Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/bBfv--0y9WfAmNfTttMR2Dvny2Q.roa
File: bBfv--0y9WfAmNfTttMR2Dvny2Q.roa (raw, json)
Hash identifier: nprBIhXPJ8+aN44q2kDvPSlHdp5bk0avpDgOv6wC5Pw=
Subject key identifier: 6C:17:EF:FB:ED:32:F5:67:C0:98:D7:D3:B6:D3:11:D8:3B:E7:CB:64
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 45B1
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/bBfv--0y9WfAmNfTttMR2Dvny2Q.roa
Signing time: Sat 02 Apr 2022 00:30:07 +0000
ROA not before: Sat 02 Apr 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17841 (0x45b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 2 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=6C17EFFBED32F567C098D7D3B6D311D83BE7CB64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f2:e3:59:5b:ea:22:d8:33:95:ae:79:ff:54:
e9:72:90:14:ca:34:67:56:0e:12:0c:e5:82:39:87:
b2:fa:d9:37:f9:af:0f:a7:02:78:ae:ce:ae:b4:bc:
bf:83:41:9b:6b:ef:90:72:43:cc:00:a5:05:7f:41:
e0:71:88:2d:d3:bc:06:d1:01:0e:b3:8f:5d:59:7f:
a9:44:14:10:7a:35:c3:f0:7d:39:5f:9b:70:8f:43:
54:ae:8c:23:5e:cf:e7:86:90:40:0e:ee:53:d4:6b:
45:3e:60:7b:d4:ad:a1:2d:e8:d5:0e:04:95:73:c8:
c4:8b:5e:c9:60:bb:a5:79:57:dd:c9:cf:e4:8d:bb:
4b:d1:21:83:e9:ea:ef:58:74:a5:81:de:f9:28:f7:
fa:8f:00:65:e0:e4:30:ab:4b:c8:55:f6:ac:1e:b2:
eb:52:d6:d6:c5:31:9e:42:fc:03:db:bf:8c:a8:45:
7e:30:7b:98:ed:a9:36:cd:8a:3b:6b:e9:cd:1c:28:
97:46:59:2f:97:ca:2c:74:22:66:b2:5d:c7:0e:1e:
59:c3:16:a8:84:40:04:7e:e0:87:70:ff:0f:fa:65:
d1:f7:71:73:af:93:95:e6:c4:8f:83:1b:dc:dd:27:
2e:dc:b3:b1:ad:49:c0:08:f4:8c:1a:a8:42:76:c9:
71:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:17:EF:FB:ED:32:F5:67:C0:98:D7:D3:B6:D3:11:D8:3B:E7:CB:64
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/bBfv--0y9WfAmNfTttMR2Dvny2Q.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
10:db:89:c9:f4:b8:79:2e:dd:5c:1c:1a:af:8b:f1:75:ca:76:
dd:ea:b8:b9:7c:3a:c2:62:bb:93:da:18:44:c5:78:dd:37:4b:
cc:21:3d:e8:cd:0c:c4:90:d1:4e:1f:6a:a6:1c:87:09:35:af:
6c:53:ad:10:c7:bd:ae:e7:61:8e:ee:33:d4:b7:ca:e8:1f:78:
03:77:8a:98:cc:65:b5:3b:e0:50:55:a1:e1:a4:f1:9e:0d:7d:
31:e0:62:c0:26:48:a2:0d:87:d7:5e:68:d2:78:37:5a:68:ab:
d4:57:3a:43:d3:8b:4f:d3:ac:c3:a4:f6:83:02:00:29:b7:3a:
fc:90:e6:3e:8e:51:62:09:26:a7:09:9f:3b:69:d5:8b:ac:dc:
d2:22:51:7c:80:48:8c:ec:8b:ca:fc:9a:e5:4c:f6:1c:14:b9:
80:24:ed:89:71:8f:6e:9f:ef:6c:10:f6:b3:20:f6:f6:48:99:
76:68:ac:73:d3:f7:04:7d:a7:d0:43:79:cc:74:e3:97:bc:4b:
86:c4:ae:21:07:95:0d:85:fe:36:bc:e6:b4:dc:33:93:ae:d7:
8c:37:ab:4e:b2:bf:57:5d:1d:de:aa:a1:fb:05:d0:77:f2:da:
95:35:3c:11:d8:0d:c2:f0:a8:51:97:2b:59:ce:60:ce:82:72:
cc:7c:3e:e7
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA0MDIw
MDMwMDdaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDZDMTdFRkZCRUQzMkY1
NjdDMDk4RDdEM0I2RDMxMUQ4M0JFN0NCNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCv8uNZW+oi2DOVrnn/VOlykBTKNGdWDhIM5YI5h7L62Tf5rw+n
Aniuzq60vL+DQZtr75ByQ8wApQV/QeBxiC3TvAbRAQ6zj11Zf6lEFBB6NcPwfTlf
m3CPQ1SujCNez+eGkEAO7lPUa0U+YHvUraEt6NUOBJVzyMSLXslgu6V5V93Jz+SN
u0vRIYPp6u9YdKWB3vko9/qPAGXg5DCrS8hV9qwesutS1tbFMZ5C/APbv4yoRX4w
e5jtqTbNijtr6c0cKJdGWS+Xyix0ImayXccOHlnDFqiEQAR+4Idw/w/6ZdH3cXOv
k5XmxI+DG9zdJy7cs7GtScAI9IwaqEJ2yXEDAgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUbBfv++0y9WfAmNfTttMR2Dvny2QwHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9iQmZ2LS0weTlXZkFtTmZUdHRNUjJEdm55MlEucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAkwDQYJKoZIhvcNAQELBQADggEB
ABDbicn0uHku3VwcGq+L8XXKdt3quLl8OsJiu5PaGETFeN03S8whPejNDMSQ0U4f
aqYchwk1r2xTrRDHva7nYY7uM9S3yugfeAN3ipjMZbU74FBVoeGk8Z4NfTHgYsAm
SKINh9deaNJ4N1poq9RXOkPTi0/TrMOk9oMCACm3OvyQ5j6OUWIJJqcJnztp1Yus
3NIiUXyASIzsi8r8muVM9hwUuYAk7Ylxj26f72wQ9rMg9vZImXZorHPT9wR9p9BD
ecx045e8S4bEriEHlQ2F/ja85rTcM5Ou14w3q06yv1ddHd6qofsF0Hfy2pU1PBHY
DcLwqFGXK1nOYM6Ccsx8Puc=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:36:53 2024 by rpki-client on console-fra.rpki-client.org