Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Cgqt0wT8P2JltIstwhxKhNFDi88.roa
File: Cgqt0wT8P2JltIstwhxKhNFDi88.roa (raw, json)
Hash identifier: kc2tLHs3+WkmaNcHutnvdFazlXRWUtYwJetl4CQFkxc=
Subject key identifier: 0A:0A:AD:D3:04:FC:3F:62:65:B4:8B:2D:C2:1C:4A:84:D1:43:8B:CF
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 426D
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Cgqt0wT8P2JltIstwhxKhNFDi88.roa
Signing time: Tue 01 Feb 2022 00:30:05 +0000
ROA not before: Tue 01 Feb 2022 00:30:05 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17005 (0x426d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Feb 1 00:30:05 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=0A0AADD304FC3F6265B48B2DC21C4A84D1438BCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:13:a2:bc:80:70:c0:d9:45:84:eb:05:02:01:
f9:fc:ca:35:44:c1:5a:52:e0:15:2f:5b:83:ac:f0:
04:13:c7:7f:78:13:a6:a4:2c:fa:0b:b3:fd:e1:70:
e9:40:e3:98:dd:98:ed:d1:d3:f7:45:f1:32:a7:01:
f6:b3:ad:49:be:8f:f6:be:51:75:f9:9a:85:3c:ac:
6f:bf:2e:4b:21:84:e8:6e:9d:98:16:12:f5:cb:dc:
40:10:06:9e:fd:5d:10:d1:7d:8a:36:32:3f:21:94:
88:28:11:4a:97:23:41:8c:52:14:1c:39:aa:1e:cc:
49:d7:67:a7:bf:7c:75:f5:35:7a:46:06:5b:e3:b3:
58:e2:5c:4a:33:1d:78:f6:ff:bc:dc:c1:da:47:39:
43:ec:43:df:f7:67:f5:6f:23:ba:e8:15:63:43:84:
b6:61:d7:05:fd:ef:ee:38:aa:a7:66:2d:ff:34:47:
6d:2d:80:95:16:3f:b7:da:93:ac:bb:61:60:8a:3f:
93:3f:cd:6a:11:ee:b8:f4:9e:8d:f2:c1:d5:fd:ea:
f6:d9:5a:ff:5e:01:0f:2a:3e:be:49:a2:a8:6a:a8:
df:78:f0:51:0a:e1:a5:61:27:c6:27:43:80:12:85:
1a:cf:d4:5e:11:cc:72:09:57:86:84:34:0a:56:ed:
04:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:0A:AD:D3:04:FC:3F:62:65:B4:8B:2D:C2:1C:4A:84:D1:43:8B:CF
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Cgqt0wT8P2JltIstwhxKhNFDi88.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:11:d4:02:04:a5:b0:8b:1d:5f:c1:38:2e:fb:cd:8d:1f:0f:
68:ce:d1:b4:87:b5:86:be:84:6b:f1:11:55:fa:26:61:fb:fe:
0a:a5:79:b2:63:9c:c9:da:17:ea:51:98:d7:12:ed:f0:aa:73:
47:43:b0:18:58:e3:c8:86:a4:7d:b3:c1:a8:a4:c7:7c:d9:97:
15:e6:58:11:8e:27:9c:a1:e6:80:e0:53:e8:90:5f:e6:97:8e:
ea:c8:9a:7e:df:ee:1a:6b:26:e7:0e:fc:73:9d:c4:89:c2:4c:
40:05:5b:41:74:fc:90:92:7a:4a:8a:a4:ed:94:95:78:50:4f:
76:29:64:23:0f:09:42:6d:a0:65:8a:a6:9a:d7:4e:96:47:4c:
08:f7:b4:8f:3d:c4:c8:18:46:ef:aa:25:58:36:eb:43:57:1f:
01:b1:4d:61:dd:51:ba:84:b7:2d:43:7f:c0:5d:25:73:d7:7e:
ab:86:4c:be:c2:d1:c8:20:18:f9:3a:77:d5:7c:35:72:17:52:
13:34:e2:14:9f:e0:00:02:b8:4c:fc:85:2e:7c:b7:f6:42:1b:
a2:a7:48:25:f4:c6:41:b6:21:48:bd:79:2e:c7:b0:4e:05:46:
d6:d1:b3:87:54:5e:f6:b6:4c:4a:46:08:c1:61:a8:35:24:c8:
cf:21:a9:0a
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICQm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjAyMDEw
MDMwMDVaFw0yMzAxMDEwMTAxMDJaMDMxMTAvBgNVBAMTKDBBMEFBREQzMDRGQzNG
NjI2NUI0OEIyREMyMUM0QTg0RDE0MzhCQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC6E6K8gHDA2UWE6wUCAfn8yjVEwVpS4BUvW4Os8AQTx394E6ak
LPoLs/3hcOlA45jdmO3R0/dF8TKnAfazrUm+j/a+UXX5moU8rG+/LkshhOhunZgW
EvXL3EAQBp79XRDRfYo2Mj8hlIgoEUqXI0GMUhQcOaoezEnXZ6e/fHX1NXpGBlvj
s1jiXEozHXj2/7zcwdpHOUPsQ9/3Z/VvI7roFWNDhLZh1wX97+44qqdmLf80R20t
gJUWP7fak6y7YWCKP5M/zWoR7rj0no3ywdX96vbZWv9eAQ8qPr5JoqhqqN948FEK
4aVhJ8YnQ4AShRrP1F4RzHIJV4aENApW7QSnAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUCgqt0wT8P2JltIstwhxKhNFDi88wHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9DZ3F0MHdUOFAySmx0SXN0d2h4S2hORkRpODgucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHA8wDQYJKoZIhvcNAQELBQADggEB
AB8R1AIEpbCLHV/BOC77zY0fD2jO0bSHtYa+hGvxEVX6JmH7/gqlebJjnMnaF+pR
mNcS7fCqc0dDsBhY48iGpH2zwaikx3zZlxXmWBGOJ5yh5oDgU+iQX+aXjurImn7f
7hprJucO/HOdxInCTEAFW0F0/JCSekqKpO2UlXhQT3YpZCMPCUJtoGWKpprXTpZH
TAj3tI89xMgYRu+qJVg260NXHwGxTWHdUbqEty1Df8BdJXPXfquGTL7C0cggGPk6
d9V8NXIXUhM04hSf4AACuEz8hS58t/ZCG6KnSCX0xkG2IUi9eS7HsE4FRtbRs4dU
Xva2TEpGCMFhqDUkyM8hqQo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org