Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/iVEDMlHEZ9UU4QDOPvJVUyE1ygo.roa
File: iVEDMlHEZ9UU4QDOPvJVUyE1ygo.roa (raw, json)
Hash identifier: BPqS6cAdl0TL1sipH0Uga4dYnYnspzSrTCT+OsnPftI=
Subject key identifier: 89:51:03:32:51:C4:67:D5:14:E1:00:CE:3E:F2:55:53:21:35:CA:0A
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4675
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/iVEDMlHEZ9UU4QDOPvJVUyE1ygo.roa
Signing time: Sat 16 Apr 2022 00:30:05 +0000
ROA not before: Sat 16 Apr 2022 00:30:05 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18037 (0x4675)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Apr 16 00:30:05 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=8951033251C467D514E100CE3EF255532135CA0A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:78:95:56:22:39:3c:7d:eb:bf:9c:d0:e8:6d:
a8:13:92:e5:3c:16:c9:41:ea:68:f8:cf:fb:c9:6f:
c2:da:dd:36:42:09:fa:5b:a7:8a:4f:39:3d:fc:a9:
fa:68:65:d6:fc:5a:e4:a2:12:fb:d7:34:91:81:a3:
85:f7:b1:88:e9:8f:c6:2f:6f:82:e6:ab:22:c4:92:
25:e5:d4:78:c3:48:53:22:0a:7c:d1:55:fc:c7:fc:
1d:3b:56:e5:73:ce:6f:6a:41:a4:29:4a:6f:8b:9b:
58:58:a4:b4:4e:95:94:04:1f:57:bc:04:60:13:36:
14:8d:c8:ff:6e:2f:be:3e:1b:76:8c:4a:43:be:dd:
55:cc:69:0c:c1:75:46:78:d8:10:c5:99:da:b5:52:
d1:6d:be:ee:4c:14:40:09:4a:93:f7:d0:82:e6:96:
76:d2:d7:22:89:20:f8:40:f4:29:03:b8:8a:5b:c5:
ff:7c:65:af:c1:0c:4a:15:4c:6c:b3:6e:dc:60:ef:
c4:b8:45:4c:3c:ee:f0:03:24:86:f7:6d:6b:ad:fc:
b7:d6:a0:1e:7e:d8:d9:d4:26:ac:20:af:f9:64:28:
e0:fd:89:5b:2b:25:e1:d8:18:e6:e6:3a:7b:f2:3c:
14:bd:4c:15:c7:04:be:71:86:a9:dc:95:3c:93:9e:
29:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:51:03:32:51:C4:67:D5:14:E1:00:CE:3E:F2:55:53:21:35:CA:0A
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/iVEDMlHEZ9UU4QDOPvJVUyE1ygo.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
85:99:4f:f2:a1:84:7c:ee:e7:65:04:92:91:fb:21:a1:5b:8f:
a2:ae:9c:1e:c8:e4:83:2e:38:2a:02:66:96:fc:25:1f:ac:cd:
5d:df:36:10:38:28:98:fd:0e:70:fd:3f:c8:74:dc:5a:bf:de:
3c:fe:58:72:ab:d7:fb:9c:52:09:74:3e:78:94:00:4e:69:0f:
4a:d8:2b:fb:70:37:eb:a6:a1:31:5d:f7:bc:30:a0:25:a8:44:
b8:03:be:68:27:52:6c:ae:13:43:26:c5:1a:71:d7:23:09:aa:
e3:b0:06:eb:a9:f5:c0:b1:67:d4:9c:da:3d:2f:e7:f1:ac:79:
66:ee:53:82:c2:67:58:30:e3:97:00:8b:09:8a:cd:7f:33:16:
6a:28:ef:4f:ab:c5:82:fe:a1:d1:4d:36:7a:61:3b:8e:4a:3d:
b4:b3:f4:3f:69:ec:ad:ba:6e:7e:4a:8c:91:7f:0f:94:fe:a8:
bc:fc:3b:0c:aa:99:ee:34:be:d6:c4:2f:c0:9b:47:a1:17:b2:
7b:0a:ab:2e:a8:4d:26:e2:8d:be:f7:34:b1:42:c4:b7:7e:d8:
d5:2e:47:e6:7c:46:51:f7:a5:33:2b:d2:16:28:bf:53:39:a6:
44:89:cb:60:f8:0c:84:69:80:11:15:21:6c:f9:03:9c:56:60:
e2:57:f0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org