Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/hpMrpb6y4GTMRUDkJSw-rCqhnt0.roa
File: hpMrpb6y4GTMRUDkJSw-rCqhnt0.roa (raw, json)
Hash identifier: gs9qmmlPqJ/bC/glvlOqaSth8dF17lnuexYQUUWwr3w=
Subject key identifier: 86:93:2B:A5:BE:B2:E0:64:CC:45:40:E4:25:2C:3E:AC:2A:A1:9E:DD
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 486A
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hpMrpb6y4GTMRUDkJSw-rCqhnt0.roa
Signing time: Sun 22 May 2022 00:30:06 +0000
ROA not before: Sun 22 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18538 (0x486a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 22 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=86932BA5BEB2E064CC4540E4252C3EAC2AA19EDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:32:af:6c:4a:9a:60:1e:81:68:b2:c5:6b:99:
3d:fd:6b:c9:01:e9:e7:4b:31:cd:f0:cc:76:e6:50:
1a:4f:5e:58:e7:88:35:d2:08:81:90:10:01:7b:6b:
bd:80:95:43:8b:2b:c7:20:b3:1a:c2:7e:52:18:f4:
2f:81:4e:fe:22:b9:25:f7:a1:6d:e5:67:80:5a:d8:
2a:aa:9b:57:d4:b9:9b:b1:60:e3:cc:1e:19:1b:2e:
30:3e:53:09:cc:b4:94:39:ea:fd:fc:bc:5b:f6:77:
ba:e9:db:6e:e4:72:e8:c7:fa:22:cf:f5:cb:05:ff:
ea:69:3d:8a:10:71:b4:c5:63:10:32:89:4f:54:06:
1b:03:d8:cb:8a:c1:25:a2:54:7a:45:97:1b:f9:3f:
ad:42:e3:c2:aa:57:6e:cb:59:f3:4d:94:80:b1:6a:
01:f9:fd:d6:64:63:c8:4f:e3:85:1b:d4:7a:63:b6:
50:e4:97:e2:09:2f:a5:8a:be:56:dc:b4:3e:b8:a8:
bc:42:20:92:8c:cd:9d:43:11:85:01:83:91:a5:b6:
61:64:4f:83:06:e4:4e:16:6a:92:ed:c1:38:db:1e:
4a:f9:3f:31:22:79:59:ef:68:a1:25:22:ae:71:81:
a1:d9:bd:87:85:43:b6:dc:20:87:a2:ef:a4:bc:8b:
68:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:93:2B:A5:BE:B2:E0:64:CC:45:40:E4:25:2C:3E:AC:2A:A1:9E:DD
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/hpMrpb6y4GTMRUDkJSw-rCqhnt0.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.5.0/24
Signature Algorithm: sha256WithRSAEncryption
00:6e:01:49:05:57:79:7c:3d:ed:9e:a1:5c:34:ff:8b:d9:3f:
f9:a5:dd:bb:94:5a:0f:f8:cd:be:95:6d:de:a5:bd:d6:d2:84:
b9:13:f5:26:9d:e9:6b:85:32:27:92:c8:8c:bb:8b:2d:7c:f0:
8a:48:93:b0:8f:02:96:67:63:26:f6:12:91:88:e2:62:b1:52:
1e:01:d8:e3:f6:bf:02:fc:a3:60:ac:7c:fb:8a:7b:34:06:b8:
c0:8f:01:cc:21:5f:98:b8:df:89:a5:ce:09:fb:13:67:82:be:
7b:74:3d:28:e8:45:44:eb:25:30:a8:f5:1d:c8:09:14:05:1f:
0b:cc:4e:68:37:17:c6:f2:64:11:2d:69:eb:04:10:f1:cb:f3:
b6:1f:dd:a3:56:a5:59:f3:61:9a:e2:54:83:4a:81:af:83:bb:
5a:98:94:0c:d6:4b:4d:5e:9f:12:49:19:76:b8:a5:95:51:65:
52:58:6c:56:8e:29:ba:c5:c6:6a:a8:2c:e0:fb:8b:e5:ee:39:
31:0d:59:93:45:a0:d6:1c:7e:60:05:75:85:2d:65:bb:41:34:
0c:0e:da:9e:57:81:0c:0c:ad:af:80:a6:bc:47:2c:b5:5e:9e:
56:e6:cc:ab:7d:17:1b:f7:8a:ab:29:b4:98:a3:77:b7:c8:f8:
5d:67:8d:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org