Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/hiHygb0gD86vQQS2wdQ3hrtxe-A.roa
File: hiHygb0gD86vQQS2wdQ3hrtxe-A.roa (raw, json)
Hash identifier: j3MVolUfC2/6bun+NJa8bZGgs1shCiGETmWSBNZLRd8=
Subject key identifier: 86:21:F2:81:BD:20:0F:CE:AF:41:04:B6:C1:D4:37:86:BB:71:7B:E0
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4765
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hiHygb0gD86vQQS2wdQ3hrtxe-A.roa
Signing time: Tue 03 May 2022 00:30:08 +0000
ROA not before: Tue 03 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18277 (0x4765)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 3 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=8621F281BD200FCEAF4104B6C1D43786BB717BE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8d:1e:99:74:a8:ab:df:98:42:4e:a2:eb:0e:
49:80:ad:cf:0b:3e:e1:6a:f1:36:6c:57:8d:f5:af:
80:dd:0e:27:17:a4:9d:d6:11:46:86:29:76:d1:75:
47:56:ce:ff:fb:51:db:5b:77:12:42:b4:f9:43:26:
10:59:7b:b2:81:f0:46:08:8e:42:a2:e8:15:6a:3c:
5e:5a:d9:69:19:6a:5c:c2:97:3d:fc:e2:03:c3:83:
b5:b1:e7:ae:81:ae:a1:68:ac:9e:3f:0e:09:02:f4:
84:7d:0f:b1:10:2f:b6:f5:ae:2a:29:4a:a6:66:4e:
89:04:81:d3:0c:a6:91:1d:72:c3:40:9a:f6:96:71:
00:17:6c:a4:74:e5:74:69:92:0a:35:fa:93:43:00:
a4:4d:96:15:2c:f2:fa:ce:69:ad:6b:a1:f2:6c:e8:
ec:af:ba:3c:7a:74:56:e5:79:7d:67:99:ad:f9:b1:
31:9e:17:ec:4d:3a:08:03:bd:0b:5d:d9:84:3e:17:
54:88:fb:ca:1d:1e:4c:5e:de:1d:24:e0:71:c4:29:
f3:0a:36:47:ec:48:f8:21:e8:d9:e7:71:b0:fe:c5:
f5:34:e7:32:df:b3:7e:89:40:50:de:11:eb:dd:42:
37:a4:65:ed:ea:d6:f6:b0:79:39:55:5c:90:92:7a:
af:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:21:F2:81:BD:20:0F:CE:AF:41:04:B6:C1:D4:37:86:BB:71:7B:E0
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hiHygb0gD86vQQS2wdQ3hrtxe-A.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.3.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:58:f0:0d:44:a9:44:35:e6:18:d5:b4:86:a7:ed:f5:73:f3:
1f:ff:1f:5d:0e:db:49:6d:de:a2:e8:ed:e4:7b:05:71:45:65:
d9:ed:7e:05:d0:4e:bc:a9:a5:26:3c:d0:ee:da:6f:56:2e:23:
99:f7:d7:89:4e:8f:fb:79:9a:90:ee:6c:75:d3:ba:5f:c1:05:
05:d6:c9:33:8b:02:68:bf:9a:54:dd:59:39:ff:42:a8:f9:ad:
49:c9:b4:4e:c4:1d:a0:77:aa:e2:38:9f:2c:ee:c0:88:ae:28:
d7:f1:ca:ee:7d:73:c8:9a:ed:da:22:42:32:92:79:ca:ea:02:
ab:e7:bf:f5:d6:b7:42:11:08:d7:f6:65:45:e8:83:ca:5d:54:
9d:52:23:2a:d1:ab:c9:f7:b9:f8:d7:b7:a4:7d:19:a3:ef:97:
7b:a5:0a:7f:15:58:b8:b4:24:b4:52:83:a8:f3:5e:a8:da:c9:
7c:b5:bc:ac:c4:98:7e:a1:37:8d:a6:af:14:99:30:0e:62:79:
96:72:15:8c:55:c2:7b:78:bc:13:05:7d:2d:38:1a:d3:57:65:
6f:da:60:54:44:ba:83:e9:4e:43:ce:00:bc:21:e3:45:b6:05:
51:02:18:45:2e:93:15:f8:64:84:af:ca:a6:d7:2c:99:8e:d0:
9f:0a:a6:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org