Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/fHmF1S0uRtJkp8QCRdvAAG41v38.roa
File: fHmF1S0uRtJkp8QCRdvAAG41v38.roa (raw, json)
Hash identifier: iycd8gjEdrX+vfXZYhkd1/LjXCXg5adoImBs1U+d+gs=
Subject key identifier: 7C:79:85:D5:2D:2E:46:D2:64:A7:C4:02:45:DB:C0:00:6E:35:BF:7F
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 485F
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/fHmF1S0uRtJkp8QCRdvAAG41v38.roa
Signing time: Sat 21 May 2022 00:30:07 +0000
ROA not before: Sat 21 May 2022 00:30:07 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18527 (0x485f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 21 00:30:07 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=7C7985D52D2E46D264A7C40245DBC0006E35BF7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:e6:97:f0:97:4a:ab:2a:5d:5c:bf:81:64:59:
96:84:cc:e3:46:e0:ac:6c:98:bd:21:91:f7:af:eb:
28:43:64:b0:d0:6a:ba:14:5e:6a:2f:ff:a6:a9:af:
a1:07:fa:83:c6:5c:50:8c:df:2a:0d:d6:30:3f:62:
48:46:67:1d:93:b3:8a:ba:01:8d:10:63:8b:2e:c5:
17:8b:48:a4:e8:04:f0:cf:ce:01:d4:52:42:94:03:
6a:02:d0:8b:7e:9b:3d:36:8b:ab:c6:39:0f:4e:ae:
4e:0c:fa:24:f4:5e:cb:13:e9:44:86:a3:71:00:de:
2a:70:fb:c9:50:30:c8:c7:84:8a:01:7e:a1:fa:34:
76:1b:7b:6c:ba:29:0f:d9:7b:40:96:e7:f8:b0:96:
0c:de:19:5a:c6:29:42:e3:2b:0d:f1:f6:e2:8b:36:
36:58:ed:31:f0:69:b4:d0:2e:0a:5d:cf:fd:19:c9:
ec:cd:eb:b3:ac:19:2f:b8:ae:81:a5:68:b2:d2:3d:
a5:3e:7e:c3:b5:2b:78:5f:90:22:c0:b5:85:31:16:
04:9c:20:48:e1:fa:a9:cb:7e:54:70:52:cf:1b:f8:
e6:63:35:4e:5e:52:38:a8:c6:a7:b1:50:47:fb:c3:
ef:b6:ba:64:da:66:8d:0c:66:a0:ea:06:aa:17:77:
cd:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:79:85:D5:2D:2E:46:D2:64:A7:C4:02:45:DB:C0:00:6E:35:BF:7F
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/fHmF1S0uRtJkp8QCRdvAAG41v38.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
56:82:8c:35:57:ca:40:d4:e1:dc:6d:68:d5:ec:75:25:2a:18:
47:d2:e7:42:c9:c1:6a:c5:99:9f:7a:99:bd:f5:c5:e0:40:e1:
50:53:96:b4:69:c5:07:7d:75:86:ae:fa:11:54:8f:73:d0:ab:
d0:60:27:b4:f0:b9:67:4b:66:02:99:98:36:3f:10:c9:e0:77:
3e:66:90:d9:f9:92:2e:c0:f2:d1:9e:cf:c5:38:a6:bc:18:47:
61:d8:a6:78:e3:19:05:42:b7:b5:18:98:c1:84:84:8d:dc:e1:
a7:62:28:d7:99:8b:36:61:69:98:d3:c0:f4:bd:24:dc:08:b5:
98:3e:44:67:e7:f9:da:05:e8:c1:da:f3:16:fa:50:31:6b:55:
0e:e5:de:d1:82:56:d9:f2:f8:8a:5f:a5:1f:62:a9:33:08:85:
e1:6d:3e:94:b9:75:5b:98:2c:b1:ad:88:98:e3:db:2b:1f:10:
3c:a9:a6:16:79:e3:f1:7a:bc:8d:0b:4d:2d:e3:ec:b2:fb:31:
1a:38:a7:d1:a0:e1:55:bc:9f:ad:16:7f:b6:7f:a2:b2:ae:3e:
3d:d6:1f:55:95:fa:56:cd:b5:6b:d1:d6:83:ad:d5:b9:7e:9b:
6e:55:c4:71:fb:7c:81:e6:3c:4d:14:33:4e:8e:e8:d1:da:85:
0b:34:ed:4b
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICSF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA1MjEw
MDMwMDdaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDdDNzk4NUQ1MkQyRTQ2
RDI2NEE3QzQwMjQ1REJDMDAwNkUzNUJGN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJ5pfwl0qrKl1cv4FkWZaEzONG4KxsmL0hkfev6yhDZLDQaroU
Xmov/6apr6EH+oPGXFCM3yoN1jA/YkhGZx2Ts4q6AY0QY4suxReLSKToBPDPzgHU
UkKUA2oC0It+mz02i6vGOQ9Ork4M+iT0XssT6USGo3EA3ipw+8lQMMjHhIoBfqH6
NHYbe2y6KQ/Ze0CW5/iwlgzeGVrGKULjKw3x9uKLNjZY7THwabTQLgpdz/0ZyezN
67OsGS+4roGlaLLSPaU+fsO1K3hfkCLAtYUxFgScIEjh+qnLflRwUs8b+OZjNU5e
UjioxqexUEf7w++2umTaZo0MZqDqBqoXd819AgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUfHmF1S0uRtJkp8QCRdvAAG41v38wHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9mSG1GMVMwdVJ0SmtwOFFDUmR2QUFHNDF2Mzgucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAkwDQYJKoZIhvcNAQELBQADggEB
AFaCjDVXykDU4dxtaNXsdSUqGEfS50LJwWrFmZ96mb31xeBA4VBTlrRpxQd9dYau
+hFUj3PQq9BgJ7TwuWdLZgKZmDY/EMngdz5mkNn5ki7A8tGez8U4prwYR2HYpnjj
GQVCt7UYmMGEhI3c4adiKNeZizZhaZjTwPS9JNwItZg+RGfn+doF6MHa8xb6UDFr
VQ7l3tGCVtny+IpfpR9iqTMIheFtPpS5dVuYLLGtiJjj2ysfEDypphZ54/F6vI0L
TS3j7LL7MRo4p9Gg4VW8n60Wf7Z/orKuPj3WH1WV+lbNtWvR1oOt1bl+m25VxHH7
fIHmPE0UM06O6NHahQs07Us=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org