Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/NIh_A0DQQGrFRjKC-IwkaSkfd28.roa
File: NIh_A0DQQGrFRjKC-IwkaSkfd28.roa (raw, json)
Hash identifier: ZZobYAvTzx6pxZRjAdAQRCoXXLXN6p6RfZgsRdcim/Q=
Subject key identifier: 34:88:7F:03:40:D0:40:6A:C5:46:32:82:F8:8C:24:69:29:1F:77:6F
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4863
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/NIh_A0DQQGrFRjKC-IwkaSkfd28.roa
Signing time: Sat 21 May 2022 00:30:09 +0000
ROA not before: Sat 21 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18531 (0x4863)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 21 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=34887F0340D0406AC5463282F88C2469291F776F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:60:84:c4:a6:7f:78:e9:30:1d:b1:e3:26:4e:
2a:1e:8a:7e:22:59:5b:2e:6f:23:3e:6d:57:d2:11:
35:72:f0:98:27:7b:c2:fc:9d:b0:3d:a4:91:34:92:
08:16:2f:d1:81:8d:79:83:74:d5:8f:cd:03:68:0b:
e4:45:1f:22:11:91:49:9a:cf:d8:94:1d:4c:11:22:
ed:b1:c8:0e:26:29:6a:3f:bc:18:e8:87:9c:90:f1:
80:52:84:9f:91:71:57:48:31:0f:c2:fb:bc:26:d9:
a6:a9:da:5d:5e:ba:f3:75:68:1c:63:b1:11:24:e2:
2c:b1:be:ea:54:9c:17:85:82:78:f1:80:36:4f:ba:
34:a4:2a:fa:00:fa:1a:db:de:c0:0a:1c:69:74:84:
b5:4d:e5:74:0f:93:e4:8b:94:5c:99:51:e0:cd:37:
ca:fd:54:ce:15:32:5c:ff:a6:a5:d9:cb:49:55:8e:
93:50:54:2e:1f:49:7a:ca:d0:b7:c4:9c:d9:2c:be:
d9:5a:42:5b:e1:2b:3d:2a:72:f6:e6:4f:5f:cb:4e:
31:0a:71:b5:b0:ac:80:b6:a9:42:6f:fd:22:78:84:
6c:3e:92:86:db:cc:d1:6a:10:b5:c5:bd:51:eb:73:
1a:81:45:69:4d:02:eb:b0:8b:7f:0a:21:bd:d3:1c:
95:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:88:7F:03:40:D0:40:6A:C5:46:32:82:F8:8C:24:69:29:1F:77:6F
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/NIh_A0DQQGrFRjKC-IwkaSkfd28.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:7f:e8:5a:f8:45:f8:d8:02:5c:db:a0:a8:fc:2d:e6:9e:5e:
f9:c8:9d:d4:f3:f8:a3:d1:48:eb:4a:4d:a9:89:6a:26:69:62:
44:4d:a7:cd:e3:7c:ff:db:24:8d:5a:5b:45:82:77:08:b9:59:
04:78:9a:6d:54:08:8f:67:82:f5:44:4a:e2:90:e3:67:d6:05:
98:a3:f3:0e:e3:e0:77:ad:6b:22:13:bf:b7:72:6e:ef:b8:7d:
50:ef:10:63:9d:48:ce:1b:5e:70:a4:10:49:c2:56:e3:1f:e6:
f6:b7:5a:ee:cb:2c:64:f2:d9:d9:36:5a:9b:a5:78:e2:97:dd:
4e:e0:3e:d3:1e:6a:15:a7:55:ae:29:ec:fd:ee:d4:46:f2:23:
a9:73:dc:15:0c:66:0d:ed:e0:9d:bd:d6:b0:98:d4:e7:a1:dd:
42:9a:6b:e7:57:b0:cc:b8:b2:79:14:e3:24:ff:1c:d9:41:59:
e1:01:52:8d:f7:84:3f:be:e5:9b:37:ed:db:52:b9:a5:50:09:
6a:14:c8:c2:3f:a9:79:6d:d4:d0:e1:3c:4d:19:ca:f5:1e:a6:
d3:8d:f0:75:f5:35:01:97:2b:63:5f:e2:35:6b:2d:0a:06:59:
c0:29:4e:f5:9b:d6:a6:95:26:d3:96:b4:be:b1:85:c3:5d:a0:
00:d2:3c:87
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICSGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MjEw
MDMwMDlaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDM0ODg3RjAzNDBEMDQw
NkFDNTQ2MzI4MkY4OEMyNDY5MjkxRjc3NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDNYITEpn946TAdseMmTioein4iWVsubyM+bVfSETVy8Jgne8L8
nbA9pJE0kggWL9GBjXmDdNWPzQNoC+RFHyIRkUmaz9iUHUwRIu2xyA4mKWo/vBjo
h5yQ8YBShJ+RcVdIMQ/C+7wm2aap2l1euvN1aBxjsREk4iyxvupUnBeFgnjxgDZP
ujSkKvoA+hrb3sAKHGl0hLVN5XQPk+SLlFyZUeDNN8r9VM4VMlz/pqXZy0lVjpNQ
VC4fSXrK0LfEnNksvtlaQlvhKz0qcvbmT1/LTjEKcbWwrIC2qUJv/SJ4hGw+kobb
zNFqELXFvVHrcxqBRWlNAuuwi38KIb3THJUzAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUNIh/A0DQQGrFRjKC+IwkaSkfd28wHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9OSWhfQTBEUVFHckZSaktDLUl3a2FTa2ZkMjgucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAswDQYJKoZIhvcNAQELBQADggEB
AKZ/6Fr4RfjYAlzboKj8LeaeXvnIndTz+KPRSOtKTamJaiZpYkRNp83jfP/bJI1a
W0WCdwi5WQR4mm1UCI9ngvVESuKQ42fWBZij8w7j4HetayITv7dybu+4fVDvEGOd
SM4bXnCkEEnCVuMf5va3Wu7LLGTy2dk2WpuleOKX3U7gPtMeahWnVa4p7P3u1Eby
I6lz3BUMZg3t4J291rCY1Oeh3UKaa+dXsMy4snkU4yT/HNlBWeEBUo33hD++5Zs3
7dtSuaVQCWoUyMI/qXlt1NDhPE0ZyvUeptON8HX1NQGXK2Nf4jVrLQoGWcApTvWb
1qaVJtOWtL6xhcNdoADSPIc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org