Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/T6nOTPOWmf-KAEqUmWMmJeIFd9s.roa
File: T6nOTPOWmf-KAEqUmWMmJeIFd9s.roa (raw, json)
Hash identifier: xvWqG0JNwPE51xCW6Oyu3carQ0Y0kgx7bNdKanUe8n0=
Subject key identifier: 4F:A9:CE:4C:F3:96:99:FF:8A:00:4A:94:99:63:26:25:E2:05:77:DB
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4676
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/T6nOTPOWmf-KAEqUmWMmJeIFd9s.roa
Signing time: Sat 16 Apr 2022 00:30:05 +0000
ROA not before: Sat 16 Apr 2022 00:30:05 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18038 (0x4676)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 16 00:30:05 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=4FA9CE4CF39699FF8A004A9499632625E20577DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ba:40:48:57:1e:25:13:67:29:b0:b2:9b:9e:
1d:84:b3:8b:f6:66:17:1e:28:b7:35:8f:4c:48:fe:
f3:be:4e:d8:a5:a1:e5:2d:b7:a1:0e:2d:83:b3:89:
29:c1:9c:5c:9e:81:2d:e4:e7:4f:89:b0:48:b9:0e:
ec:9b:de:fb:99:28:67:9f:39:e5:a6:0e:76:ce:f2:
b5:03:36:a3:e7:cc:0d:8b:1c:4f:86:93:56:c9:07:
2b:23:7d:40:7d:63:12:02:dd:f3:69:be:2b:1a:46:
cf:5d:63:b6:85:2f:63:fd:09:4e:16:38:5a:1c:7b:
20:f4:ce:a6:41:7e:ec:01:e2:86:e2:25:6f:ee:50:
53:23:d2:78:0d:d9:db:f4:ba:c5:24:d8:9a:ef:19:
a6:60:3b:93:62:44:52:34:95:43:29:11:d5:0f:2d:
02:96:9a:23:4f:b6:3f:fe:82:48:ca:7d:ae:b7:9b:
34:cf:a0:a8:b5:04:b7:d4:6a:e9:e8:1e:28:43:87:
46:6f:ab:3f:a3:e3:e4:cb:59:82:d6:93:2d:9f:44:
dd:94:5b:04:ca:d5:f2:07:fa:bb:ad:5c:07:2a:7a:
64:a4:cd:2b:1f:86:48:2a:f0:99:5c:bb:a6:86:31:
8f:d6:b5:27:25:e7:9c:06:f0:ba:a1:1f:b2:2b:73:
4b:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A9:CE:4C:F3:96:99:FF:8A:00:4A:94:99:63:26:25:E2:05:77:DB
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/T6nOTPOWmf-KAEqUmWMmJeIFd9s.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
13:7f:43:cf:96:c3:e8:4a:27:d8:df:db:ef:df:dc:9c:8e:9d:
07:a9:2e:d2:89:cb:77:b8:b4:1e:e6:6f:6f:04:e2:fd:b7:81:
d8:68:e3:83:33:48:dd:37:c8:9b:21:5f:28:52:13:18:38:61:
a4:a9:a0:43:75:b6:aa:c8:71:6c:ca:d1:a2:d8:71:ec:a3:94:
b5:91:c8:bf:19:ff:00:e0:94:70:f5:01:f6:fa:27:6c:b5:7b:
aa:90:a0:bd:ae:12:e9:97:ab:de:dd:e9:d4:49:bd:0b:35:c9:
dd:5b:95:9c:94:2d:d5:81:86:f2:45:01:98:87:cb:59:60:6a:
84:c6:6d:eb:b8:86:b3:db:91:a9:ed:ed:17:e7:67:e7:f5:cc:
da:da:76:ac:e6:36:36:55:38:3e:85:6f:de:bb:c2:4c:b8:97:
ef:07:f6:9b:13:ac:74:53:8a:7e:04:79:d7:47:3d:b8:a0:d3:
aa:ff:29:48:8d:56:0e:f4:7a:be:94:f9:59:6f:aa:e7:07:d2:
81:a7:e7:8b:8d:5c:22:19:40:5c:e8:85:29:4a:57:66:45:12:
10:a7:13:79:6e:15:3a:29:b6:81:08:ef:49:82:3b:54:62:6b:
cf:a8:55:89:db:a1:76:f6:77:3c:75:04:37:f5:c5:f8:76:49:
68:48:8f:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:51 2023 by rpki-client on console-ams.rpki-client.org