Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/BPvdBx8v1004IEUvSUbLQbpmQUE.roa
File: BPvdBx8v1004IEUvSUbLQbpmQUE.roa (raw, json)
Hash identifier: fJuhziakdYJWs6BO/fAfOlrSGj2RY3ydps1I02IMfbI=
Subject key identifier: 04:FB:DD:07:1F:2F:D7:4D:38:20:45:2F:49:46:CB:41:BA:66:41:41
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4843
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/BPvdBx8v1004IEUvSUbLQbpmQUE.roa
Signing time: Thu 19 May 2022 00:30:06 +0000
ROA not before: Thu 19 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18499 (0x4843)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 19 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=04FBDD071F2FD74D3820452F4946CB41BA664141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c2:9c:4b:e9:2d:dc:cd:a4:97:f2:a7:23:42:
f6:40:4b:e2:78:53:79:7e:f6:de:67:02:bb:11:3f:
88:57:b2:83:30:dd:39:18:c4:f0:be:da:ce:5f:73:
ee:9d:f2:52:27:cb:76:8c:a5:6d:69:2c:ff:db:23:
06:30:05:ac:c3:c0:ac:a7:22:66:06:9d:bb:3f:d5:
f1:df:7d:77:14:40:d6:48:53:41:1e:63:c2:3b:df:
af:a1:8f:a2:e9:ce:07:2a:a7:1b:16:82:3c:be:4e:
0a:00:bb:bf:68:b4:8e:8e:dc:2a:64:e1:b6:9e:48:
e8:14:76:e2:2e:b4:5a:49:92:f6:e2:a3:45:48:8e:
7e:5c:c0:c5:00:a7:a4:87:f2:90:7e:0c:45:f7:c9:
55:65:25:aa:ec:f0:6c:69:e0:96:a4:27:5a:02:ed:
8d:15:a8:6a:c8:0c:e6:32:9f:ae:34:34:56:06:c8:
67:99:6d:7d:51:ff:3b:dd:15:67:2f:d4:f9:55:c4:
c8:53:ab:01:97:91:e4:9c:17:56:f3:24:1e:89:de:
e9:8c:9a:e7:c8:77:d5:eb:66:42:be:d0:65:45:0c:
f2:88:5c:70:16:49:7b:5e:f1:37:5c:91:f0:16:fc:
d2:00:e9:8c:67:cb:30:aa:bb:2c:16:36:a3:83:e8:
45:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:FB:DD:07:1F:2F:D7:4D:38:20:45:2F:49:46:CB:41:BA:66:41:41
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/BPvdBx8v1004IEUvSUbLQbpmQUE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
30:5f:b9:0f:26:d4:f2:72:64:90:5a:9e:3a:56:97:42:43:1d:
9e:b9:e7:dd:05:9f:0f:ee:c1:44:7a:76:3d:7f:55:98:57:72:
72:f2:3e:dc:b2:72:3d:60:48:43:77:40:9e:70:bb:18:a0:4e:
c8:fc:a1:05:43:0d:d9:44:ca:24:73:3d:05:55:13:91:69:07:
fd:a3:da:f4:9c:f7:0f:e7:f3:a3:bf:22:b9:a7:86:be:54:39:
e5:bf:5d:2e:3b:37:90:51:6c:f5:59:f0:a3:ea:27:70:66:c4:
cd:d8:14:00:7d:a7:38:f3:c4:3f:b7:dd:8f:a9:ec:20:d8:62:
6e:5e:aa:de:74:34:e5:05:03:53:a9:ac:54:7d:e7:c3:c7:c9:
34:0d:71:c9:5f:6b:dd:98:dd:21:08:18:62:ae:32:7a:7b:31:
e8:a1:ce:61:e0:1c:b9:5b:90:0e:5a:b7:09:2e:23:e9:22:e5:
2d:e5:d3:2a:2c:1b:2f:e1:a3:13:a8:49:85:05:73:01:4a:60:
d9:bd:14:4a:1d:42:21:03:50:8e:5e:ce:ce:53:e4:d0:f7:aa:
d7:9e:f7:3c:38:18:a1:6b:7f:8c:c1:43:74:ba:74:fe:7a:89:
51:45:68:8c:a8:56:ab:73:55:25:04:33:dd:b2:2b:c9:6e:c6:
e8:c4:58:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org