Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/HTR7ykVQvNV1tYiuGovPWOvhi6s.roa
File: HTR7ykVQvNV1tYiuGovPWOvhi6s.roa (raw, json)
Hash identifier: ZAn41g/9dIxPDVdW2W7ONKS+6VuZdnnv6/ZRPpmlPs0=
Subject key identifier: 1D:34:7B:CA:45:50:BC:D5:75:B5:88:AE:1A:8B:CF:58:EB:E1:8B:AB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47E5
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/HTR7ykVQvNV1tYiuGovPWOvhi6s.roa
Signing time: Thu 12 May 2022 00:30:10 +0000
ROA not before: Thu 12 May 2022 00:30:10 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18405 (0x47e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 12 00:30:10 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=1D347BCA4550BCD575B588AE1A8BCF58EBE18BAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:36:f2:71:2b:5b:0c:c7:a4:86:ef:9c:f5:5b:
23:a7:72:db:87:e3:fe:70:38:9c:d7:29:04:74:ef:
1f:ae:28:c1:01:5d:b8:c8:82:5b:c0:fe:95:95:3f:
cb:b8:ef:3f:32:0a:49:42:d8:64:d8:57:30:a7:f0:
51:49:45:e8:1a:34:3a:22:65:00:27:57:9d:47:c9:
6d:f5:7b:ba:88:d6:ff:b6:ad:0b:48:3c:00:41:14:
b1:b3:61:23:b0:17:7d:e8:c8:1b:fd:35:5d:15:40:
26:93:68:32:85:fc:fd:0c:c2:9d:72:23:cf:42:a2:
cd:a6:f0:11:da:b6:36:7f:22:4b:6c:e8:e5:be:27:
95:d9:ff:49:c5:dc:00:1b:28:81:91:76:e9:05:3f:
56:64:6a:06:59:2b:82:e5:d7:88:0f:2f:d3:90:af:
a8:c7:fb:d7:a8:7b:0c:54:8c:f6:fe:c2:7e:7b:41:
cf:83:5f:60:73:c6:b2:01:bf:fe:f7:2f:3a:cf:8f:
54:55:c5:5d:4a:a5:95:dd:f4:bd:d5:91:79:2f:9e:
34:0e:de:3d:92:56:58:43:2f:87:a5:96:75:7c:e0:
1c:93:0d:b1:82:c5:51:81:03:0f:71:e6:3c:17:48:
ff:86:fd:cf:8c:6a:33:4e:b6:c1:c2:0e:f1:49:bd:
8f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:34:7B:CA:45:50:BC:D5:75:B5:88:AE:1A:8B:CF:58:EB:E1:8B:AB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/HTR7ykVQvNV1tYiuGovPWOvhi6s.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
77:c0:83:9e:f7:ff:24:7c:aa:a0:a0:37:a1:b7:2a:27:15:51:
32:8d:b2:7c:3a:a0:fd:37:5d:d9:be:6b:9d:3f:eb:bb:09:7c:
48:a2:01:43:8f:0e:03:cf:95:b5:ba:c1:27:f1:ea:4e:89:fa:
2a:31:33:ae:32:03:49:a0:85:6f:22:16:59:45:12:b8:db:74:
ff:c2:08:08:0c:79:5b:be:4c:e9:b9:9c:9e:2d:6f:1e:e8:dd:
5b:6d:34:fb:38:61:0d:e9:ab:19:d0:37:da:38:ba:66:0b:4c:
3e:7a:d4:74:92:ca:cb:c8:da:75:2c:5b:31:39:4f:ce:de:ef:
49:ad:23:92:a5:cf:c6:28:98:c7:9e:a5:ac:82:da:c8:e6:f6:
99:bf:72:71:18:3b:5a:2d:68:0b:31:37:ce:dd:4b:73:87:e2:
74:f6:3d:78:85:57:75:77:05:75:37:b7:67:89:ee:5a:92:ab:
9b:e8:19:45:9d:75:8e:bd:61:ed:e1:bd:12:19:7b:90:8c:2d:
50:ee:dd:ca:ee:e1:c3:72:5a:8c:d8:4b:5d:e2:82:32:d8:f1:
e5:84:3b:52:ef:e0:4d:30:b9:b9:2f:a2:36:2c:e5:1f:4f:ca:
51:5b:fb:a7:23:71:c6:f3:08:90:49:b9:90:3c:e0:42:01:b2:
8b:cc:c2:89
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICR+UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MTIw
MDMwMTBaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDFEMzQ3QkNBNDU1MEJD
RDU3NUI1ODhBRTFBOEJDRjU4RUJFMThCQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7NvJxK1sMx6SG75z1WyOnctuH4/5wOJzXKQR07x+uKMEBXbjI
glvA/pWVP8u47z8yCklC2GTYVzCn8FFJRegaNDoiZQAnV51HyW31e7qI1v+2rQtI
PABBFLGzYSOwF33oyBv9NV0VQCaTaDKF/P0Mwp1yI89Cos2m8BHatjZ/Ikts6OW+
J5XZ/0nF3AAbKIGRdukFP1ZkagZZK4Ll14gPL9OQr6jH+9eoewxUjPb+wn57Qc+D
X2BzxrIBv/73LzrPj1RVxV1KpZXd9L3VkXkvnjQO3j2SVlhDL4ellnV84ByTDbGC
xVGBAw9x5jwXSP+G/c+MajNOtsHCDvFJvY8LAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUHTR7ykVQvNV1tYiuGovPWOvhi6swHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9IVFI3eWtWUXZOVjF0WWl1R292UFdPdmhpNnMucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAswDQYJKoZIhvcNAQELBQADggEB
AHfAg573/yR8qqCgN6G3KicVUTKNsnw6oP03Xdm+a50/67sJfEiiAUOPDgPPlbW6
wSfx6k6J+ioxM64yA0mghW8iFllFErjbdP/CCAgMeVu+TOm5nJ4tbx7o3VttNPs4
YQ3pqxnQN9o4umYLTD561HSSysvI2nUsWzE5T87e70mtI5Klz8YomMeepayC2sjm
9pm/cnEYO1otaAsxN87dS3OH4nT2PXiFV3V3BXU3t2eJ7lqSq5voGUWddY69Ye3h
vRIZe5CMLVDu3cru4cNyWozYS13igjLY8eWEO1Lv4E0wubkvojYs5R9PylFb+6cj
ccbzCJBJuZA84EIBsovMwok=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org