Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/PzEZ7RhhmT8OhoegRVfFlYsetwE.roa
File: PzEZ7RhhmT8OhoegRVfFlYsetwE.roa (raw, json)
Hash identifier: 2N6VfVdQWN3Fm5DUvXCSXD3Vp60r3hCnioUl5/2+pSE=
Subject key identifier: 3F:31:19:ED:18:61:99:3F:0E:86:87:A0:45:57:C5:95:8B:1E:B7:01
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 454F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/PzEZ7RhhmT8OhoegRVfFlYsetwE.roa
Signing time: Sat 26 Mar 2022 00:30:09 +0000
ROA not before: Sat 26 Mar 2022 00:30:09 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 47065
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17743 (0x454f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 26 00:30:09 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=3F3119ED1861993F0E8687A04557C5958B1EB701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:42:51:17:6d:12:be:c1:e8:e8:b8:70:9b:1e:
48:c4:72:91:47:39:76:a3:02:a2:37:83:45:cd:f2:
8d:e4:cf:5b:ff:e1:b2:06:d1:32:09:ec:f7:11:4d:
42:e5:9e:f9:bf:d8:a2:e3:fe:d0:cb:b2:0c:10:66:
c3:5d:f8:0e:81:e4:b1:4e:df:5a:ee:42:57:83:e9:
52:8b:ed:38:9a:65:5f:a4:7f:e3:d7:34:58:27:6d:
66:e4:36:2f:bb:1a:91:e2:a3:a1:ec:3c:15:aa:04:
94:9c:e9:86:05:8e:22:c7:41:ac:51:0d:61:86:6b:
a4:a8:28:41:fb:00:95:5f:a7:23:46:4e:83:78:e4:
0d:68:47:df:8a:51:ad:98:d7:23:bd:d7:cf:c4:1e:
57:74:47:5d:cc:7c:18:d9:9e:eb:12:e2:92:78:93:
f9:cb:18:e9:62:50:14:e0:f0:93:93:74:b1:03:86:
0d:33:b8:a3:61:6a:62:50:4f:ca:98:1d:f4:14:80:
36:e1:6e:59:77:af:03:61:07:56:1f:6c:03:ac:8a:
08:26:a2:e9:b3:59:ee:34:a6:e9:2b:a0:60:2b:5f:
6e:7a:45:9e:d3:55:c2:41:cb:32:60:db:bd:73:5e:
b6:46:72:ae:a8:fa:e7:e1:f1:75:2e:55:10:96:6c:
4b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:31:19:ED:18:61:99:3F:0E:86:87:A0:45:57:C5:95:8B:1E:B7:01
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/PzEZ7RhhmT8OhoegRVfFlYsetwE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:c3:6b:15:c2:03:61:75:ae:3f:e9:53:5c:1a:72:4b:ee:b1:
1c:b3:2d:8c:c8:d1:cc:64:f4:2c:7b:21:55:44:d5:d3:8e:be:
81:ac:a4:38:4a:fa:6e:c7:92:54:83:98:94:1a:72:02:d6:a1:
7b:22:b1:e9:37:b3:ae:46:ce:b6:20:a6:64:da:60:9e:20:c7:
85:4b:10:28:ff:6e:e5:a0:e5:8c:0d:02:ac:92:21:67:3e:df:
9a:52:f0:76:cc:32:12:34:84:5d:ad:74:3a:32:68:fc:8f:cd:
63:53:bd:68:30:a0:22:b7:67:2c:ea:80:4e:77:34:f0:3a:51:
4d:4b:52:49:ec:69:c3:b6:a0:e2:ac:99:db:69:51:81:7f:20:
cc:bb:36:2b:a6:cb:64:23:c6:dc:a4:f9:bb:d4:0b:7c:0a:80:
67:d6:0f:43:d7:07:49:be:0d:54:4e:6f:b8:de:12:6c:54:09:
ed:c3:3e:73:b8:12:34:78:11:b3:3d:2f:a5:5f:00:b0:60:6b:
59:97:b2:5b:33:4e:f4:bd:ed:bd:be:a5:e3:c3:14:37:6a:6d:
4c:2b:8e:8a:94:1c:a1:c5:10:a2:f7:26:99:1c:91:62:10:b1:
ca:41:d6:c7:5e:32:dc:6b:08:dc:d9:45:41:05:a0:48:4a:06:
03:cb:16:c7
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjAzMjYw
MDMwMDlaFw0yMzAxMDEwMTAxMDJaMDMxMTAvBgNVBAMTKDNGMzExOUVEMTg2MTk5
M0YwRTg2ODdBMDQ1NTdDNTk1OEIxRUI3MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+QlEXbRK+wejouHCbHkjEcpFHOXajAqI3g0XN8o3kz1v/4bIG
0TIJ7PcRTULlnvm/2KLj/tDLsgwQZsNd+A6B5LFO31ruQleD6VKL7TiaZV+kf+PX
NFgnbWbkNi+7GpHio6HsPBWqBJSc6YYFjiLHQaxRDWGGa6SoKEH7AJVfpyNGToN4
5A1oR9+KUa2Y1yO918/EHld0R13MfBjZnusS4pJ4k/nLGOliUBTg8JOTdLEDhg0z
uKNhamJQT8qYHfQUgDbhbll3rwNhB1YfbAOsiggmoumzWe40pukroGArX256RZ7T
VcJByzJg271zXrZGcq6o+ufh8XUuVRCWbEvlAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUPzEZ7RhhmT8OhoegRVfFlYsetwEwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9QekVaN1JoaG1UOE9ob2VnUlZmRmxZc2V0d0Uucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHA0wDQYJKoZIhvcNAQELBQADggEB
ADvDaxXCA2F1rj/pU1wackvusRyzLYzI0cxk9Cx7IVVE1dOOvoGspDhK+m7HklSD
mJQacgLWoXsisek3s65GzrYgpmTaYJ4gx4VLECj/buWg5YwNAqySIWc+35pS8HbM
MhI0hF2tdDoyaPyPzWNTvWgwoCK3ZyzqgE53NPA6UU1LUknsacO2oOKsmdtpUYF/
IMy7Niumy2Qjxtyk+bvUC3wKgGfWD0PXB0m+DVROb7jeEmxUCe3DPnO4EjR4EbM9
L6VfALBga1mXslszTvS97b2+pePDFDdqbUwrjoqUHKHFEKL3JpkckWIQscpB1sde
MtxrCNzZRUEFoEhKBgPLFsc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org