Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/I1vlGD8gR48-6VofDGb7gGYZgNs.roa
File: I1vlGD8gR48-6VofDGb7gGYZgNs.roa (raw, json)
Hash identifier: cdPqFE0hIsOliuJJAqZ56TL+5oiRduOy0qwe6z77/74=
Subject key identifier: 23:5B:E5:18:3F:20:47:8F:3E:E9:5A:1F:0C:66:FB:80:66:19:80:DB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4852
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/I1vlGD8gR48-6VofDGb7gGYZgNs.roa
Signing time: Fri 20 May 2022 00:30:09 +0000
ROA not before: Fri 20 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18514 (0x4852)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 20 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=235BE5183F20478F3EE95A1F0C66FB80661980DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:92:43:ec:67:2b:6f:61:2e:e6:93:26:e7:d5:
cd:8b:c0:22:37:ea:12:a6:b2:04:7e:20:09:01:6f:
65:3e:86:46:97:ff:73:6a:c3:9f:9a:de:92:42:d6:
87:95:b3:29:aa:67:4d:cf:30:6f:98:b0:57:9c:3e:
f4:72:92:9f:98:ae:b8:7b:30:83:af:aa:cb:7c:13:
9f:83:af:2c:9d:45:00:52:e5:d3:64:36:35:65:1e:
c2:db:e8:d3:29:bb:be:c6:78:00:c4:e6:30:3b:d8:
34:22:a6:ce:cc:95:83:0f:6a:6f:7e:68:5b:78:c4:
af:79:45:a3:87:fd:fa:34:c9:d2:4c:74:35:99:41:
1a:64:e3:bd:d9:97:07:6c:57:8a:69:6a:a0:83:9e:
ee:15:42:26:dd:99:c8:83:01:5f:40:4e:ee:a9:f4:
90:8b:7d:52:0a:ad:5b:63:6b:a4:ac:b4:9c:81:22:
41:99:e3:72:22:e6:e8:62:44:1e:7a:4b:01:72:92:
0a:4a:ff:dc:6f:42:be:53:30:49:12:40:55:c3:9a:
fd:a3:45:9b:3f:19:52:bb:d2:bb:01:39:97:c5:cd:
e6:03:08:f9:2a:91:d9:23:f3:f5:1e:73:61:bc:c0:
89:49:a6:c9:a8:28:11:48:e2:16:a1:11:a0:5e:75:
b8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5B:E5:18:3F:20:47:8F:3E:E9:5A:1F:0C:66:FB:80:66:19:80:DB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/I1vlGD8gR48-6VofDGb7gGYZgNs.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1c:75:f5:35:55:d0:13:57:78:8f:59:49:b5:ad:74:62:36:
a4:00:de:b6:0e:ff:09:23:44:d8:57:8b:86:72:51:b0:6f:8b:
19:be:e5:95:9d:30:3a:ea:62:74:48:a1:22:dc:5c:fa:5e:48:
6d:a9:59:aa:c0:42:9c:1a:bf:ae:15:f3:63:4d:f2:fa:4e:87:
d7:a7:e1:8f:2a:fc:58:fd:b1:46:bb:72:8a:24:41:c1:22:d0:
ea:94:19:50:5d:01:36:6f:fa:02:a6:e0:80:75:43:62:d0:53:
5c:5f:f0:0a:1f:89:99:0d:e9:f6:9c:be:50:e6:70:1f:4b:d6:
fe:13:9e:2a:39:ca:26:91:a5:cd:5a:58:d1:b5:eb:76:de:9f:
1d:23:4d:67:88:99:ae:be:bb:14:ea:a4:88:f3:51:92:7e:f8:
5e:90:28:7a:df:c1:dd:3f:c6:7e:04:2f:55:48:bd:15:80:25:
ad:cc:23:ca:1c:c0:28:8d:ff:f3:ba:ef:37:f4:01:90:68:06:
2a:2e:df:c6:f6:a6:b8:5b:40:ee:a0:04:fa:24:8d:41:fb:6f:
02:1f:da:88:81:a8:e4:91:74:fb:58:e9:36:88:8b:7d:ed:95:
eb:a3:11:0f:2c:bd:95:ae:c7:3b:51:db:70:f9:2d:bb:97:53:
f1:84:ad:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org