Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/323030313a6466333a666530303a3a2f34382d3438203d3e20313335343732.roa
File: 323030313a6466333a666530303a3a2f34382d3438203d3e20313335343732.roa (raw, json)
Hash identifier: 1Ga9ujf4Hzu9Y+mCu2ZjISsa5Z1rJ75P0Su/BCM+uUw=
Subject key identifier: D3:45:D4:ED:05:3B:EE:84:E1:D7:62:1E:15:95:F5:34:E2:3E:49:B6
Certificate issuer: /CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854
Certificate serial: 613C51F696EDFAFBAABA5CE6BFE37D8B6EFC8E50
Authority key identifier: 59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/323030313a6466333a666530303a3a2f34382d3438203d3e20313335343732.roa
Signing time: Thu 15 Dec 2022 06:43:41 +0000
ROA not before: Thu 15 Dec 2022 06:38:41 +0000
ROA not after: Thu 14 Dec 2023 06:43:41 +0000
asID: 135472
IP address blocks: 2001:df3:fe00::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:3c:51:f6:96:ed:fa:fb:aa:ba:5c:e6:bf:e3:7d:8b:6e:fc:8e:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59B19DD1D646793F5F17D89C42AC2F6399FB1854
Validity
Not Before: Dec 15 06:38:41 2022 GMT
Not After : Dec 14 06:43:41 2023 GMT
Subject: CN=D345D4ED053BEE84E1D7621E1595F534E23E49B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e8:ba:bc:27:17:0b:cd:3e:fa:ae:12:50:de:
67:55:43:0c:94:4a:3f:95:e4:2e:9e:45:29:e5:7b:
a5:69:97:29:d5:56:2c:da:3b:8b:42:b1:b3:8d:e5:
1f:e4:84:6e:e8:90:56:9b:85:23:25:4a:6e:f0:df:
ce:c1:74:89:4f:0f:a3:63:f7:9e:e5:e7:c0:6b:3a:
ac:06:99:1f:64:df:2f:1f:56:3f:95:da:b5:5f:de:
be:02:32:64:a0:42:d9:e7:ec:99:3b:fe:3f:5a:d6:
42:35:96:b7:72:91:86:a7:71:44:f4:3c:ca:31:8a:
a9:b5:c8:2b:81:ec:96:fb:67:f0:b8:46:c1:cb:b8:
08:d5:85:9a:79:b9:27:54:2a:c8:9a:c6:82:43:02:
cc:66:4c:68:f4:0f:f6:6e:93:db:45:52:27:6c:88:
7d:44:5b:a4:99:8e:24:84:07:95:af:a5:ea:b2:f8:
97:df:ca:3e:e7:45:16:e1:e7:3d:b4:02:a4:f1:1d:
a9:d9:0a:d7:47:cb:ab:b0:53:6b:c4:16:30:59:38:
d1:1c:28:b3:0b:f5:0e:e0:6e:08:dd:b2:12:5f:1f:
30:4e:29:f4:4f:9a:f4:ae:a9:77:b1:98:c4:ee:20:
f6:c2:1f:6b:d0:b7:5d:d6:3e:5f:9f:67:f4:57:23:
28:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:45:D4:ED:05:3B:EE:84:E1:D7:62:1E:15:95:F5:34:E2:3E:49:B6
X509v3 Authority Key Identifier:
keyid:59:B1:9D:D1:D6:46:79:3F:5F:17:D8:9C:42:AC:2F:63:99:FB:18:54
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/59B19DD1D646793F5F17D89C42AC2F6399FB1854.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/59B19DD1D646793F5F17D89C42AC2F6399FB1854.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b048064-87de-4de7-b0bd-12fa0deb8e32/0/323030313a6466333a666530303a3a2f34382d3438203d3e20313335343732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:fe00::/48
Signature Algorithm: sha256WithRSAEncryption
d3:d2:d9:ae:64:1e:d9:04:9b:2b:74:12:a7:5c:ab:24:49:2a:
b5:bf:c1:ca:8a:ff:6b:d2:dd:bd:d9:11:13:86:3d:42:c5:15:
4e:38:a9:d1:48:14:a5:45:9e:59:dc:81:1e:a4:a1:21:50:16:
b2:b5:29:07:99:41:96:cb:10:16:89:17:3f:83:df:ac:49:8e:
97:8d:4e:17:09:e9:af:63:06:0c:e7:39:38:57:d5:75:18:a6:
80:54:e9:fb:8b:b2:e8:86:60:81:47:44:ed:4b:be:6f:2c:dc:
0f:61:67:2c:ff:ca:83:c8:7e:45:81:43:9c:b1:d4:29:36:42:
d9:66:06:39:67:54:52:dd:1d:14:48:dc:1f:79:56:66:3d:39:
61:2d:78:c1:de:26:50:d0:e3:22:5c:64:99:0a:f0:0a:d5:56:
b0:88:4a:6a:77:fd:af:e2:ef:0e:cd:37:69:0f:22:ee:b1:43:
57:5a:6b:cb:51:74:e8:1e:8a:99:c8:af:7a:16:30:ca:38:a3:
c6:f2:2b:fa:c8:74:b9:b6:fb:a3:76:1f:f8:d3:4f:69:7f:c0:
80:72:d9:64:59:e1:92:54:4a:cc:40:ac:45:52:86:6c:e3:da:
44:ea:38:e5:82:e5:7b:15:93:48:38:65:db:55:9a:ee:5f:38:
0d:da:dd:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-ams.rpki-client.org