Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Dp0ZgK7N2TPhWvRBkdLtuFkvFow.roa
File: Dp0ZgK7N2TPhWvRBkdLtuFkvFow.roa (raw, json)
Hash identifier: C4hdulb9xTQkYlu4D7TkagQqFNfTfTqjMbJdArEeQrg=
Subject key identifier: 0E:9D:19:80:AE:CD:D9:33:E1:5A:F4:41:91:D2:ED:B8:59:2F:16:8C
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4681
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Dp0ZgK7N2TPhWvRBkdLtuFkvFow.roa
Signing time: Sun 17 Apr 2022 00:30:07 +0000
ROA not before: Sun 17 Apr 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18049 (0x4681)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 17 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=0E9D1980AECDD933E15AF44191D2EDB8592F168C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:7a:16:e3:b3:27:67:36:9d:36:ee:c1:b0:f3:
db:43:bb:8c:7c:29:2c:24:17:5e:7d:83:a9:1d:70:
2a:1c:91:93:ab:1f:ed:27:e2:d8:cf:30:93:78:72:
0e:7f:a1:a1:e4:5e:0c:e6:88:55:ff:a4:76:53:7d:
5b:59:df:9a:ed:d0:4c:37:82:3a:fe:47:bf:ae:d8:
db:fe:6c:bd:6c:65:47:4b:31:08:f0:d9:55:4b:ad:
69:1e:3e:16:25:ac:8c:84:9e:c4:1d:c5:ee:e7:98:
27:90:8c:6c:9a:91:7e:30:07:c4:bd:3e:4a:f3:93:
dc:52:d8:13:e5:1b:9e:a9:63:d9:f0:ab:1a:a6:1c:
76:b6:2a:e2:43:27:e8:b8:07:f4:9f:3e:8a:75:65:
81:e1:cb:b3:49:f9:ba:b5:46:60:73:f0:ab:92:73:
7a:e9:6c:75:52:25:bf:bc:eb:52:ef:a4:6b:e2:30:
20:30:67:c0:f2:76:07:1f:09:ce:6f:12:93:4c:21:
98:af:bb:08:0f:71:b4:e6:bc:8f:93:38:ad:a9:17:
22:5f:f6:7b:3a:f4:2d:89:6a:f7:61:1f:90:20:f5:
e5:69:44:92:96:0b:6c:49:1c:1b:d6:52:68:a4:68:
ce:90:e4:e0:62:25:f5:44:fe:90:fc:c6:3b:07:7d:
8b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9D:19:80:AE:CD:D9:33:E1:5A:F4:41:91:D2:ED:B8:59:2F:16:8C
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Dp0ZgK7N2TPhWvRBkdLtuFkvFow.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
15:c2:34:d0:f3:25:3f:33:0f:55:3b:19:53:5c:97:41:8a:fa:
d6:ca:fe:3d:0c:d0:07:d7:c8:b7:02:ae:bf:03:28:06:cc:ca:
2a:c9:c0:b4:fc:00:5a:fa:4c:cd:42:c4:8b:72:8a:36:a4:32:
0b:3d:e8:c7:af:a4:99:25:0a:7b:58:57:f2:de:4b:eb:5b:d2:
f6:5f:77:c0:a0:2c:12:7a:b3:c1:67:fd:ee:47:ef:0d:5a:36:
67:e8:b9:7f:8d:fe:66:0e:3e:eb:e6:11:f2:ed:16:38:44:9e:
73:eb:d1:3c:ff:dc:2a:ac:3e:5c:92:77:93:50:fa:0e:09:ec:
00:dd:8d:92:0b:fb:67:ba:b6:1b:a8:67:41:88:5e:ad:30:d2:
32:a9:9b:14:e7:17:f0:86:d7:97:3a:3a:57:28:91:b7:47:8c:
94:70:72:99:4c:d1:3d:b6:cb:07:41:01:77:7a:a0:87:c4:9a:
41:1f:81:4b:16:c5:14:87:01:a5:6b:9d:2e:85:5e:82:6b:15:
97:e1:22:a8:50:b7:d9:c3:16:44:b1:cb:4c:b3:52:e6:76:4a:
95:0b:0c:4c:54:9d:07:73:1e:b3:e2:e9:b1:ac:ee:34:08:7b:
d0:1d:9f:4a:78:59:27:14:0c:ae:a7:d9:c1:49:a2:7f:52:42:
a5:d1:f7:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:50 2023 by rpki-client on console-ams.rpki-client.org