Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/pD0gSz0pW_Ghr77fa4CuYy-vSW4.roa
File: pD0gSz0pW_Ghr77fa4CuYy-vSW4.roa (raw, json)
Hash identifier: L7G7QRYimpd3/ixUrS2FUxHtEmAUdjgoBUgJ0ii4U/s=
Subject key identifier: A4:3D:20:4B:3D:29:5B:F1:A1:AF:BE:DF:6B:80:AE:63:2F:AF:49:6E
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4481
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/pD0gSz0pW_Ghr77fa4CuYy-vSW4.roa
Signing time: Fri 11 Mar 2022 00:36:57 +0000
ROA not before: Fri 11 Mar 2022 00:36:57 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17537 (0x4481)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 11 00:36:57 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=A43D204B3D295BF1A1AFBEDF6B80AE632FAF496E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ee:02:45:e7:8a:41:85:f9:d5:3c:59:d0:78:
0b:9a:6a:64:b4:6e:36:20:fc:96:0a:95:bf:2d:b8:
1a:f1:6e:6d:82:26:c7:dd:28:88:77:b1:b4:40:93:
21:39:14:56:bd:c8:1d:3b:3b:78:a9:db:d6:5e:4c:
dc:0a:85:12:00:e8:52:01:8b:44:c3:19:d2:fd:30:
59:74:68:39:f6:da:1a:f4:a6:0e:ed:b7:a9:6b:72:
c9:e1:f4:b1:3a:12:0c:ce:51:ce:15:67:47:d7:e0:
fa:a9:51:8e:15:36:9b:d9:20:16:51:7c:df:eb:3c:
8d:dd:a4:17:6d:35:fa:9d:9a:47:17:ae:df:95:ff:
9e:5e:4d:ba:b7:b6:a8:31:01:f1:b8:f7:7e:bf:59:
46:2a:51:4a:e2:c3:d2:15:da:e4:55:30:d3:a9:f4:
47:66:ca:52:ce:51:60:1e:05:e4:16:85:7c:d7:3f:
39:f7:ca:95:1d:bf:57:09:57:fb:9e:2d:1c:a6:9e:
03:0c:da:21:a9:d4:53:98:03:1c:63:ac:00:89:96:
8d:d7:7b:51:9f:7d:d0:c3:b3:40:e1:99:de:3d:59:
e3:58:eb:6d:b9:5c:cd:c2:98:6c:4d:91:6c:30:0c:
40:24:05:9e:9b:b4:be:d2:a6:7f:bb:b8:3e:11:c0:
f6:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:3D:20:4B:3D:29:5B:F1:A1:AF:BE:DF:6B:80:AE:63:2F:AF:49:6E
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/pD0gSz0pW_Ghr77fa4CuYy-vSW4.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
40:f5:b5:39:74:3a:38:cc:38:6c:48:62:72:92:eb:db:49:3a:
fe:a3:26:93:cf:5a:51:06:7a:34:47:7f:b9:a8:c1:2a:74:fd:
95:29:3d:17:8f:ca:8b:4f:b3:49:5a:c2:2f:70:c3:a6:56:51:
c3:88:ac:75:0d:96:14:c3:72:68:eb:e8:2d:58:cd:b9:29:75:
03:4f:dc:7e:ea:06:0e:d3:c5:76:d1:a4:f7:a0:7f:05:d1:8d:
e6:29:52:8f:5d:84:40:95:43:4a:41:42:b3:39:70:7f:4d:8f:
36:e6:b1:19:81:fe:f7:50:b6:6c:fe:d9:e9:5f:56:53:d8:57:
26:6a:90:a1:71:bd:ee:4f:13:fb:e0:4d:00:47:87:8e:9f:0b:
80:0a:5a:1e:7f:7c:7e:bb:f3:d6:8d:62:2b:be:f5:08:54:08:
b5:19:57:9f:a5:a0:8f:af:46:a6:56:1b:88:17:33:0d:c4:60:
5f:fc:89:ee:17:ae:40:47:9a:70:e0:8e:19:13:4b:3d:5f:f0:
1c:b7:57:14:95:7c:4a:b8:e9:ce:de:76:03:96:7d:f6:62:58:
ca:44:60:c8:61:9c:54:5b:2e:de:b1:d8:49:09:11:f5:ee:73:
95:8b:d2:d4:27:4f:5a:7c:52:4a:32:41:42:49:89:2a:e1:08:
8a:5c:16:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org