:03:4f:7d:39:62:be:ab:3d:37:
62:16:92:c5:bb:10:27:94:c5:61:07:a3:c7:55:74:19:80:b2:
cd:0d:ef:1b:aa:7b:ee:7a:60:49:b2:14:d9:84:14:9c:ce:45:
83:6f:4d:32:1d:dd:97:1d:27:bc:39:17:5b:cf:9d:57:90:91:
43:51:e6:52:b7:1f:f9:2b:33:99:92:d4:c1:2c:8d:15:b0:47:
05:cc:3b:06:c9:a4:25:b6:cb:8d:73:3c:52:9e:4d:9b:1b:43:
18:e8:56:e1:f7:d5:0a:bc:c0:7a:d3:73:38:3c:27:3b:73:bb:
b4:37:4b:57:a4:12:b6:70:cb:d6:d3:42:f9:cb:1e:22:60:43:
1e:72:80:ea:a0:4b:3f:6a:95:0b:ff:d3:89:db:66:f3:72:a6:
83:66:9c:db:0f:4a:2a:82:75:9d:d8:d1:97:7a:c8:14:09:27:
9f:39:9a:d2:0f:63:fc:4d:0d:75:0a:4b:f3:72:2e:b3:1c:7c:
1f:22:c9:cb
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRk0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA0MTMw
MDMwMDdaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKEYyNjkxRjI1N0JCNzg2
ODJCM0JENDdCNzYwQ0RBQjg5MTY3NDNCQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDkm82BNGRmi2X7XHnVmrNHhnMcbUmVPChbARAVX20UfrCuzfhx
BVr9OPOp1EHmLPUI8oXSfFd74+0MNCz32xglAXO/zYOy7Eir5Rbp8z6Fcv0x+I/S
BXWc0SD6ajPX3a0y1dL0+iT6hhoN8Eo6nrS6DUfBc70OvPzb+bs4Y4iDLE5iLy/u
4kH+aHWfhPCMWIDS4PniFdBV+MAUQAv9kN/xxdP9mtnkkw+amJqBUtMKblxBHnag
MPRHqTuSfCy9M8IngOwg+gzojgfcYa99XIwFKyEZ80wSMz+AG5i0oJlJPApLTQVR
98YDgR8Y0nWZlhCIPUt56ePqa5VVw4vbEfuhAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQU8mkfJXu3hoKzvUe3YM2riRZ0O78wHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS84bWtmSlh1M2hvS3p2VWUzWU0ycmlSWjBPNzgucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAMwDQYJKoZIhvcNAQELBQADggEB
ACsyls83Tsqn9e6XZmBT7GAsIuYRnA7Lg4GaZjTx8oDRrSnEp/uZUoB0EnnZebxD
yOxyQiT6N81mirdexWjp8gNPfTlivqs9N2IWksW7ECeUxWEHo8dVdBmAss0N7xuq
e+56YEmyFNmEFJzORYNvTTId3ZcdJ7w5F1vPnVeQkUNR5lK3H/krM5mS1MEsjRWw
RwXMOwbJpCW2y41zPFKeTZsbQxjoVuH31Qq8wHrTczg8Jztzu7Q3S1ekErZwy9bT
QvnLHiJgQx5ygOqgSz9qlQv/04nbZvNypoNmnNsPSiqCdZ3Y0Zd6yBQJJ585mtIP
Y/xNDXUKS/NyLrMcfB8iycs=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org