Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/gy31N9hz2UyL0obwfCUtoWvgPt8.roa
File: gy31N9hz2UyL0obwfCUtoWvgPt8.roa (raw, json)
Hash identifier: k0Afu/dO+Yj+dG+z3TkBt+IAY7z4GgFQ6FNfGOIk2WI=
Subject key identifier: 83:2D:F5:37:D8:73:D9:4C:8B:D2:86:F0:7C:25:2D:A1:6B:E0:3E:DF
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 464B
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/gy31N9hz2UyL0obwfCUtoWvgPt8.roa
Signing time: Wed 13 Apr 2022 00:30:06 +0000
ROA not before: Wed 13 Apr 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17995 (0x464b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 13 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=832DF537D873D94C8BD286F07C252DA16BE03EDF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:28:b6:61:d7:0a:c8:f6:2b:dd:53:f7:5e:a7:
80:c7:44:97:cf:85:71:85:e8:51:84:a4:b6:88:ec:
0c:b5:65:6f:22:ac:9a:57:2c:e5:8d:27:1d:9e:65:
ff:84:78:74:ca:df:b1:8d:d0:6c:7c:0b:fc:14:d6:
67:51:cc:13:10:b3:34:61:c8:ab:1a:e6:f6:33:c7:
3c:73:45:92:44:77:91:22:4f:7c:a8:1b:02:3d:76:
0e:54:3d:37:15:fc:f1:9c:28:ec:b7:e3:1b:e4:e8:
09:01:cd:57:40:a7:d7:f0:6e:8c:da:03:e3:de:ec:
ff:23:c2:78:fd:d9:49:08:ed:af:f2:7b:84:c1:55:
d9:7c:7c:f7:6a:a5:b8:c4:ca:58:86:97:76:31:f8:
de:98:c7:4a:88:e2:77:3a:ea:87:dc:9c:57:8d:a6:
04:e9:4d:c9:33:76:65:a7:6e:e8:9b:75:a2:57:e5:
ac:73:0d:c4:9d:69:93:8f:68:b6:68:cc:8e:30:a0:
ec:81:db:27:0d:84:aa:1a:f9:4b:1b:84:99:15:fd:
bb:41:a3:67:03:41:0c:d0:b0:7b:1d:e0:ff:aa:6a:
b0:d1:42:b8:97:e1:f7:a0:4e:de:5a:2c:f5:95:e3:
3b:64:d1:0e:9b:97:10:e7:96:33:7c:06:7e:a1:af:
a0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2D:F5:37:D8:73:D9:4C:8B:D2:86:F0:7C:25:2D:A1:6B:E0:3E:DF
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/gy31N9hz2UyL0obwfCUtoWvgPt8.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:99:68:e3:78:36:23:ee:12:aa:aa:cc:5e:6e:38:ca:2f:89:
7a:82:42:9b:19:76:4b:d3:3c:90:7e:1b:be:9b:db:e4:e0:ef:
fd:a9:d5:9f:78:c7:fc:f8:43:fb:13:f4:35:44:fe:13:19:e8:
e1:13:bc:15:7f:e2:f4:dd:ac:1c:15:0f:93:96:2e:81:96:57:
ae:51:ff:98:56:a9:cb:16:99:a9:3c:9a:64:15:f2:c9:a3:81:
d2:c5:2f:54:8d:0f:36:75:db:af:43:a8:2e:88:9e:4e:81:05:
a1:4e:8d:30:03:03:ce:c5:30:fe:f7:97:36:fe:dd:7b:c0:47:
f8:02:58:07:8c:74:73:f5:4a:d3:3f:84:0b:59:57:5a:74:4f:
26:68:43:17:e0:f9:3f:9a:59:c6:dc:eb:29:25:e4:6c:a8:05:
91:c3:11:a4:0d:a2:ef:79:29:46:6d:01:99:35:59:22:f2:d8:
2a:41:f3:9e:b4:82:31:3e:3d:3a:6c:22:b0:9d:18:e4:7a:44:
3d:34:c3:91:35:a9:29:ec:d0:a7:97:c7:55:b3:1d:90:cc:fa:
ae:91:33:7b:87:11:af:79:8a:ec:8a:59:3b:92:7d:71:21:a5:
40:4a:5d:d6:22:09:1d:40:4d:50:74:9c:8f:ae:fe:64:46:a0:
51:5c:23:db
-----BEGIN CERTIFICATE-----
MIIEvTCCA6WgAwIBAgICRkswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNThD
N0Y3OTI2N0FGNzRCQTdEMkZDQzI1NjI2NTJDMzVCNUUxM0VCMTAeFw0yMjA0MTMw
MDMwMDZaFw0yMzA0MDEyMjIxMTRaMDMxMTAvBgNVBAMTKDgzMkRGNTM3RDg3M0Q5
NEM4QkQyODZGMDdDMjUyREExNkJFMDNFREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5KLZh1wrI9ivdU/dep4DHRJfPhXGF6FGEpLaI7Ay1ZW8irJpX
LOWNJx2eZf+EeHTK37GN0Gx8C/wU1mdRzBMQszRhyKsa5vYzxzxzRZJEd5EiT3yo
GwI9dg5UPTcV/PGcKOy34xvk6AkBzVdAp9fwbozaA+Pe7P8jwnj92UkI7a/ye4TB
Vdl8fPdqpbjEyliGl3Yx+N6Yx0qI4nc66ofcnFeNpgTpTckzdmWnbuibdaJX5axz
DcSdaZOPaLZozI4woOyB2ycNhKoa+UsbhJkV/btBo2cDQQzQsHsd4P+qarDRQriX
4fegTt5aLPWV4ztk0Q6blxDnljN8Bn6hr6D7AgMBAAGjggHZMIIB1TAdBgNVHQ4E
FgQUgy31N9hz2UyL0obwfCUtoWvgPt8wHwYDVR0jBBgwFoAUWMf3kmevdLp9L8wl
YmUsNbXhPrEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBWBgNVHR8ETzBNMEug
SaBHhkVyc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL292c0NBL1dNZjNr
bWV2ZExwOUw4d2xZbVVzTmJYaFByRS5jcmwwWwYIKwYBBQUHAQEETzBNMEsGCCsG
AQUFBzAChj9yc3luYzovL2NhLnJnLm5ldC9ycGtpL1JHbmV0LU9VL1dNZjNrbWV2
ZExwOUw4d2xZbVVzTmJYaFByRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIGSBggrBgEF
BQcBCwSBhTCBgjBRBggrBgEFBQcwC4ZFcnN5bmM6Ly9jYS5yZy5uZXQvcnBraS9S
R25ldC1PVS9vdnNDQS9neTMxTjloejJVeUwwb2J3ZkNVdG9XdmdQdDgucm9hMC0G
CCsGAQUFBzANhiFodHRwczovL2NhLnJnLm5ldC9ycmRwL25vdGlmeS54bWwwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACTHAkwDQYJKoZIhvcNAQELBQADggEB
ADyZaON4NiPuEqqqzF5uOMoviXqCQpsZdkvTPJB+G76b2+Tg7/2p1Z94x/z4Q/sT
9DVE/hMZ6OETvBV/4vTdrBwVD5OWLoGWV65R/5hWqcsWmak8mmQV8smjgdLFL1SN
DzZ1269DqC6Ink6BBaFOjTADA87FMP73lzb+3XvAR/gCWAeMdHP1StM/hAtZV1p0
TyZoQxfg+T+aWcbc6ykl5GyoBZHDEaQNou95KUZtAZk1WSLy2CpB8560gjE+PTps
IrCdGOR6RD00w5E1qSns0KeXx1WzHZDM+q6RM3uHEa95iuyKWTuSfXEhpUBKXdYi
CR1ATVB0nI+u/mRGoFFcI9s=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org