Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a633030333a3a2f34382d3438203d3e20313331313131.roa
File: 323430303a646330303a633030333a3a2f34382d3438203d3e20313331313131.roa (raw, json)
Hash identifier: gMTINbswu5VTIH9Ki1eaxYSdCusUcelt/iz0smUuEKs=
Subject key identifier: 51:C0:2B:3D:3F:D1:47:6A:00:BB:06:FE:97:E4:52:A2:3B:06:21:A6
Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Certificate serial: 6A9A9D0DFF616B25DC3344979C00070DCAAA7678
Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a633030333a3a2f34382d3438203d3e20313331313131.roa
Signing time: Thu 03 Feb 2022 03:00:48 +0000
ROA not before: Thu 03 Feb 2022 02:55:48 +0000
ROA not after: Fri 03 Feb 2023 03:00:48 +0000
asID: 131111
IP address blocks: 2400:dc00:c003::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:9a:9d:0d:ff:61:6b:25:dc:33:44:97:9c:00:07:0d:ca:aa:76:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Validity
Not Before: Feb 3 02:55:48 2022 GMT
Not After : Feb 3 03:00:48 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:e1:1d:d3:1a:db:57:ab:70:00:1f:9d:62:6c:
7a:a1:e8:c8:34:3b:ce:9b:ab:95:97:d6:c0:fa:6e:
5f:21:7d:8b:c3:19:0f:36:df:e3:04:9e:b6:0d:ff:
23:c4:ca:0f:c7:58:34:61:ae:68:ae:46:6f:17:67:
29:7e:5a:74:22:39:69:0d:2b:df:ad:86:a6:b1:9f:
8f:76:da:aa:55:59:15:fa:10:09:be:7c:32:27:62:
7a:3a:bc:7d:a1:fb:ff:6b:32:4b:37:90:10:20:0c:
3a:86:98:61:2e:87:7a:8f:75:0f:a3:20:26:0c:da:
97:08:b5:bc:b4:46:28:33:47:09:39:16:c8:26:52:
bb:a8:1b:4d:9b:77:a3:b3:05:56:4d:d0:8d:43:be:
83:2f:ed:50:15:fc:04:30:7d:81:a2:e1:b0:4c:1a:
99:7f:0a:02:45:06:c2:f0:40:da:92:8e:93:ad:f5:
97:44:58:b1:59:ce:fc:5a:6c:df:57:7b:b8:f0:ce:
9c:80:71:88:d0:b6:5f:65:c6:93:c0:60:1c:74:5b:
b6:fb:f3:ae:e7:fb:ef:02:2f:2e:92:2f:e1:1f:a4:
2d:39:0e:64:5d:5b:6d:84:c0:1e:84:a5:56:e1:e2:
44:02:63:6b:97:25:f8:b6:3b:ed:f5:c5:6a:18:48:
49:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:C0:2B:3D:3F:D1:47:6A:00:BB:06:FE:97:E4:52:A2:3B:06:21:A6
X509v3 Authority Key Identifier:
keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a633030333a3a2f34382d3438203d3e20313331313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:dc00:c003::/48
Signature Algorithm: sha256WithRSAEncryption
44:d8:a9:a6:d8:4d:8e:82:4e:7f:17:30:62:36:4b:03:96:f1:
cd:09:35:24:81:17:c1:32:1e:5f:00:5a:b0:0b:e3:68:09:00:
f2:b9:3f:54:64:83:9d:bd:a1:6c:9c:81:a4:7c:94:75:71:51:
21:f5:d2:9f:f2:3b:94:e0:e6:32:ad:fa:1c:f6:97:e1:40:13:
c2:80:89:5c:fc:ea:5f:6f:48:62:a0:06:58:e7:c4:7f:bc:c8:
2d:51:91:99:21:1b:c0:25:af:d6:01:27:4f:4c:8a:23:66:18:
44:9f:83:f9:a9:35:b4:c4:00:8a:b5:a0:84:ae:90:13:2d:40:
76:4b:fe:62:4e:41:ce:47:d7:9d:2f:5c:6e:3d:2a:fc:2e:76:
04:c5:dc:48:09:89:c3:ef:8d:4d:df:ca:39:01:27:e0:cd:85:
a5:37:2d:43:62:a2:1c:04:d3:36:df:e6:a5:0e:48:8b:12:5d:
ab:28:6a:14:13:58:ad:e5:ea:b6:cc:a0:2f:00:b7:cb:09:bb:
da:54:64:70:b3:53:ac:96:c8:2c:bd:b9:5b:1d:9e:82:92:d7:
aa:a4:aa:9c:1a:4e:64:a7:7c:36:0d:7b:3e:53:2a:23:18:11:
8e:e1:bb:07:ac:98:87:47:c1:1f:4d:0e:66:06:a0:d1:0a:b1:
66:6a:a7:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:13:59 2023 by rpki-client on console-ams.rpki-client.org