Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/uU258vZnd1DFbtP1uSRA4r3NYxE.roa
File: uU258vZnd1DFbtP1uSRA4r3NYxE.roa (raw, json)
Hash identifier: /C5PZTq2o1Ds1UjDIY2D4NHqXdfQwgyzgRYMHf4x+bg=
Subject key identifier: B9:4D:B9:F2:F6:67:77:50:C5:6E:D3:F5:B9:24:40:E2:BD:CD:63:11
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 47C5
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/uU258vZnd1DFbtP1uSRA4r3NYxE.roa
Signing time: Tue 10 May 2022 00:30:08 +0000
ROA not before: Tue 10 May 2022 00:30:08 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18373 (0x47c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: May 10 00:30:08 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=B94DB9F2F6677750C56ED3F5B92440E2BDCD6311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0a:0d:ca:0e:28:07:36:50:50:8c:c2:44:25:
23:c1:a7:f5:f7:35:77:32:08:c0:08:7d:08:9d:1c:
8d:1a:97:27:ae:da:85:2a:5a:27:b0:9c:ca:de:33:
5b:f8:8f:c8:41:fc:9d:5a:a0:18:f5:fb:88:39:7a:
cc:2c:64:2e:f0:6d:d2:07:cb:ba:48:8a:8e:7b:60:
fb:56:ae:dd:40:84:bd:d0:5b:a7:e9:47:62:76:e9:
b7:b6:1b:28:d2:8b:fc:1d:92:e3:8e:c0:d4:08:9d:
5f:8d:1d:a7:31:64:17:43:39:2d:fa:f3:6b:41:f4:
2a:a7:03:82:09:82:43:95:e8:c9:32:c6:08:24:fa:
0c:30:04:e3:b9:15:34:d9:7b:73:3e:65:42:58:90:
db:62:85:ab:70:4e:71:33:6d:98:ff:91:6b:96:56:
15:ce:82:dc:da:be:1a:92:82:cb:e0:2e:71:09:f1:
55:78:91:03:bd:c5:86:ea:ca:27:3d:27:35:47:39:
e0:2f:ce:ee:94:2c:c2:dc:61:0d:da:9c:4c:ed:57:
c3:52:d4:b2:f4:7d:2f:1c:f0:26:60:47:cb:43:89:
55:66:d6:03:57:47:68:0c:40:1a:30:01:1b:07:e1:
9c:bf:16:2f:16:d3:96:1c:f5:73:0c:a2:4c:0b:0f:
87:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:4D:B9:F2:F6:67:77:50:C5:6E:D3:F5:B9:24:40:E2:BD:CD:63:11
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/uU258vZnd1DFbtP1uSRA4r3NYxE.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
90:f0:27:db:eb:9b:9f:31:4c:e2:ac:01:76:db:5f:e5:9f:4b:
41:76:95:76:2b:a1:9d:8d:73:c2:c5:26:84:38:29:02:4f:e4:
ee:75:f6:59:2b:37:af:f9:81:c9:ed:38:61:5b:70:d5:f4:de:
6d:4e:4f:c6:d0:eb:fe:30:e3:79:63:23:d0:2f:69:1e:da:bd:
d7:e1:89:78:81:cf:bc:fc:e0:c3:5e:1f:97:7e:e3:63:2b:ee:
da:3e:02:f1:23:9d:61:f0:52:1d:b0:a9:d6:75:2d:42:a3:31:
5d:54:e4:ad:69:d9:eb:cb:10:23:41:12:b1:db:d9:98:51:0c:
0a:14:83:e3:78:13:a4:7f:ec:c9:6c:27:fb:2b:36:a0:14:4f:
7c:25:a9:cc:90:69:4d:d7:a6:64:2a:5d:42:ee:f0:9a:60:f8:
2b:30:4c:cf:fd:ad:6f:3d:ce:38:84:5d:46:7b:41:83:e4:f4:
04:e5:97:4c:22:6f:fc:b1:2e:46:83:81:1a:a4:45:5a:81:f3:
ce:1d:b0:6a:03:b5:14:70:b4:2e:a7:2b:a3:b6:fb:4c:e5:51:
4f:02:91:96:dd:e7:35:3b:1a:50:a7:58:f6:ef:cd:8f:93:83:
8c:a6:cf:0d:9c:04:2d:72:4d:0b:d5:a1:76:05:68:44:a0:d4:
d5:31:e5:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org