Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/p0wHamSYfbHupLpuefw1lzG-RLg.roa
File: p0wHamSYfbHupLpuefw1lzG-RLg.roa (raw, json)
Hash identifier: ki2k+c0zy1Q3z4HlfZ+Bf4hT3Z+hFAVrVfBIxHwtiUE=
Subject key identifier: A7:4C:07:6A:64:98:7D:B1:EE:A4:BA:6E:79:FC:35:97:31:BE:44:B8
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4809
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/p0wHamSYfbHupLpuefw1lzG-RLg.roa
Signing time: Sun 15 May 2022 00:30:06 +0000
ROA not before: Sun 15 May 2022 00:30:06 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.15.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18441 (0x4809)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 15 00:30:06 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=A74C076A64987DB1EEA4BA6E79FC359731BE44B8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0f:cd:9d:2c:5e:74:15:90:f4:d6:9b:6e:48:
f3:68:9c:cd:60:0d:3a:4a:83:97:a4:9a:47:56:f7:
cd:16:e3:4f:23:1f:7a:84:4a:8b:ff:23:db:26:9a:
ff:fb:92:a9:04:c7:f3:db:9d:8f:ba:b8:b1:12:4f:
1d:cd:9b:d2:cd:fa:45:a0:e6:1c:2d:a7:b5:9d:73:
18:01:77:a6:8d:52:3d:b7:8e:e9:b9:3a:7f:e2:ec:
de:e9:36:a8:6c:6c:f5:3e:0a:c8:2f:bd:6d:74:c6:
ed:99:33:10:a6:3f:4f:71:81:c3:a2:97:a2:97:60:
d7:28:86:32:60:80:4f:f7:e7:5d:d1:21:7f:e7:1a:
c7:f8:a4:b6:7e:97:34:75:6e:dc:3e:98:1c:ea:0c:
c8:5f:1f:0c:26:49:e2:40:32:17:ca:7b:c7:1d:ad:
a5:ea:80:bc:df:2c:35:4f:78:03:7d:fc:c1:8d:7f:
5f:d6:a4:cb:9f:6d:d6:64:dc:3e:89:b0:93:de:20:
a4:7b:c2:bf:a7:b9:e3:e2:af:3b:e3:45:a5:87:8e:
c9:3b:62:2f:1d:f8:9d:f2:6e:3c:ed:dd:b1:27:19:
ec:8f:1a:7e:ba:b0:9c:35:79:2d:e9:56:cf:bb:89:
35:bc:93:ea:f3:75:d3:c1:1b:18:30:51:91:ce:9a:
02:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4C:07:6A:64:98:7D:B1:EE:A4:BA:6E:79:FC:35:97:31:BE:44:B8
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/p0wHamSYfbHupLpuefw1lzG-RLg.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.15.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:03:3c:ee:4c:69:30:8e:17:b2:95:54:92:fc:22:49:16:03:
90:49:bd:1f:81:c6:5e:b0:ad:d5:7f:6b:5a:c8:eb:89:c9:17:
ea:22:76:2f:fc:91:35:42:ea:7f:83:e2:47:d6:5b:71:ce:f4:
39:5e:53:94:87:93:2e:e3:26:d9:eb:01:27:06:f5:5c:d6:65:
ed:3c:9b:26:f1:a1:39:1f:b6:7e:06:8e:12:7e:bd:c6:81:d5:
cd:97:ef:53:a7:f6:0f:7a:b5:f3:7e:0b:07:82:36:f7:d2:ac:
2b:1f:a8:b1:b5:1f:04:96:5b:80:86:69:a9:e0:01:3d:82:8c:
b2:0f:fa:6b:1d:df:6d:db:37:a0:2a:5e:7b:d3:32:99:e3:f0:
aa:5d:17:04:d8:3f:64:67:ad:92:8b:1c:12:88:af:dc:fb:a3:
0e:0b:a6:d0:ce:f3:41:2f:58:1e:ba:0b:e1:12:6f:74:b2:7c:
ad:cd:9d:5f:09:40:f7:73:c7:9b:f1:24:58:de:53:ef:fd:35:
d1:89:54:68:46:2c:0b:ba:7e:e6:c2:8b:7b:4f:45:3c:ed:c9:
20:c7:f2:da:13:70:85:45:0c:e5:ff:49:b0:04:7c:d3:d6:7a:
a3:9a:64:2d:58:5f:45:dd:fa:6f:0d:fd:42:ab:23:96:40:07:
91:ea:fd:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org