Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343030373a3a2f34382d3438203d3e203233393437.roa
File: 323430303a646330303a343030373a3a2f34382d3438203d3e203233393437.roa (raw, json)
Hash identifier: VVSZGdQTJKOmgs1GNB3qcOW0Ha0fwr63xV7IudhkQ78=
Subject key identifier: 39:C2:19:13:F7:70:7B:78:3A:9C:3F:D2:DE:3C:9A:51:A0:69:96:81
Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Certificate serial: 49AA59D9938EDB89945BEA7EDC16A56C118CB90A
Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343030373a3a2f34382d3438203d3e203233393437.roa
Signing time: Thu 31 Mar 2022 01:13:46 +0000
ROA not before: Thu 31 Mar 2022 01:08:46 +0000
ROA not after: Thu 30 Mar 2023 01:13:46 +0000
asID: 23947
IP address blocks: 2400:dc00:4007::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:aa:59:d9:93:8e:db:89:94:5b:ea:7e:dc:16:a5:6c:11:8c:b9:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Validity
Not Before: Mar 31 01:08:46 2022 GMT
Not After : Mar 30 01:13:46 2023 GMT
Subject: CN=39C21913F7707B783A9C3FD2DE3C9A51A0699681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b0:1a:d3:31:42:46:8a:f6:96:31:04:2f:1e:
58:92:e4:81:a1:48:0e:50:dc:89:99:42:14:cf:af:
ee:23:07:d8:44:07:b5:f3:3c:58:a7:7a:fa:20:20:
4b:61:54:68:75:23:73:2b:4c:cf:8f:71:42:06:85:
fb:b0:0e:d2:24:00:ca:f6:6c:0c:55:cb:bd:ab:8f:
cb:78:51:ef:21:7c:9c:26:1d:bf:cd:3f:06:0b:15:
11:0f:12:d7:be:06:40:c9:7e:9e:3b:6a:0e:9f:a0:
a7:93:e6:24:13:d2:cf:85:57:82:e2:07:64:8d:a5:
42:57:7d:b0:7a:b1:ee:6f:70:c1:99:43:8d:29:60:
5f:cd:e7:3f:d4:42:08:c6:78:e3:68:eb:ac:9a:32:
70:81:10:d5:f0:58:6c:59:a2:1f:90:33:fd:82:01:
31:37:d8:d1:37:57:10:e7:80:4d:55:08:39:4a:c2:
ca:34:bd:43:df:2f:99:ed:4e:dd:04:5c:01:e4:57:
be:92:cc:5a:09:d8:1b:86:29:43:d9:ca:e0:36:9a:
f9:ab:58:e4:3a:63:b3:d3:0a:ed:f2:0c:1e:93:53:
0c:21:d0:b0:c9:d1:bf:f3:20:ac:17:5e:9a:7c:92:
72:95:8e:f3:08:48:18:95:6c:fa:34:be:82:d5:29:
5b:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C2:19:13:F7:70:7B:78:3A:9C:3F:D2:DE:3C:9A:51:A0:69:96:81
X509v3 Authority Key Identifier:
keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343030373a3a2f34382d3438203d3e203233393437.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:dc00:4007::/48
Signature Algorithm: sha256WithRSAEncryption
35:c2:d0:7b:eb:d8:d3:2c:9c:62:a5:1c:4c:51:cb:8e:a7:d0:
75:96:86:52:ef:b0:b2:eb:a2:51:29:6f:ca:9a:9c:fb:40:a1:
10:38:0f:e2:d3:5d:58:e0:4d:b0:2d:3e:6c:f5:f5:a1:2f:c1:
54:c9:7a:81:f1:85:26:15:23:ed:69:fc:ba:20:c9:c5:76:8d:
31:61:68:52:9e:92:4f:15:c2:32:7e:c1:5c:61:b3:7b:0a:c0:
b5:1e:4b:85:5f:2f:3e:b3:ca:40:ae:30:59:21:cc:9d:11:f4:
43:14:85:4e:c5:80:5d:8c:2a:1f:e2:1a:31:0a:1f:56:87:dd:
e7:26:39:e2:70:7e:57:f7:8b:69:7b:b4:cc:9e:12:68:0e:e8:
da:45:dd:f6:83:10:a2:0c:df:a3:ad:63:cd:40:32:0c:fb:bd:
70:ce:3a:cf:e5:52:ad:67:62:e2:cc:a6:ed:87:26:46:2c:2d:
51:70:cd:6f:19:8f:7e:8e:44:9d:be:4a:d4:5b:8f:e9:9f:c8:
7e:8f:6b:8d:02:aa:63:1b:84:a0:cb:ec:76:b2:10:8d:46:ce:
2e:ef:6b:fd:19:93:27:e7:0f:7e:7f:f4:90:29:13:78:7c:d5:
05:28:ed:1a:88:31:8c:6c:a9:32:1d:9a:20:ff:02:89:49:4b:
7e:61:e1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org