Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/h1P201NZkg2keW9ALjkISHvQMgE.roa
File: h1P201NZkg2keW9ALjkISHvQMgE.roa (raw, json)
Hash identifier: yg6RCavv6vmMU3M5cCw4Hr12iZqI8OXmO3kb2zLEw+o=
Subject key identifier: 87:53:F6:D3:53:59:92:0D:A4:79:6F:40:2E:39:08:48:7B:D0:32:01
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 48B4
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/h1P201NZkg2keW9ALjkISHvQMgE.roa
Signing time: Fri 27 May 2022 00:30:09 +0000
ROA not before: Fri 27 May 2022 00:30:09 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18612 (0x48b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 27 00:30:09 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=8753F6D35359920DA4796F402E3908487BD03201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5c:99:28:03:9f:d4:47:25:d2:1d:8a:d2:a8:
1f:40:3f:a4:a0:d1:88:df:f6:6e:e3:8d:ed:f0:aa:
6e:c5:c5:6c:97:1a:34:27:80:35:85:e0:d9:50:80:
28:53:d7:22:30:2b:92:12:fb:e8:b5:43:05:35:bc:
ff:54:1c:b4:50:2b:63:c4:2c:af:8f:a5:50:8c:90:
5d:88:a7:03:5c:83:03:66:7d:9c:5d:22:e2:b1:ee:
dc:8f:2b:f9:e5:4d:ee:68:e1:34:83:9c:ae:e9:4f:
5d:cf:80:fd:77:f9:9f:b6:ba:9b:f2:82:1c:a3:aa:
12:f5:81:ef:23:b9:b8:99:fd:f9:42:98:b3:2d:76:
4d:d8:53:5c:22:c0:83:54:22:d5:a5:9c:c0:ce:c3:
56:cc:2b:da:b4:f6:31:1d:66:0f:1d:4b:04:d0:c6:
62:1c:11:71:6d:43:4b:cd:cb:f3:ac:1b:69:52:40:
a6:a7:4f:93:47:3b:2a:6b:6d:56:47:78:44:3c:4b:
d7:a3:a8:5c:f6:5d:9f:c4:9d:52:47:49:70:e8:24:
0e:5c:73:ae:2d:3d:26:07:10:77:6a:11:4e:74:67:
c2:02:3c:75:16:9b:58:07:d5:78:50:cb:1d:65:8b:
6c:e3:af:ca:e6:9f:99:4b:dd:30:cc:c2:c5:74:59:
7d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:53:F6:D3:53:59:92:0D:A4:79:6F:40:2E:39:08:48:7B:D0:32:01
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/h1P201NZkg2keW9ALjkISHvQMgE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.13.0/24
Signature Algorithm: sha256WithRSAEncryption
59:ac:82:8b:7b:3a:55:85:a4:15:7d:87:8f:f9:76:2c:60:06:
83:74:2d:10:06:63:ea:ea:67:f1:3a:21:7f:be:2c:cf:53:df:
d8:9f:fc:2e:40:f7:4c:3c:84:c3:e6:29:82:70:e3:ac:e8:a0:
f4:02:3f:a3:fb:df:b8:c3:a0:81:bd:ec:5f:6e:06:31:29:31:
98:50:10:55:90:47:e3:4f:67:33:77:f5:79:77:75:58:34:43:
6a:4f:91:d7:4f:96:7a:59:90:ae:cf:90:0e:6a:e0:7a:65:8e:
1d:e4:36:fb:f5:92:8e:b6:ce:15:2a:7c:d5:9b:06:e9:3f:e5:
55:75:c0:0d:9f:73:20:99:da:aa:69:0e:d1:ac:ba:91:2d:02:
45:3b:0e:7f:7b:70:89:62:75:13:51:51:4f:5e:31:4b:f5:8b:
bf:d4:93:e3:cd:6a:7a:44:38:d2:94:19:10:26:02:7c:55:9f:
04:63:a2:92:de:d1:e4:0d:91:75:73:f3:2b:64:f0:2b:ee:27:
08:48:98:28:ce:c9:76:55:61:be:64:49:b0:a3:1b:bd:c4:26:
be:16:72:eb:b4:1e:8e:c2:13:98:7c:a8:c0:a6:36:17:b9:0a:
6b:fc:5e:89:68:8e:52:b2:44:0a:44:2f:ce:4b:b3:41:ba:a2:
70:b7:fa:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org