Route Origin Authorization
$ rpki-client -vvf ca.rg.net/rpki/RGnet-OU/ovsCA/vNPj6JNSKlEULEisSLuPhQRSn5Q.roa
File: vNPj6JNSKlEULEisSLuPhQRSn5Q.roa (raw, json)
Hash identifier: bGSaJS+tWnCgP0J4FJF/G6yq3nqGkq5bI4E0RbW1M+Q=
Subject key identifier: BC:D3:E3:E8:93:52:2A:51:14:2C:48:AC:48:BB:8F:85:04:52:9F:94
Certificate issuer: /CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Certificate serial: 4926
Authority key identifier: 58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
Authority info access: rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
Subject info access: rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/vNPj6JNSKlEULEisSLuPhQRSn5Q.roa
Signing time: Thu 02 Jun 2022 00:30:14 +0000
ROA not before: Thu 02 Jun 2022 00:30:14 +0000
ROA not after: Sat 01 Apr 2023 22:21:14 +0000
asID: 47065
IP address blocks: 147.28.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18726 (0x4926)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58C7F79267AF74BA7D2FCC2562652C35B5E13EB1
Validity
Not Before: Jun 2 00:30:14 2022 GMT
Not After : Apr 1 22:21:14 2023 GMT
Subject: CN=BCD3E3E893522A51142C48AC48BB8F8504529F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:70:4b:46:53:5f:64:4a:6b:cd:17:67:a2:70:
cc:a8:d8:c5:95:23:10:66:97:4d:23:16:55:11:3a:
69:2b:a4:ef:a3:4f:e6:e1:0e:0a:3d:60:72:f5:ac:
31:93:68:aa:5f:4e:82:f0:95:b2:99:58:e7:5c:ec:
47:d6:54:48:2f:6c:01:e8:58:7b:eb:33:78:60:5d:
97:9f:b4:50:6f:da:2a:33:54:a7:31:3c:9b:00:fb:
6f:f1:96:89:d7:a4:1c:5d:11:63:a2:1c:1b:b8:e3:
3f:b8:8c:6e:74:33:b9:80:70:c3:67:35:00:3d:d1:
76:e6:06:ca:20:e5:c2:40:a4:aa:0f:c5:3e:58:10:
f7:59:dd:85:61:22:16:82:4a:ac:c9:02:6e:f6:b7:
6b:c2:e1:31:36:e1:d6:b4:b3:b9:74:72:53:71:58:
1a:c6:c5:69:61:83:0e:17:10:51:44:8d:c9:6e:ff:
64:b2:ba:e3:be:16:f1:aa:ab:3d:d0:eb:4a:1d:92:
22:64:b9:44:a9:3e:6d:0d:4a:4c:11:b0:fa:47:fe:
33:32:3e:53:0e:be:74:15:ca:f5:50:30:a0:75:56:
55:8a:53:61:ac:0f:06:62:82:88:c7:4d:7e:29:52:
c4:ad:a1:16:e0:92:fb:b2:21:4e:38:cb:8e:20:35:
ea:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D3:E3:E8:93:52:2A:51:14:2C:48:AC:48:BB:8F:85:04:52:9F:94
X509v3 Authority Key Identifier:
keyid:58:C7:F7:92:67:AF:74:BA:7D:2F:CC:25:62:65:2C:35:B5:E1:3E:B1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/WMf3kmevdLp9L8wlYmUsNbXhPrE.crl
Authority Information Access:
CA Issuers - URI:rsync://ca.rg.net/rpki/RGnet-OU/WMf3kmevdLp9L8wlYmUsNbXhPrE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://ca.rg.net/rpki/RGnet-OU/ovsCA/vNPj6JNSKlEULEisSLuPhQRSn5Q.roa
RPKI Notify - URI:https://ca.rg.net/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
147.28.11.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8f:41:72:e4:f6:7e:7c:2b:44:54:a2:45:f7:b8:ad:31:ae:
5a:cb:5a:27:84:cc:69:ef:f0:78:88:65:4c:f7:df:20:23:19:
47:24:3a:f4:c9:c6:4d:89:be:3c:2f:09:04:26:2a:ce:d0:ea:
6e:9f:e5:be:eb:a7:a3:e4:12:69:57:ca:f5:7a:34:23:80:2f:
2b:9f:9a:c8:89:67:f1:bf:79:58:c2:bc:7a:ad:7a:17:3c:41:
8a:86:64:2f:0a:cf:72:52:55:ba:07:df:14:49:c2:fb:b3:b1:
b5:b3:3f:08:19:9f:ea:ef:fe:7b:60:b2:7b:be:4e:af:a3:9b:
65:8a:42:87:29:ad:a6:8d:8b:65:1c:2a:80:82:19:2e:9b:11:
3b:39:6d:44:d0:b8:f5:92:65:31:69:9f:eb:80:90:e5:4a:b3:
1e:d1:3a:c6:76:cc:94:5b:86:ba:a7:2b:e4:e7:8d:f5:3b:78:
61:ad:56:91:d9:ba:3c:12:5b:88:4c:22:61:d6:e7:82:9d:e2:
15:bb:76:7c:83:dc:c2:15:0a:fd:00:a1:4b:f9:72:cf:b8:6e:
0d:b7:04:54:c1:f0:a4:39:7f:52:53:10:6e:57:a6:7f:b2:0c:
05:4b:3b:6d:da:1c:f7:4f:1a:bf:7e:d7:86:13:97:a4:1f:a6:
63:36:32:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:52 2023 by rpki-client on console-ams.rpki-client.org