Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1ca9435-7224-47a8-951b-c1b42eb0e2f7/0/323030313a6466353a653738303a3a2f34382d3438203d3e20313431363432.roa
File: 323030313a6466353a653738303a3a2f34382d3438203d3e20313431363432.roa (raw, json)
Hash identifier: 9US59g09aSWSMRpp4sKG5FwO3IM+0wyR3wJ1W3mNYIY=
Subject key identifier: 07:9F:F8:72:59:94:5D:4B:D0:15:D4:99:9C:A4:63:0B:84:DC:CC:7C
Certificate issuer: /CN=316B0D7815A87F5AA07EC9E0D8FC859AC1A76794
Certificate serial: 475F4D468560D7CD1E3E8FB40D4C53600A189192
Authority key identifier: 31:6B:0D:78:15:A8:7F:5A:A0:7E:C9:E0:D8:FC:85:9A:C1:A7:67:94
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/316B0D7815A87F5AA07EC9E0D8FC859AC1A76794.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/a1ca9435-7224-47a8-951b-c1b42eb0e2f7/0/323030313a6466353a653738303a3a2f34382d3438203d3e20313431363432.roa
Signing time: Sun 26 Feb 2023 05:00:00 +0000
ROA not before: Sun 26 Feb 2023 04:55:00 +0000
ROA not after: Sun 25 Feb 2024 05:00:00 +0000
asID: 141642
IP address blocks: 2001:df5:e780::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:5f:4d:46:85:60:d7:cd:1e:3e:8f:b4:0d:4c:53:60:0a:18:91:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=316B0D7815A87F5AA07EC9E0D8FC859AC1A76794
Validity
Not Before: Feb 26 04:55:00 2023 GMT
Not After : Feb 25 05:00:00 2024 GMT
Subject: CN=079FF87259945D4BD015D4999CA4630B84DCCC7C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:60:16:03:cb:62:e7:8e:7e:ea:0a:ee:af:8f:
ed:d5:ed:34:7c:9c:43:37:52:54:3f:c3:2b:d2:d0:
ef:d8:a3:4a:cd:ee:55:a7:9d:81:da:f1:90:67:33:
6a:b6:4c:e5:7c:99:71:68:14:4f:6c:79:fc:53:83:
d1:c3:14:1a:fb:d5:d7:13:0c:e2:7c:e4:06:0f:2e:
61:3e:93:09:5b:19:56:f4:f9:2c:7e:17:cb:d4:8a:
db:d5:72:6c:2c:6d:96:93:c6:e3:d0:1e:2a:30:07:
2f:a7:e7:a1:c5:74:3f:ee:df:6b:d0:4f:24:f2:84:
b1:8b:8c:08:89:6e:b3:c3:b3:04:40:3a:42:fd:dd:
79:3a:31:3c:64:2a:26:34:51:a5:4a:9c:1a:4f:7a:
6e:52:9b:b8:32:bb:c5:32:32:be:6e:04:d5:60:d7:
aa:7a:2e:ea:5f:e6:db:e3:8e:e0:50:8d:cf:53:5d:
9c:05:53:97:af:9f:c7:39:f1:b6:29:ea:2a:ff:24:
66:6a:83:0f:4b:56:94:af:53:a0:cf:b6:a0:71:72:
b9:d0:db:de:13:de:1e:cf:18:b7:0d:c4:c0:25:3d:
c3:83:48:0c:e5:c3:59:b6:68:50:40:19:34:c0:3d:
a6:b9:2f:68:e7:da:83:cd:6c:df:d5:86:67:34:bf:
89:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9F:F8:72:59:94:5D:4B:D0:15:D4:99:9C:A4:63:0B:84:DC:CC:7C
X509v3 Authority Key Identifier:
keyid:31:6B:0D:78:15:A8:7F:5A:A0:7E:C9:E0:D8:FC:85:9A:C1:A7:67:94
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/a1ca9435-7224-47a8-951b-c1b42eb0e2f7/0/316B0D7815A87F5AA07EC9E0D8FC859AC1A76794.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/316B0D7815A87F5AA07EC9E0D8FC859AC1A76794.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1ca9435-7224-47a8-951b-c1b42eb0e2f7/0/323030313a6466353a653738303a3a2f34382d3438203d3e20313431363432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df5:e780::/48
Signature Algorithm: sha256WithRSAEncryption
ad:ad:dd:ce:26:8d:72:bb:56:68:2d:c1:49:b0:55:11:60:5a:
55:ff:f9:90:fd:c7:96:67:b7:dc:f7:8e:f3:52:c4:f0:d3:0f:
a7:11:68:42:be:05:b3:01:24:d1:82:3c:ec:da:07:43:11:7f:
cf:74:99:0d:d7:b2:21:36:a4:42:fd:ce:13:f1:64:4f:8b:38:
5a:72:a9:49:fa:53:a5:b4:91:5f:cc:79:62:e4:e8:f8:e1:2f:
d5:0e:bd:53:5d:d7:bc:d5:4b:7f:e3:1d:b6:7d:db:f9:4f:b9:
55:6c:0b:4b:11:43:20:9f:d4:21:52:92:7d:5c:3e:06:ce:50:
ea:0c:e8:71:73:85:88:03:d1:c1:6d:6a:f5:df:71:f7:2a:b8:
49:b6:84:b6:bc:70:66:b4:7f:90:de:4f:5d:d3:94:a9:bd:b1:
90:71:d5:09:ef:26:87:99:8e:98:ec:e1:b8:78:48:d8:28:a7:
eb:ed:09:45:0e:97:13:d0:1c:f8:ac:42:fe:36:8b:c3:31:7a:
54:2f:cf:b9:02:40:fc:f9:84:c8:6c:42:28:63:c1:08:81:36:
cd:10:f6:d1:9c:aa:f3:b2:93:59:ec:30:e5:61:e5:89:c2:e9:
5f:7d:04:f5:80:2b:e4:54:82:f1:e5:7e:9d:bb:2a:32:4f:c6:
be:03:1c:f2
-----BEGIN CERTIFICATE-----
MIIFMzCCBBugAwIBAgIUR19NRoVg180ePo+0DUxTYAoYkZIwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMzE2QjBENzgxNUE4N0Y1QUEwN0VDOUUwRDhGQzg1OUFD
MUE3Njc5NDAeFw0yMzAyMjYwNDU1MDBaFw0yNDAyMjUwNTAwMDBaMDMxMTAvBgNV
BAMTKDA3OUZGODcyNTk5NDVENEJEMDE1RDQ5OTlDQTQ2MzBCODREQ0NDN0MwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhYBYDy2Lnjn7qCu6vj+3V7TR8
nEM3UlQ/wyvS0O/Yo0rN7lWnnYHa8ZBnM2q2TOV8mXFoFE9sefxTg9HDFBr71dcT
DOJ85AYPLmE+kwlbGVb0+Sx+F8vUitvVcmwsbZaTxuPQHiowBy+n56HFdD/u32vQ
TyTyhLGLjAiJbrPDswRAOkL93Xk6MTxkKiY0UaVKnBpPem5Sm7gyu8UyMr5uBNVg
16p6Lupf5tvjjuBQjc9TXZwFU5evn8c58bYp6ir/JGZqgw9LVpSvU6DPtqBxcrnQ
294T3h7PGLcNxMAlPcODSAzlw1m2aFBAGTTAPaa5L2jn2oPNbN/Vhmc0v4klAgMB
AAGjggI9MIICOTAdBgNVHQ4EFgQUB5/4clmUXUvQFdSZnKRjC4TczHwwHwYDVR0j
BBgwFoAUMWsNeBWof1qgfsng2PyFmsGnZ5QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h
MWNhOTQzNS03MjI0LTQ3YTgtOTUxYi1jMWI0MmViMGUyZjcvMC8zMTZCMEQ3ODE1
QTg3RjVBQTA3RUM5RTBEOEZDODU5QUMxQTc2Nzk0LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvMzE2QjBENzgxNUE4N0Y1QUEwN0VDOUUwRDhGQzg1OUFDMUE3
Njc5NC5jZXIwgaoGCCsGAQUFBwELBIGdMIGaMIGXBggrBgEFBQcwC4aBinJzeW5j
Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ExY2E5NDM1LTcyMjQtNDdhOC05
NTFiLWMxYjQyZWIwZTJmNy8wLzMyMzAzMDMxM2E2NDY2MzUzYTY1MzczODMwM2Ez
YTJmMzQzODJkMzQzODIwM2QzZTIwMzEzNDMxMzYzNDMyLnJvYTAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEN
9eeAMA0GCSqGSIb3DQEBCwUAA4IBAQCtrd3OJo1yu1ZoLcFJsFURYFpV//mQ/ceW
Z7fc947zUsTw0w+nEWhCvgWzASTRgjzs2gdDEX/PdJkN17IhNqRC/c4T8WRPizha
cqlJ+lOltJFfzHli5Oj44S/VDr1TXde81Ut/4x22fdv5T7lVbAtLEUMgn9QhUpJ9
XD4GzlDqDOhxc4WIA9HBbWr133H3KrhJtoS2vHBmtH+Q3k9d05SpvbGQcdUJ7yaH
mY6Y7OG4eEjYKKfr7QlFDpcT0Bz4rEL+NovDMXpUL8+5AkD8+YTIbEIoY8EIgTbN
EPbRnKrzspNZ7DDlYeWJwulffQT1gCvkVILx5X6duyoyT8a+Axzy
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:49 2024 by rpki-client on console-ams.rpki-client.org