Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/LFHMnYmix72XRVliuzftqY8j1GI.roa
File: LFHMnYmix72XRVliuzftqY8j1GI.roa (raw, json)
Hash identifier: BCVAh8/JfYb9kJ4K+oamy/WVZ85kncAd5tW/eux2uGI=
Subject key identifier: 2C:51:CC:9D:89:A2:C7:BD:97:45:59:62:BB:37:ED:A9:8F:23:D4:62
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 486D
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/LFHMnYmix72XRVliuzftqY8j1GI.roa
Signing time: Sun 22 May 2022 00:30:09 +0000
ROA not before: Sun 22 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18541 (0x486d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 22 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=2C51CC9D89A2C7BD97455962BB37EDA98F23D462
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:75:23:3b:00:f1:87:c3:b4:ca:b2:e8:65:7f:
7e:97:39:6b:67:2c:be:69:1b:56:b6:24:93:24:84:
fa:33:e8:31:d0:71:52:b2:90:86:00:68:aa:ff:87:
a9:bb:de:a8:a3:52:eb:b9:97:37:cf:a0:7b:6f:43:
83:05:fe:1c:cc:ea:ae:05:e6:96:98:78:ad:dd:98:
ef:70:cf:2e:e5:8d:2a:36:0f:2a:68:1f:c0:c0:5d:
bd:99:91:bf:ca:63:55:83:6a:1b:3d:49:6d:33:48:
7a:03:83:e0:1a:42:d3:bf:89:4e:0f:88:f0:89:2d:
bb:c7:1d:f2:65:24:4d:ce:52:9f:7d:63:3e:dc:00:
65:9e:4b:53:17:59:c3:72:8e:14:cf:19:89:1f:15:
a2:7a:b4:d0:5b:89:d1:2a:2a:a9:6e:64:48:82:a5:
c2:b2:0d:d0:5e:b1:07:7e:91:16:1e:9a:01:45:eb:
a1:57:e7:9c:4b:90:e6:44:fc:af:49:c6:f7:47:a6:
c4:8c:d5:49:7b:72:3e:19:04:46:71:ed:6e:1d:87:
09:8a:75:a3:14:32:70:20:71:01:c0:12:93:4a:60:
37:3a:90:1e:da:64:4c:31:ab:5f:6a:d2:c5:24:64:
75:27:e1:a0:18:25:b8:fb:1a:71:ae:70:16:f5:d5:
1b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:51:CC:9D:89:A2:C7:BD:97:45:59:62:BB:37:ED:A9:8F:23:D4:62
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/LFHMnYmix72XRVliuzftqY8j1GI.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
59:8b:c3:0b:11:ea:52:92:51:a3:cf:cb:d6:c1:32:fc:b0:83:
5d:9a:c7:e1:a9:ab:3c:78:a8:f3:0d:cd:66:96:b3:47:b1:6d:
09:21:06:d4:38:11:09:85:50:7e:7f:c9:f8:57:ba:6a:57:a5:
66:dd:6c:22:b3:c4:7d:be:81:cf:29:3e:b1:20:13:5d:d1:e3:
36:a2:4a:e1:11:7d:9d:49:b3:c5:9a:3b:07:36:f1:fc:ce:33:
29:a6:e2:7d:3d:77:33:f4:96:cf:6a:7a:5e:31:a4:cd:82:e5:
b6:24:fe:bb:7e:f9:2f:3a:61:c1:bc:ce:e6:53:23:77:87:76:
21:67:ed:52:e2:4a:7b:5b:ac:9c:8e:88:a5:1b:83:a0:f3:66:
bf:28:dd:43:5f:76:15:89:68:2c:a8:1c:a8:26:e3:f8:71:d8:
1f:55:b6:c8:64:4c:7f:37:8e:79:ad:ae:7e:a4:18:a4:7c:d6:
a2:78:43:6e:40:f3:b1:be:8d:13:f1:dd:d2:bf:8c:4d:6d:6e:
84:ab:c9:91:0e:44:34:6a:33:25:79:07:ff:f7:df:fb:d9:1b:
90:6d:29:98:2b:c4:07:91:ab:7d:e6:b7:e3:80:b4:d0:24:3e:
8d:9d:40:a5:0b:77:7c:5c:50:9b:65:32:d9:e1:a6:f6:d6:09:
1c:5b:1e:32
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICSG0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MjIw
MDMwMDlaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDJDNTFDQzlEODlBMkM3
QkQ5NzQ1NTk2MkJCMzdFREE5OEYyM0Q0NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC2dSM7APGHw7TKsuhlf36XOWtnLL5pG1a2JJMkhPoz6DHQcVKy
kIYAaKr/h6m73qijUuu5lzfPoHtvQ4MF/hzM6q4F5paYeK3dmO9wzy7ljSo2Dypo
H8DAXb2Zkb/KY1WDahs9SW0zSHoDg+AaQtO/iU4PiPCJLbvHHfJlJE3OUp99Yz7c
AGWeS1MXWcNyjhTPGYkfFaJ6tNBbidEqKqluZEiCpcKyDdBesQd+kRYemgFF66FX
55xLkOZE/K9JxvdHpsSM1Ul7cj4ZBEZx7W4dhwmKdaMUMnAgcQHAEpNKYDc6kB7a
ZEwxq19q0sUkZHUn4aAYJbj7GnGucBb11RtFAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQULFHMnYmix72XRVliuzftqY8j1GIwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9MRkhNblltaXg3MlhSVmxpdXpmdHFZOGoxR0kucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAkwDQYJKoZIhvcNAQELBQADggEB
AFmLwwsR6lKSUaPPy9bBMvywg12ax+Gpqzx4qPMNzWaWs0exbQkhBtQ4EQmFUH5/
yfhXumpXpWbdbCKzxH2+gc8pPrEgE13R4zaiSuERfZ1Js8WaOwc28fzOMymm4n09
dzP0ls9qel4xpM2C5bYk/rt++S86YcG8zuZTI3eHdiFn7VLiSntbrJyOiKUbg6Dz
Zr8o3UNfdhWJaCyoHKgm4/hx2B9VtshkTH83jnmtrn6kGKR81qJ4Q25A87G+jRPx
3dK/jE1tboSryZEORDRqMyV5B//33/vZG5BtKZgrxAeRq33mt+OAtNAkPo2dQKUL
d3xcUJtlMtnhpvbWCRxbHjI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org