Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/uara2lRhYYXqSRB06toR-jUW0QY.roa
File: uara2lRhYYXqSRB06toR-jUW0QY.roa (raw, json)
Hash identifier: SmlGMIfBf9Xv35m1e4F8/UwTfSlenEmR2OARt+HQwYA=
Subject key identifier: B9:AA:DA:DA:54:61:61:85:EA:49:10:74:EA:DA:11:FA:35:16:D1:06
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 442A
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/uara2lRhYYXqSRB06toR-jUW0QY.roa
Signing time: Sat 05 Mar 2022 00:30:08 +0000
ROA not before: Sat 05 Mar 2022 00:30:08 +0000
ROA not after: Sun 01 Jan 2023 01:01:02 +0000
asID: 51224
IP address blocks: 147.28.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17450 (0x442a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Mar 5 00:30:08 2022 GMT
Not After : Jan 1 01:01:02 2023 GMT
Subject: CN=B9AADADA54616185EA491074EADA11FA3516D106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a7:a0:cb:95:86:98:a3:96:14:8e:93:38:ad:
d7:86:9c:f3:70:fc:a4:11:3a:d7:62:7e:0a:c0:74:
23:a2:bd:72:d6:aa:c6:14:c2:83:da:01:2c:ff:35:
93:51:0f:1b:c8:04:f2:fc:8d:2a:ac:33:5d:3b:30:
83:2a:8c:57:f3:b6:81:07:38:07:1a:73:84:b5:12:
89:05:ec:3c:c3:d4:4b:3a:e4:6c:8c:7b:7d:52:2b:
43:9a:c1:53:75:dc:7f:ca:76:69:f8:b1:f7:8c:19:
8f:2a:8e:02:3e:54:3f:e3:d5:0e:f9:f5:44:98:85:
94:17:b7:58:12:b0:db:8a:1e:02:2b:98:d9:59:04:
43:c8:d0:f6:6b:9c:2f:80:de:34:a8:e5:41:9e:9c:
66:53:d5:4d:e7:84:5f:35:1d:fc:51:3c:8a:b1:08:
cb:78:78:79:df:1c:be:e0:4b:1e:8f:05:df:34:18:
e6:da:84:d0:bf:df:50:66:8a:9b:7d:6b:1b:5b:d3:
de:20:60:1d:3a:0e:53:fa:41:20:40:00:f6:18:b9:
27:21:05:ac:3e:58:67:49:f1:12:27:5b:77:31:d7:
37:37:ee:84:4a:67:bf:03:e3:2d:33:6b:ca:bb:a8:
be:4a:00:4c:d2:81:7b:63:8b:48:ef:ef:ec:50:f4:
7d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:AA:DA:DA:54:61:61:85:EA:49:10:74:EA:DA:11:FA:35:16:D1:06
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/uara2lRhYYXqSRB06toR-jUW0QY.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.9.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:ed:23:ca:6d:ce:2d:c3:73:71:65:9f:6c:84:d7:ec:c3:5b:
fb:4c:4b:c0:db:6f:a4:e5:51:be:f0:cb:9a:d1:d7:ce:b6:18:
0b:0b:7e:35:71:5d:3b:03:e2:99:1e:23:0e:53:90:b4:d9:b5:
43:18:1b:19:4e:5d:d5:84:de:d8:b9:c1:3a:eb:37:b9:48:bb:
52:55:f0:a2:49:08:63:ca:87:38:77:cd:bb:d0:4f:8e:74:16:
65:9b:43:57:02:83:d4:96:b3:29:41:e0:9f:de:08:75:97:c4:
7f:e1:e7:12:f2:b9:0d:88:0e:72:ab:da:33:28:9a:3a:28:d1:
66:54:6b:73:69:9e:3e:ed:17:8a:71:1a:41:8c:46:7f:1e:40:
82:ed:fb:07:8e:ce:15:82:6b:df:c2:cc:62:06:f4:f3:e6:38:
62:97:32:61:fc:65:9c:d0:02:1e:17:22:39:bb:8d:a6:74:cd:
73:60:62:9a:1f:88:7b:8d:f5:77:73:fd:48:54:82:82:8a:00:
08:5f:36:3f:a2:ab:e7:cf:ec:4f:b6:c2:c1:24:a1:2d:d9:ea:
1a:b9:cc:39:ec:fe:a1:94:3b:6b:a7:2c:a9:d8:31:6c:15:2a:
a7:1c:82:21:39:17:42:2d:c1:80:a2:9e:00:4a:bc:58:a8:03:
5f:07:6a:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org