Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/Ztx2jtI4bK6Z3EJUFpmXOn8_Jyo.roa
File: Ztx2jtI4bK6Z3EJUFpmXOn8_Jyo.roa (raw, json)
Hash identifier: +guYda5m4PwYHOhbOXFJtRIgkZ+JU6/vbI7dHSVqykY=
Subject key identifier: 66:DC:76:8E:D2:38:6C:AE:99:DC:42:54:16:99:97:3A:7F:3F:27:2A
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47E2
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Ztx2jtI4bK6Z3EJUFpmXOn8_Jyo.roa
Signing time: Thu 12 May 2022 00:30:09 +0000
ROA not before: Thu 12 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18402 (0x47e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 12 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=66DC768ED2386CAE99DC42541699973A7F3F272A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3b:9f:81:1b:36:5f:91:d0:bd:24:d0:bf:fc:
f5:46:31:4e:c7:2f:1d:87:eb:f3:eb:74:91:b9:79:
9d:7e:54:0f:8d:ba:f6:21:f3:85:b7:3a:57:9f:9a:
bd:68:de:df:fa:80:86:12:ee:10:c2:38:c7:1e:12:
fa:04:bd:d5:01:ac:e9:ef:d8:ce:c1:93:5f:c5:6c:
cd:26:72:f7:88:d3:ee:06:16:e7:a1:6a:61:c4:34:
b8:86:f4:49:6c:76:92:5a:e6:e4:15:4c:a3:cd:4e:
fd:66:62:7d:34:52:18:7e:64:7c:62:f7:cb:83:a3:
55:fa:49:a3:84:18:59:b0:9e:cf:62:48:ba:ed:76:
28:43:03:12:ec:2e:58:ea:ab:8a:97:69:6b:d3:0d:
cf:c1:ca:8e:d5:5f:15:12:8c:ba:b6:f5:f4:2a:f8:
0d:62:ee:f4:7e:5f:6d:18:a8:fb:99:39:47:bd:36:
80:64:3f:8d:eb:11:16:ad:a8:4f:92:4d:68:81:ee:
61:ec:aa:cc:21:39:4a:86:f3:18:58:6d:0a:4d:77:
12:74:dc:a7:3a:f8:4d:7e:34:63:6b:da:78:ad:69:
4e:77:8a:07:47:73:73:55:b0:a8:8b:8b:dc:cf:d8:
4e:26:b8:70:05:db:4e:66:12:11:e1:d0:68:72:12:
53:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:DC:76:8E:D2:38:6C:AE:99:DC:42:54:16:99:97:3A:7F:3F:27:2A
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/Ztx2jtI4bK6Z3EJUFpmXOn8_Jyo.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
80:07:fc:0e:8f:4b:f4:ca:fb:5c:2e:0a:a7:10:be:4b:af:45:
3e:d1:ee:cb:f2:76:07:0c:9d:59:6b:dc:ba:68:08:d0:20:62:
22:c2:c2:5e:52:f1:19:ee:91:c6:49:06:35:2c:e7:77:7b:ad:
f1:4c:c7:b6:7d:78:6e:bc:fe:1a:2e:43:dd:89:36:7d:fe:18:
a1:c7:05:bd:05:08:73:f7:a9:33:dc:1e:30:79:64:29:bf:85:
8c:91:fe:7b:60:e8:35:24:4a:6a:19:7f:d5:a7:23:64:d1:5b:
48:3f:06:d1:b0:77:7e:1e:21:45:fb:78:52:e8:b8:8d:f5:f8:
0c:8d:ac:4a:a2:13:48:06:76:36:a5:ef:3f:c8:fc:f0:b8:b5:
4d:ea:f2:a0:00:4d:9e:bc:4b:22:d4:4a:d9:05:7e:5e:89:b6:
77:0c:2a:98:bd:06:2e:2d:fc:07:f3:1c:f8:74:d3:2d:e5:d8:
92:b6:df:0d:d6:4b:7b:85:c9:46:db:81:0e:f1:e5:ac:63:cc:
7a:e9:26:14:d3:d1:a3:c7:9b:e9:48:3e:43:ae:1d:63:68:a5:
b3:75:df:46:8f:58:57:0f:80:10:64:da:0d:3e:56:c6:d8:95:
2b:c0:45:9f:f6:e1:6f:df:25:bb:4d:82:7e:54:31:17:41:a4:
49:b1:1b:05
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICR+IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MTIw
MDMwMDlaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDY2REM3NjhFRDIzODZD
QUU5OURDNDI1NDE2OTk5NzNBN0YzRjI3MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDbO5+BGzZfkdC9JNC//PVGMU7HLx2H6/PrdJG5eZ1+VA+NuvYh
84W3Olefmr1o3t/6gIYS7hDCOMceEvoEvdUBrOnv2M7Bk1/FbM0mcveI0+4GFueh
amHENLiG9ElsdpJa5uQVTKPNTv1mYn00Uhh+ZHxi98uDo1X6SaOEGFmwns9iSLrt
dihDAxLsLljqq4qXaWvTDc/Byo7VXxUSjLq29fQq+A1i7vR+X20YqPuZOUe9NoBk
P43rERatqE+STWiB7mHsqswhOUqG8xhYbQpNdxJ03Kc6+E1+NGNr2nitaU53igdH
c3NVsKiLi9zP2E4muHAF205mEhHh0GhyElNNAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUZtx2jtI4bK6Z3EJUFpmXOn8/JyowHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9adHgyanRJNGJLNlozRUpVRnBtWE9uOF9KeW8ucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHA0wDQYJKoZIhvcNAQELBQADggEB
AIAH/A6PS/TK+1wuCqcQvkuvRT7R7svydgcMnVlr3LpoCNAgYiLCwl5S8RnukcZJ
BjUs53d7rfFMx7Z9eG68/houQ92JNn3+GKHHBb0FCHP3qTPcHjB5ZCm/hYyR/ntg
6DUkSmoZf9WnI2TRW0g/BtGwd34eIUX7eFLouI31+AyNrEqiE0gGdjal7z/I/PC4
tU3q8qAATZ68SyLUStkFfl6JtncMKpi9Bi4t/AfzHPh00y3l2JK23w3WS3uFyUbb
gQ7x5axjzHrpJhTT0aPHm+lIPkOuHWNopbN130aPWFcPgBBk2g0+VsbYlSvARZ/2
4W/fJbtNgn5UMRdBpEmxGwU=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org