Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343130303a3a2f34382d3438203d3e20313331313131.roa
File: 323430303a646330303a343130303a3a2f34382d3438203d3e20313331313131.roa (raw, json)
Hash identifier: sLOHaWem0bgt+51hblLr1KvgA/v6wX//yoOppo9/sy0=
Subject key identifier: 09:4B:81:B1:C7:FD:C3:3D:B4:96:BD:1D:FB:3D:B1:03:6A:01:6D:3C
Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Certificate serial: 2A16F29FC35BA4DAA1F617E82C31134A6C98E7C4
Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343130303a3a2f34382d3438203d3e20313331313131.roa
Signing time: Sat 25 Sep 2021 22:02:45 +0000
ROA not before: Sat 25 Sep 2021 21:57:45 +0000
ROA not after: Sun 25 Sep 2022 22:02:45 +0000
asID: 131111
IP address blocks: 2400:dc00:4100::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2a:16:f2:9f:c3:5b:a4:da:a1:f6:17:e8:2c:31:13:4a:6c:98:e7:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Validity
Not Before: Sep 25 21:57:45 2021 GMT
Not After : Sep 25 22:02:45 2022 GMT
Subject: CN=3082010A0282010100D40682FF46744AF533DBCF70E8244424243B62366567C050FD87AA2020492941E4AAA19C55C34BF1E8C279FFA64B907F60F34EEC9B1F669E807C9C7D2B037D25E9889CF08C679FC76EC3838D5B0CFA6AD5CED98C5F1A6E7A9DC0F7F6B043BE67B4A5A852439B1EC47A3FC34D96C0DC65C15D7C1A236564256F742B198754A8F02FBF04FFB3D13B39C83F7A02B0284448A0F5C27BEFF0D956D814F09806F2EBE184A03EE677427C012A80B92AEF96A64D4958BB5CD1B2FD1232E0A26EE18199548C33E1F13F1877F390EC253AE0A2EE8AE52FAB98ADA788C1B62F8AA7A15BB7997C617103A1D5ED58AD503219958583A0464A5A3558DA8F3E1AB080BB566C02490203010001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:06:82:ff:46:74:4a:f5:33:db:cf:70:e8:24:
44:24:24:3b:62:36:65:67:c0:50:fd:87:aa:20:20:
49:29:41:e4:aa:a1:9c:55:c3:4b:f1:e8:c2:79:ff:
a6:4b:90:7f:60:f3:4e:ec:9b:1f:66:9e:80:7c:9c:
7d:2b:03:7d:25:e9:88:9c:f0:8c:67:9f:c7:6e:c3:
83:8d:5b:0c:fa:6a:d5:ce:d9:8c:5f:1a:6e:7a:9d:
c0:f7:f6:b0:43:be:67:b4:a5:a8:52:43:9b:1e:c4:
7a:3f:c3:4d:96:c0:dc:65:c1:5d:7c:1a:23:65:64:
25:6f:74:2b:19:87:54:a8:f0:2f:bf:04:ff:b3:d1:
3b:39:c8:3f:7a:02:b0:28:44:48:a0:f5:c2:7b:ef:
f0:d9:56:d8:14:f0:98:06:f2:eb:e1:84:a0:3e:e6:
77:42:7c:01:2a:80:b9:2a:ef:96:a6:4d:49:58:bb:
5c:d1:b2:fd:12:32:e0:a2:6e:e1:81:99:54:8c:33:
e1:f1:3f:18:77:f3:90:ec:25:3a:e0:a2:ee:8a:e5:
2f:ab:98:ad:a7:88:c1:b6:2f:8a:a7:a1:5b:b7:99:
7c:61:71:03:a1:d5:ed:58:ad:50:32:19:95:85:83:
a0:46:4a:5a:35:58:da:8f:3e:1a:b0:80:bb:56:6c:
02:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:4B:81:B1:C7:FD:C3:3D:B4:96:BD:1D:FB:3D:B1:03:6A:01:6D:3C
X509v3 Authority Key Identifier:
keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343130303a3a2f34382d3438203d3e20313331313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:dc00:4100::/48
Signature Algorithm: sha256WithRSAEncryption
b9:45:f5:23:a0:ab:1b:3f:40:97:3c:b7:ae:e5:22:83:ea:a7:
54:05:4e:0f:d6:97:86:02:02:db:2a:5a:67:33:46:ed:30:3e:
5b:9c:a2:85:f0:15:55:e3:a5:5e:0a:29:87:a2:d9:06:d4:42:
8e:10:87:1d:1e:66:fb:8a:c6:c8:f9:41:84:c4:1d:e6:f8:60:
aa:96:f6:d3:24:75:be:f6:5b:b1:1c:9b:df:1b:95:45:1e:f6:
63:e0:fc:a1:67:da:5c:8c:d2:7a:50:22:55:e5:bd:7c:95:0a:
f2:36:0c:e0:44:8f:81:dd:de:b0:7e:57:b2:92:2c:0e:6c:68:
78:11:9c:6e:15:64:84:a8:74:98:bd:36:02:75:9c:98:95:ef:
a9:7a:05:ea:80:1e:b5:8e:77:b1:0e:23:34:c7:fe:28:50:f2:
b9:4f:a7:48:8a:65:c2:cc:5c:10:1e:e7:05:57:58:63:6f:5e:
c0:cc:77:5c:f4:18:10:f1:8c:46:91:2b:f0:a1:0c:6f:19:f1:
2b:87:a2:7d:ae:98:08:e6:1f:7a:94:ef:01:04:f4:d4:92:db:
be:66:ad:00:4f:08:b1:15:b4:a4:3d:1b:4f:4f:44:08:c8:a9:
c6:06:17:38:28:05:f0:8b:66:1a:b3:fa:f4:9d:87:f9:5a:e1:
39:16:0f:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:43 2023 by rpki-client on console-fra.rpki-client.org