Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/YlOpByeo2t6b8zrwkAKmOowqAUc.roa
File: YlOpByeo2t6b8zrwkAKmOowqAUc.roa (raw, json)
Hash identifier: dyLcIARmBo0Pp9chXZfGEgKN5AGcPa3VHglQFBztuRk=
Subject key identifier: 62:53:A9:07:27:A8:DA:DE:9B:F3:3A:F0:90:02:A6:3A:8C:2A:01:47
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4250
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/YlOpByeo2t6b8zrwkAKmOowqAUc.roa
Signing time: Sun 30 Jan 2022 00:30:05 +0000
ROA not before: Sun 30 Jan 2022 00:30:05 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16976 (0x4250)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jan 30 00:30:05 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=6253A90727A8DADE9BF33AF09002A63A8C2A0147
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:37:21:2f:eb:89:3c:15:cc:76:d7:20:4e:5e:
fa:b9:02:0f:3f:48:a0:79:bd:7a:bd:69:1a:46:58:
c1:20:02:e6:e5:4f:ed:6b:bd:a4:34:27:4f:5e:4a:
ae:a5:b0:4a:4b:91:06:b9:b0:f4:df:93:6e:b5:91:
48:f4:43:03:69:35:1f:c7:d3:30:03:72:2e:66:98:
5f:3f:f8:de:5d:60:a7:69:ff:1e:d0:47:58:90:fd:
95:54:ae:64:e4:1e:e3:43:12:86:86:06:76:db:fd:
48:9d:fa:1c:fa:60:7b:01:f7:52:0d:d3:34:0a:2c:
b2:a0:c8:df:77:35:46:75:c0:99:04:b9:28:6c:b3:
21:e1:12:4f:9b:88:9d:f6:87:4f:ca:fb:81:5c:ed:
ea:22:ee:ff:ae:b0:9c:bb:98:bb:44:f5:17:cb:0a:
a8:dc:99:34:8f:6d:46:36:cc:e4:9c:54:cb:5d:15:
fc:5d:81:7f:5f:ed:0b:a1:be:69:17:62:66:f7:16:
ef:4c:d4:45:ce:90:40:56:94:2c:ea:aa:06:17:3f:
3e:ea:81:ad:84:7f:77:7c:46:61:8a:96:c8:6d:85:
05:7f:1f:9d:e5:a3:e7:e4:8e:2d:94:29:a8:cf:50:
9a:19:f7:f0:ba:aa:ae:d5:aa:13:8f:d1:20:27:78:
49:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:53:A9:07:27:A8:DA:DE:9B:F3:3A:F0:90:02:A6:3A:8C:2A:01:47
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/YlOpByeo2t6b8zrwkAKmOowqAUc.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:6e:be:3f:4f:65:c8:f4:e6:28:94:d6:9b:65:d7:2e:ec:bd:
c2:ea:51:52:9d:df:be:98:16:67:90:9b:83:65:fb:fb:08:4b:
57:ad:60:eb:b2:f5:1e:8b:b9:06:0b:7e:41:80:0a:2b:d8:86:
6d:62:db:c8:e9:7a:3f:2c:69:c6:3d:19:f1:9b:12:c1:39:72:
2e:0b:c2:ee:2d:52:ae:25:35:b4:b3:6e:94:00:fc:58:24:5c:
d7:40:aa:23:37:51:2e:9c:ae:d6:96:ae:6a:07:95:e0:b5:1a:
3e:d5:07:fb:5d:ae:a2:86:1f:0f:ef:2c:c9:32:5d:d7:0d:45:
6e:09:38:6d:3d:ed:eb:17:00:cf:9a:eb:09:9b:20:99:d4:47:
86:d0:f1:61:b5:91:47:29:32:4d:94:a2:87:45:61:07:2f:a2:
fa:29:59:5c:6f:5e:9c:6a:98:7e:a8:77:ed:7b:50:ef:7d:58:
a0:7c:b8:2e:f7:71:1c:2b:53:81:78:84:f9:d8:15:ae:f1:b8:
02:85:fd:6e:ad:29:76:31:25:c8:68:70:e7:46:c3:24:d2:1f:
08:89:e6:fd:8d:94:6d:ec:40:5d:44:e1:41:1c:6a:ef:e3:21:
5b:3b:65:9a:17:d7:bf:b9:b9:ee:e4:43:07:e9:8d:f4:59:7b:
9e:f3:59:82
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICQlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjAxMzAw
MDMwMDVaFw0yMzAxMDEwMTAxMDJaMDMxMTAvBgNVBAMTKDYyNTNBOTA3MjdBOERB
REU5QkYzM0FGMDkwMDJBNjNBOEMyQTAxNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0NyEv64k8Fcx21yBOXvq5Ag8/SKB5vXq9aRpGWMEgAublT+1r
vaQ0J09eSq6lsEpLkQa5sPTfk261kUj0QwNpNR/H0zADci5mmF8/+N5dYKdp/x7Q
R1iQ/ZVUrmTkHuNDEoaGBnbb/Uid+hz6YHsB91IN0zQKLLKgyN93NUZ1wJkEuShs
syHhEk+biJ32h0/K+4Fc7eoi7v+usJy7mLtE9RfLCqjcmTSPbUY2zOScVMtdFfxd
gX9f7QuhvmkXYmb3Fu9M1EXOkEBWlCzqqgYXPz7qga2Ef3d8RmGKlshthQV/H53l
o+fkji2UKajPUJoZ9/C6qq7VqhOP0SAneEnJAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUYlOpByeo2t6b8zrwkAKmOowqAUcwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9ZbE9wQnllbzJ0NmI4enJ3a0FLbU9vd3FBVWMucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAUwDQYJKoZIhvcNAQELBQADggEB
AG9uvj9PZcj05iiU1ptl1y7svcLqUVKd376YFmeQm4Nl+/sIS1etYOuy9R6LuQYL
fkGACivYhm1i28jpej8sacY9GfGbEsE5ci4Lwu4tUq4lNbSzbpQA/FgkXNdAqiM3
US6crtaWrmoHleC1Gj7VB/tdrqKGHw/vLMkyXdcNRW4JOG097esXAM+a6wmbIJnU
R4bQ8WG1kUcpMk2UoodFYQcvovopWVxvXpxqmH6od+17UO99WKB8uC73cRwrU4F4
hPnYFa7xuAKF/W6tKXYxJchocOdGwyTSHwiJ5v2NlG3sQF1E4UEcau/jIVs7ZZoX
17+5ue7kQwfpjfRZe57zWYI=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org