Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134342e302f32332d3233203d3e20313338313135.roa
File: 3138302e3133312e3134342e302f32332d3233203d3e20313338313135.roa (raw, json)
Hash identifier: /G5Hmtzg2rZAdbX42w8RIycq47Dy6MndqXAXm8fmtC8=
Subject key identifier: 8A:EA:02:9E:79:22:6A:18:5A:AB:29:6A:77:6C:F2:70:6B:A0:25:8A
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 354C9B37B7A4B33AB6926C752B2AC762B1973E0C
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134342e302f32332d3233203d3e20313338313135.roa
Signing time: Fri 18 Aug 2023 06:04:27 +0000
ROA not before: Fri 18 Aug 2023 05:59:27 +0000
ROA not after: Fri 16 Aug 2024 06:04:27 +0000
asID: 138115
IP address blocks: 180.131.144.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
35:4c:9b:37:b7:a4:b3:3a:b6:92:6c:75:2b:2a:c7:62:b1:97:3e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: Aug 18 05:59:27 2023 GMT
Not After : Aug 16 06:04:27 2024 GMT
Subject: CN=8AEA029E79226A185AAB296A776CF2706BA0258A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:57:9e:d7:d9:44:83:40:7e:97:88:56:20:7b:
06:7f:74:35:51:1c:f7:ae:50:c6:3f:73:b3:bb:d3:
26:f5:cf:24:e2:6d:3c:e3:4b:21:3e:c6:a1:c3:d6:
2d:65:3d:60:45:b2:f1:b0:61:09:3f:6a:01:7f:04:
80:82:e5:82:ba:d8:7a:23:16:4d:30:bf:b3:4f:66:
d0:c2:b2:37:15:c5:d6:e0:b9:ac:99:6b:d0:e7:4b:
bd:9b:26:02:fd:da:e9:1b:9e:2b:b2:c1:ee:4d:36:
c2:e7:1a:f2:78:bc:da:e7:65:ab:69:91:f9:f1:66:
1a:8a:73:97:9a:78:c3:a8:a7:c7:9d:2a:55:01:1f:
83:db:96:1f:96:7e:95:93:aa:a2:e7:62:49:ac:84:
03:31:bd:c7:f7:86:89:cc:cd:0c:01:f8:a2:03:27:
31:a6:33:58:32:28:61:2c:80:c3:a1:39:7f:08:cf:
45:df:7d:39:ae:71:81:62:0c:89:3a:4e:47:32:9a:
bc:c6:25:7c:73:ac:65:7d:db:11:75:9a:a6:a1:c3:
51:a0:36:db:98:95:de:08:0a:7b:fc:f1:33:1a:b5:
0d:3a:1d:e3:8a:7a:51:d6:b6:20:b7:e1:df:43:bf:
4c:e4:fd:2f:58:0f:51:1c:81:ba:67:5d:e5:e2:d1:
0e:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EA:02:9E:79:22:6A:18:5A:AB:29:6A:77:6C:F2:70:6B:A0:25:8A
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134342e302f32332d3233203d3e20313338313135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.131.144.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:ab:90:cc:e9:0d:6b:8a:0f:91:4d:79:9b:53:01:d8:f8:e0:
fe:6a:b7:31:8f:20:6d:d1:bc:b6:7e:04:f8:46:95:54:28:67:
0d:5f:4f:f7:e3:91:be:8c:b1:3c:36:22:0a:bd:2a:84:35:7c:
38:78:a2:86:e7:3a:26:5a:df:18:b7:8b:51:62:02:b2:e8:ff:
7f:36:9f:14:00:9e:ae:b2:a1:5e:8a:d8:98:bc:88:18:dd:6c:
25:e4:a3:09:9d:d7:1e:f3:ef:44:aa:5d:cc:12:8e:19:e8:d2:
69:15:0a:f0:1e:20:b1:ea:9d:90:8b:33:c0:36:4a:43:c7:a0:
d8:b8:1b:b5:5a:ef:68:88:46:b5:31:a7:8a:6f:64:9d:6c:0d:
35:d5:7b:33:b5:9a:e5:47:e7:d0:b5:00:3b:af:b8:1b:f3:a2:
df:10:20:7b:65:0f:86:88:71:88:83:8e:7a:ba:6f:bf:d5:ae:
4b:72:a3:8d:90:0d:54:e1:9d:8d:08:c8:63:9c:de:9a:86:7f:
20:a3:43:bf:cc:ee:d9:be:32:f3:1d:05:33:f6:65:76:ac:44:
df:8d:c4:76:02:df:b1:24:21:07:97:59:7c:1f:bd:71:c5:32:
c4:68:1c:e1:27:c1:b6:eb:87:1d:88:74:e9:bc:e4:c5:35:43:
6e:d4:7c:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org