Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343130323a3a2f34382d3438203d3e20313331313131.roa
File: 323430303a646330303a343130323a3a2f34382d3438203d3e20313331313131.roa (raw, json)
Hash identifier: SBy0DLlgvwN6bI5WLT6ekw5wt9F5S3di4p6QpVGddPo=
Subject key identifier: D8:58:97:C6:0D:5D:7E:65:DB:2A:71:DA:EF:E8:BC:47:D5:38:5E:8A
Certificate issuer: /CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Certificate serial: 4B28AF5DEBA2F6A0081DF737D15DF2D2D48EFE07
Authority key identifier: C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343130323a3a2f34382d3438203d3e20313331313131.roa
Signing time: Wed 09 Feb 2022 07:45:40 +0000
ROA not before: Wed 09 Feb 2022 07:40:40 +0000
ROA not after: Thu 09 Feb 2023 07:45:40 +0000
asID: 131111
IP address blocks: 2400:dc00:4102::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:28:af:5d:eb:a2:f6:a0:08:1d:f7:37:d1:5d:f2:d2:d4:8e:fe:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C1AF8C999E9D06DADEBC387D78B305AB8716DC2F
Validity
Not Before: Feb 9 07:40:40 2022 GMT
Not After : Feb 9 07:45:40 2023 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:59:6b:21:8c:b4:a0:d9:86:73:ca:f8:88:c2:
7e:40:45:34:df:84:5f:1e:72:e4:9c:b7:fe:4e:80:
fb:ea:0a:cb:25:d3:d2:a7:97:73:e8:74:bf:d1:68:
33:da:9d:18:1a:05:4a:52:b5:0f:67:6f:27:10:91:
75:9d:f2:fb:7d:c1:db:2f:2b:73:d1:ea:80:da:69:
e3:68:12:1e:1e:64:5b:ca:29:41:fe:be:01:de:e0:
68:64:55:62:fa:bf:a9:69:68:41:18:fc:52:b8:04:
08:f3:62:73:26:15:ea:e0:31:70:95:b7:85:a6:63:
ae:55:39:26:2b:85:1a:0d:d4:06:bf:11:54:1d:19:
b2:12:96:2c:71:38:c9:30:a5:26:4b:c2:7e:c5:86:
80:42:33:fa:42:1d:23:bd:67:96:04:9c:2b:9c:c0:
3e:02:8e:e7:a2:de:89:84:af:80:90:7a:c9:0a:8a:
51:06:f8:b3:f3:c6:b7:7b:8f:b9:f6:8f:b7:30:64:
05:e1:d8:a6:b6:3b:68:24:fd:8c:5f:c4:3e:00:e1:
f4:a1:c6:a9:cd:c4:96:ff:eb:b0:98:f8:7b:3e:3a:
80:c9:f7:74:64:05:e2:9e:c7:96:f8:e8:8b:bf:61:
76:e7:55:8d:7b:b7:e4:6c:ef:76:5e:a9:6d:1e:fb:
d8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:58:97:C6:0D:5D:7E:65:DB:2A:71:DA:EF:E8:BC:47:D5:38:5E:8A
X509v3 Authority Key Identifier:
keyid:C1:AF:8C:99:9E:9D:06:DA:DE:BC:38:7D:78:B3:05:AB:87:16:DC:2F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C1AF8C999E9D06DADEBC387D78B305AB8716DC2F.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/19205e7c-a881-4873-9188-e521b6af529c/0/323430303a646330303a343130323a3a2f34382d3438203d3e20313331313131.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:dc00:4102::/48
Signature Algorithm: sha256WithRSAEncryption
46:f4:bf:24:61:7d:a0:d7:1d:6f:69:ac:47:7e:24:3c:34:8e:
ae:81:94:3f:e1:4e:74:c3:a3:f7:4a:2d:9a:0f:05:ab:8a:ef:
c9:b0:3e:74:0a:7b:27:37:3c:fb:c2:7a:36:a5:e7:7b:db:18:
57:95:8e:b5:57:8b:56:ff:6f:61:f5:16:19:70:92:e2:8f:03:
1d:a9:5b:7d:96:30:04:71:05:64:8f:41:17:39:f7:34:50:e1:
e3:d9:e6:78:59:d0:0c:d7:4f:b6:30:38:7c:5e:3d:e6:e0:b2:
19:c5:57:7e:94:0c:0e:27:bb:d7:ef:e9:63:a2:70:f2:9e:9d:
07:01:1b:32:d3:b3:d5:e0:3d:5b:07:f1:07:ed:d7:73:e7:36:
9f:ea:3f:f7:a1:3b:ba:c0:93:7c:50:d7:66:d5:ab:bb:f9:03:
65:45:5f:42:e2:9c:a3:6a:18:ea:16:05:f4:27:55:28:f7:6b:
a9:67:9d:43:94:e1:24:29:19:80:da:95:0f:5c:b0:2b:9c:8a:
3d:7e:a8:2a:a9:aa:ce:05:76:a9:6e:5b:b4:ed:bd:a3:4f:b1:
7e:44:6e:2f:c9:2b:1e:27:e6:85:3e:eb:70:cf:1d:67:30:56:
0f:87:41:47:2a:9a:90:c3:a6:5a:10:07:2d:df:68:f9:78:df:
77:4c:51:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:01 2024 by rpki-client on console-fra.rpki-client.org