Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/CicGHScHWy91MRozgqBCNgWb9g0.roa
File: CicGHScHWy91MRozgqBCNgWb9g0.roa (raw, json)
Hash identifier: gyiRkr5RACmSvi73vAaXqHnyA4s9ebCYgqPl3QbxcoU=
Subject key identifier: 0A:27:06:1D:27:07:5B:2F:75:31:1A:33:82:A0:42:36:05:9B:F6:0D
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 485D
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/CicGHScHWy91MRozgqBCNgWb9g0.roa
Signing time: Sat 21 May 2022 00:30:06 +0000
ROA not before: Sat 21 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18525 (0x485d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 21 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=0A27061D27075B2F75311A3382A04236059BF60D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ed:86:d6:a1:d4:94:ee:55:0f:7b:be:c6:ce:
ee:1b:ae:84:1e:45:fa:a6:17:6e:98:2c:ad:08:9e:
f4:7c:65:3d:5d:7c:be:96:24:9d:55:b9:5d:10:1b:
00:e0:67:cf:df:fd:a9:6f:b3:3e:87:62:62:30:82:
c1:1d:63:7b:7e:df:b1:6f:67:80:c7:d1:73:fc:f4:
08:c3:57:fd:4d:d9:09:89:da:a6:43:5e:e0:0d:0b:
3f:74:5f:48:f4:d2:b3:4f:3f:fa:65:6f:dc:8e:91:
cf:13:7b:a4:c7:cc:7f:87:d1:66:03:12:a9:4b:2d:
6f:e2:4c:d3:31:9f:57:e3:dd:5a:c4:34:13:cf:fb:
e4:25:71:ed:37:e3:2c:45:ac:4e:b4:de:e5:99:73:
7a:a3:7d:f6:6f:4d:e6:37:82:ad:e6:bd:8b:df:eb:
cd:d2:bb:e8:ff:83:ce:9c:d7:8b:ae:c6:3c:54:84:
33:ec:17:fe:83:90:e4:90:7a:ed:07:a5:fd:ec:75:
9c:00:1f:00:08:c5:9a:01:4e:15:22:01:b0:cb:fe:
bc:ee:73:18:5a:87:98:a9:dd:d2:e6:e9:cd:49:ff:
ee:3d:ab:dd:27:a3:a1:9f:2c:07:38:25:dc:21:1f:
88:07:53:a2:0a:da:4e:0d:60:29:a9:0a:ac:83:f7:
b8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:27:06:1D:27:07:5B:2F:75:31:1A:33:82:A0:42:36:05:9B:F6:0D
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/CicGHScHWy91MRozgqBCNgWb9g0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:a1:d7:c0:61:65:5a:af:74:22:68:7a:51:cf:2e:a9:c4:2c:
8c:7b:1b:77:1c:1a:4a:da:c9:c3:49:e4:6b:dd:3d:3f:2c:2d:
72:57:94:b5:0f:f0:75:9c:f7:f2:5a:4e:17:58:d4:de:4e:2a:
04:c1:e9:30:f6:8e:af:20:a7:c4:a9:fe:bb:e4:8c:28:3d:aa:
6f:a5:f9:e0:75:5d:62:02:32:4d:57:00:2b:79:3a:05:92:d7:
11:06:39:8f:b1:e5:5e:be:33:d4:36:6e:20:10:af:21:d4:c2:
28:b5:dc:83:52:21:ec:ab:35:27:c0:25:fd:78:c6:b7:f6:2d:
17:d0:01:4d:a7:93:db:61:5a:28:0d:de:34:c7:a8:85:a1:41:
9a:3a:49:bb:68:70:19:bf:14:8e:1a:e2:21:20:06:96:b6:7d:
4a:ca:9d:90:7b:5f:cf:de:a8:b2:86:3e:1a:55:5c:9e:5d:3c:
aa:27:cc:64:fc:dc:d4:77:4c:7b:5c:06:d6:fc:68:67:38:09:
b8:15:40:6c:e5:82:a1:09:2b:be:90:ec:0c:9c:bc:ef:8e:04:
ec:24:b0:ac:d7:f2:55:b4:f7:e4:8c:2a:a0:85:ae:66:b5:bf:
0e:eb:3f:68:5a:a1:79:7d:e0:ef:73:c5:1b:3c:af:af:a3:6f:
07:1d:07:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org