Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Vf63O6GcYdp7hJ8vYeKMvbLqUOE.roa
File: Vf63O6GcYdp7hJ8vYeKMvbLqUOE.roa (raw, json)
Hash identifier: wcChdyAkC64RY3IJITypptQF3HQMio0SMtaWsRvpB34=
Subject key identifier: 55:FE:B7:3B:A1:9C:61:DA:7B:84:9F:2F:61:E2:8C:BD:B2:EA:50:E1
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 466B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Vf63O6GcYdp7hJ8vYeKMvbLqUOE.roa
Signing time: Fri 15 Apr 2022 00:30:10 +0000
ROA not before: Fri 15 Apr 2022 00:30:10 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18027 (0x466b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 15 00:30:10 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=55FEB73BA19C61DA7B849F2F61E28CBDB2EA50E1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7a:29:82:fa:a5:ee:0d:2c:bf:58:43:2b:52:
2a:9a:f4:52:73:9f:bb:95:c3:df:44:66:d4:42:1a:
48:3d:fd:3f:d7:df:b3:6c:97:41:13:0b:33:36:b1:
d5:a5:4a:6d:4f:ad:9b:0f:30:0e:b2:2e:2c:62:e5:
bc:c0:71:d2:99:d2:18:67:ca:55:84:b7:ee:43:88:
e1:ac:7a:c5:b0:93:23:d0:ff:e1:84:aa:17:fb:60:
6d:b8:8d:4b:ef:9a:63:52:88:ba:01:9b:6d:84:3f:
c8:c6:15:24:71:67:ad:53:c9:e3:72:ef:6e:1c:aa:
ac:f0:f8:37:5b:69:ff:d5:c7:f8:f5:83:b8:01:45:
e3:fc:a6:71:55:a1:b3:18:35:0e:24:d8:31:eb:35:
73:3f:6e:24:9e:be:b9:1c:e7:f1:4d:ae:ca:56:3e:
f7:06:4f:54:ba:98:f2:88:1b:58:b9:b5:47:31:66:
48:f0:31:69:0f:b1:23:9f:a1:fb:02:5d:a3:34:93:
b9:7a:a4:61:86:63:72:5e:6e:52:10:e5:4e:8a:bc:
12:50:df:16:87:87:bc:fa:0f:dd:dc:d0:de:00:b4:
fc:63:7f:d2:c6:8e:c6:fe:3c:34:4a:6e:7c:c4:23:
d7:5f:b8:78:ec:fc:20:60:24:11:4e:fd:3c:4a:2e:
09:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:FE:B7:3B:A1:9C:61:DA:7B:84:9F:2F:61:E2:8C:BD:B2:EA:50:E1
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Vf63O6GcYdp7hJ8vYeKMvbLqUOE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
61:60:0d:c2:7e:74:fc:c7:e8:f9:ef:94:1b:93:5f:c7:47:b1:
b3:f4:6d:e5:0c:26:18:d6:f4:9b:a4:27:4a:34:97:20:08:39:
47:ed:33:a6:92:b2:19:d8:05:0a:a8:09:b9:4d:1d:a9:28:97:
04:c2:92:37:54:da:77:7a:6e:43:4e:5d:b5:ec:a7:55:d4:59:
77:cf:03:cc:f9:b0:c8:57:07:64:fb:6e:61:ec:7c:ad:30:f2:
0a:16:62:de:77:34:a2:73:bb:db:6c:2c:e6:78:f4:c9:c9:ea:
5f:32:48:73:de:0e:81:15:fd:65:1f:22:9a:8a:47:19:32:21:
3b:24:8f:22:f2:5c:4b:cf:d3:74:56:c4:9b:80:29:9b:c1:2b:
04:7c:69:63:14:d0:0e:eb:a0:ec:31:c6:2e:bd:26:44:70:74:
d1:b0:ad:20:ab:39:a6:a8:f1:cf:4c:23:a7:b5:28:89:18:f2:
d8:6a:f8:45:3d:6f:d5:4a:f5:48:06:48:02:63:2d:12:fe:ae:
ce:ec:9a:1b:94:28:2a:8e:af:a8:63:cd:73:99:48:cd:2c:73:
31:0d:d2:a3:89:9a:4b:ad:26:35:06:c1:38:c2:48:ed:b1:3b:
28:24:67:c9:d1:90:39:4b:7d:b9:b9:5e:fe:5d:61:f8:d9:88:
c3:11:fe:a4
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA0MTUw
MDMwMTBaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDU1RkVCNzNCQTE5QzYx
REE3Qjg0OUYyRjYxRTI4Q0JEQjJFQTUwRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDieimC+qXuDSy/WEMrUiqa9FJzn7uVw99EZtRCGkg9/T/X37Ns
l0ETCzM2sdWlSm1PrZsPMA6yLixi5bzAcdKZ0hhnylWEt+5DiOGsesWwkyPQ/+GE
qhf7YG24jUvvmmNSiLoBm22EP8jGFSRxZ61TyeNy724cqqzw+Ddbaf/Vx/j1g7gB
ReP8pnFVobMYNQ4k2DHrNXM/biSevrkc5/FNrspWPvcGT1S6mPKIG1i5tUcxZkjw
MWkPsSOfofsCXaM0k7l6pGGGY3JeblIQ5U6KvBJQ3xaHh7z6D93c0N4AtPxjf9LG
jsb+PDRKbnzEI9dfuHjs/CBgJBFO/TxKLgnrAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUVf63O6GcYdp7hJ8vYeKMvbLqUOEwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9WZjYzTzZHY1lkcDdoSjh2WWVLTXZiTHFVT0Uucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAswDQYJKoZIhvcNAQELBQADggEB
AGFgDcJ+dPzH6PnvlBuTX8dHsbP0beUMJhjW9JukJ0o0lyAIOUftM6aSshnYBQqo
CblNHakolwTCkjdU2nd6bkNOXbXsp1XUWXfPA8z5sMhXB2T7bmHsfK0w8goWYt53
NKJzu9tsLOZ49MnJ6l8ySHPeDoEV/WUfIpqKRxkyITskjyLyXEvP03RWxJuAKZvB
KwR8aWMU0A7roOwxxi69JkRwdNGwrSCrOaao8c9MI6e1KIkY8thq+EU9b9VK9UgG
SAJjLRL+rs7smhuUKCqOr6hjzXOZSM0sczEN0qOJmkutJjUGwTjCSO2xOygkZ8nR
kDlLfbm5Xv5dYfjZiMMR/qQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org