Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134362e302f32332d3233203d3e20313338313135.roa
File: 3138302e3133312e3134362e302f32332d3233203d3e20313338313135.roa (raw, json)
Hash identifier: fcvW1uu6rlkhTkNjmiT2D2h4IDSNjS8oUs1BeFnTCgs=
Subject key identifier: 91:C0:AD:6D:1A:CB:C4:3D:DC:29:E4:B8:C4:A8:26:80:4D:CA:FE:0F
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 5DE8C20DA42FB837A71FD18FDD0D11F1A19A20FE
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134362e302f32332d3233203d3e20313338313135.roa
Signing time: Fri 18 Aug 2023 06:04:46 +0000
ROA not before: Fri 18 Aug 2023 05:59:46 +0000
ROA not after: Fri 16 Aug 2024 06:04:46 +0000
asID: 138115
IP address blocks: 180.131.146.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:e8:c2:0d:a4:2f:b8:37:a7:1f:d1:8f:dd:0d:11:f1:a1:9a:20:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: Aug 18 05:59:46 2023 GMT
Not After : Aug 16 06:04:46 2024 GMT
Subject: CN=91C0AD6D1ACBC43DDC29E4B8C4A826804DCAFE0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:27:e0:49:4c:21:d8:33:bb:17:c0:62:36:7f:
94:9b:f4:41:a6:29:c8:88:1f:46:0a:cc:3b:41:62:
37:c8:dc:e7:00:0f:5a:3d:af:a9:2d:b8:9b:01:69:
a3:7b:26:a4:ec:54:5f:3e:94:31:19:d5:10:77:3e:
16:5c:9f:3e:90:50:5f:6f:74:e2:41:f0:6d:7a:08:
94:56:db:b5:3c:ff:63:4b:61:1e:aa:f1:d9:da:33:
ac:78:07:9a:80:e1:1b:c1:99:91:2b:a9:e2:8c:46:
3f:33:19:b0:a4:50:62:02:46:09:40:bd:fa:34:6c:
92:92:dd:3e:c0:e3:cb:ef:8a:4a:6e:26:23:dc:21:
a9:a0:9a:4a:2c:8c:99:24:c7:e2:c1:28:34:f7:8e:
d8:e8:0a:5d:83:ce:f0:2a:dc:2d:75:16:a3:e3:9f:
0b:7e:46:71:44:d5:73:26:6d:45:1d:da:99:a5:30:
e4:28:a4:9e:4f:16:70:38:51:65:73:c2:ae:74:07:
de:4d:3e:2f:cb:97:b2:d5:08:c6:f6:8f:d8:8f:c4:
05:fb:03:6d:79:7a:64:36:8a:9c:19:4d:1d:36:42:
d2:b9:81:47:1f:fe:35:7e:0f:e7:68:e3:44:f7:2f:
0f:2e:79:c3:22:69:09:fa:f5:d1:38:a5:71:8a:d2:
82:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C0:AD:6D:1A:CB:C4:3D:DC:29:E4:B8:C4:A8:26:80:4D:CA:FE:0F
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134362e302f32332d3233203d3e20313338313135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.131.146.0/23
Signature Algorithm: sha256WithRSAEncryption
85:a0:66:cf:06:84:23:5f:71:2e:b9:12:7e:7b:fa:da:e5:59:
7c:b8:94:33:d8:17:5c:f3:d8:8c:25:4c:c2:ca:e4:d0:53:d8:
50:2e:a2:66:f6:37:fa:86:e0:ed:82:9a:a8:91:f8:8d:42:4d:
c9:36:7d:21:2a:31:4a:60:10:64:8f:46:63:29:ac:8a:16:50:
3b:f0:1e:b8:27:e8:2d:b4:74:17:86:9a:6b:81:31:fb:31:2f:
64:46:a9:4f:7b:6a:15:39:42:83:2a:38:e1:8d:c8:48:88:8a:
e4:d4:1b:a6:44:f9:80:78:16:db:59:58:96:6a:bb:de:e3:b0:
83:09:aa:f5:83:d6:06:77:78:c5:69:1c:c9:83:9b:06:ef:f1:
d2:58:3d:74:7b:74:48:58:fe:44:eb:1c:07:ee:41:a9:ea:61:
57:83:c1:60:c7:89:83:d0:61:e0:3c:63:d7:a2:e8:c6:af:55:
78:47:65:3a:ea:9d:cb:f6:a8:2c:5b:83:1b:a8:35:35:85:85:
7b:45:f9:66:4b:70:13:81:27:74:07:f9:cf:a6:2a:20:52:67:
c5:af:70:1d:3b:c2:76:fa:33:52:a9:51:ef:3a:e5:6a:a0:a8:
98:bb:ad:e0:b0:a2:a1:76:43:be:08:f5:c9:ee:76:68:d8:03:
d6:b7:dc:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:41 2024 by rpki-client on console-ams.rpki-client.org