Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134362e302f32342d3234203d3e20313338313135.roa
File: 3138302e3133312e3134362e302f32342d3234203d3e20313338313135.roa (raw, json)
Hash identifier: XQIV7F+7T7aeb19Nu7UN0/ps0NwKTRf+RJGig6cVyd8=
Subject key identifier: 7A:4E:31:6D:81:E8:87:61:2E:64:8B:4A:33:00:60:F5:20:9A:1B:24
Certificate issuer: /CN=B0928A45D014D8D5FAD50314E828086F12B15610
Certificate serial: 2C1F136BACB2BFDC6EC4C522CD564268C1BA1B6C
Authority key identifier: B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134362e302f32342d3234203d3e20313338313135.roa
Signing time: Thu 07 Sep 2023 08:22:59 +0000
ROA not before: Thu 07 Sep 2023 08:17:59 +0000
ROA not after: Thu 05 Sep 2024 08:22:59 +0000
asID: 138115
IP address blocks: 180.131.146.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2c:1f:13:6b:ac:b2:bf:dc:6e:c4:c5:22:cd:56:42:68:c1:ba:1b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B0928A45D014D8D5FAD50314E828086F12B15610
Validity
Not Before: Sep 7 08:17:59 2023 GMT
Not After : Sep 5 08:22:59 2024 GMT
Subject: CN=7A4E316D81E887612E648B4A330060F5209A1B24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:01:3e:62:c8:a8:80:25:86:47:fb:83:01:aa:
e8:29:ee:12:63:b8:29:56:d0:4a:72:ad:20:7c:7d:
b6:e1:92:f2:2a:9a:1d:a4:e4:b0:ea:fb:20:33:fe:
47:74:0b:fd:95:d4:a7:49:ab:6f:98:ff:3c:56:22:
9d:ae:41:e6:73:87:ec:ee:86:4c:c6:26:06:16:77:
98:e6:0a:3e:9f:ce:11:66:12:ec:72:e8:fc:d8:78:
84:03:42:27:dd:93:8f:2f:5c:cc:8e:ac:51:64:5b:
44:c8:53:7b:04:27:49:3b:d5:c8:27:94:03:a5:9d:
8f:ca:d1:e2:34:8f:31:54:1d:b0:54:a8:6a:bf:8d:
90:bd:b8:54:d2:0e:b2:79:ea:54:f3:a5:1a:4a:32:
60:e4:d1:90:74:26:52:ae:57:d4:69:f9:6c:1d:bd:
b2:7f:5e:9c:19:cc:f8:17:f8:10:d9:9f:41:6a:44:
0a:50:81:4e:ce:58:ae:b2:0c:27:c9:ce:a4:98:33:
90:10:c5:81:e2:48:3f:e4:bb:64:4d:b5:ea:b2:af:
e1:ec:3a:da:55:78:18:76:8d:d2:92:5b:90:3f:cc:
76:17:6d:6f:b1:f2:30:ac:b5:8f:ec:d9:6f:5b:c0:
2f:0c:14:cb:6d:cc:e6:13:fb:07:b1:bd:3e:53:7b:
83:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4E:31:6D:81:E8:87:61:2E:64:8B:4A:33:00:60:F5:20:9A:1B:24
X509v3 Authority Key Identifier:
keyid:B0:92:8A:45:D0:14:D8:D5:FA:D5:03:14:E8:28:08:6F:12:B1:56:10
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/B0928A45D014D8D5FAD50314E828086F12B15610.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B0928A45D014D8D5FAD50314E828086F12B15610.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7cd323be-837d-4244-846c-7d2393a9a009/0/3138302e3133312e3134362e302f32342d3234203d3e20313338313135.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.131.146.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:a4:95:a9:41:a4:a1:0f:33:70:2b:f3:21:91:cf:30:db:34:
ed:70:af:a4:6c:ec:4d:c7:1d:17:df:ea:f7:81:fb:fd:23:50:
e1:07:c8:d6:f8:5f:bd:cf:a3:fa:e9:dd:d4:fa:4f:fb:08:74:
9f:61:42:1a:ec:f6:45:c9:c5:96:9f:da:49:be:9a:6f:c5:5a:
80:6e:a6:44:29:eb:a5:0b:0e:e5:97:a4:87:65:c6:7a:42:64:
aa:4e:bf:68:f0:16:12:45:6f:94:3d:51:e3:fc:20:a5:25:b1:
4d:9d:00:2f:70:f3:79:9e:80:b2:1c:e1:cd:0b:cb:ca:8d:83:
e9:1b:f8:8d:8d:3c:cd:44:bf:cd:07:50:81:92:be:28:76:4b:
eb:e4:f4:72:3a:10:2d:ad:6b:09:5b:21:db:99:36:41:10:d9:
68:1a:e2:7a:34:35:e9:5a:58:cb:03:1b:8b:af:d9:d4:78:1e:
26:c9:c7:bc:a3:76:ad:08:74:6e:51:e3:e5:d1:fb:3d:78:2b:
bd:fa:af:0f:47:56:f4:db:45:4d:61:f4:9e:81:64:32:43:eb:
d8:6c:1c:e3:a9:67:38:3a:2b:9b:f1:5b:39:27:36:63:60:c5:
7d:d5:a1:f3:30:0e:a3:b9:4f:f6:b0:79:de:d1:4f:72:17:c7:
52:1b:69:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:07 2024 by rpki-client on console-fra.rpki-client.org