Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/323030313a6466323a6130303a3a2f34382d3438203d3e203338373630.roa
File: 323030313a6466323a6130303a3a2f34382d3438203d3e203338373630.roa (raw, json)
Hash identifier: ty3yisFPUGGMrkSP2Nqzn1G5JEWJe5X24yiOroGAbRc=
Subject key identifier: F6:EE:EB:DB:B7:F4:6D:70:2C:DD:A2:A2:44:16:16:A2:BF:4C:65:F5
Certificate issuer: /CN=B7260D30835B9D812F7044ECE96F4FB8F698379C
Certificate serial: 068664B60557DCE301A67C7A00BA6F04A38034D0
Authority key identifier: B7:26:0D:30:83:5B:9D:81:2F:70:44:EC:E9:6F:4F:B8:F6:98:37:9C
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/323030313a6466323a6130303a3a2f34382d3438203d3e203338373630.roa
Signing time: Tue 07 Sep 2021 07:28:32 +0000
ROA not before: Tue 07 Sep 2021 07:23:32 +0000
ROA not after: Wed 07 Sep 2022 07:28:32 +0000
asID: 38760
IP address blocks: 2001:df2:a00::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
06:86:64:b6:05:57:dc:e3:01:a6:7c:7a:00:ba:6f:04:a3:80:34:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B7260D30835B9D812F7044ECE96F4FB8F698379C
Validity
Not Before: Sep 7 07:23:32 2021 GMT
Not After : Sep 7 07:28:32 2022 GMT
Subject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
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:eb:b3:14:70:47:f1:89:1c:13:1c:89:74:b3:
b1:86:b9:94:cd:2f:9d:a4:77:9b:c8:cb:de:e5:68:
91:bf:5d:ee:9f:97:8a:9a:62:3a:8d:be:9a:a5:88:
50:6c:49:7a:ed:c7:39:5b:c1:98:cb:1e:17:4e:bf:
94:59:1a:2a:eb:34:d1:87:43:fa:17:e0:c6:ae:56:
54:29:fb:4e:3e:a0:ca:45:29:7c:7c:d1:3b:00:28:
23:5d:9f:74:53:c8:bc:24:58:09:0e:25:71:87:42:
aa:46:35:8d:b4:ac:7d:ca:4c:fd:ad:95:50:5e:af:
96:c8:3e:0b:3e:b1:02:7c:0d:09:6a:90:98:cf:74:
a2:cb:dc:64:26:85:73:b6:63:b1:5c:51:5a:9b:eb:
53:da:ea:2e:c9:33:4e:ec:a2:84:39:47:a1:79:a8:
76:fd:c6:a6:9a:e0:61:96:34:b6:82:10:ff:a0:5f:
52:ee:6a:e2:7d:79:6d:69:74:0b:0b:1e:28:db:28:
64:68:c7:ac:20:21:c6:09:9f:91:bd:b2:b1:bc:56:
ac:ca:76:13:e4:6e:88:2a:93:45:3f:b8:16:e7:a3:
77:c3:16:99:3e:74:b1:88:4a:fd:01:3c:01:4d:af:
ea:82:c8:a1:d1:ad:bd:d3:b5:b5:9a:67:0d:3e:a7:
76:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:EE:EB:DB:B7:F4:6D:70:2C:DD:A2:A2:44:16:16:A2:BF:4C:65:F5
X509v3 Authority Key Identifier:
keyid:B7:26:0D:30:83:5B:9D:81:2F:70:44:EC:E9:6F:4F:B8:F6:98:37:9C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/B7260D30835B9D812F7044ECE96F4FB8F698379C.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B7260D30835B9D812F7044ECE96F4FB8F698379C.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c3a5ffdc-151a-4aad-a2b7-432649de6dbe/0/323030313a6466323a6130303a3a2f34382d3438203d3e203338373630.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2001:df2:a00::/48
Signature Algorithm: sha256WithRSAEncryption
48:0f:09:06:27:3f:f4:b3:d1:74:a5:30:2b:8a:9c:75:a9:b5:
97:c6:73:70:af:a1:3f:d4:0f:98:c1:b8:e1:2e:03:e0:6a:af:
cb:4a:44:ea:3a:47:d1:90:da:17:15:f6:e2:ea:c3:81:91:d7:
17:ed:11:ea:4d:b3:ab:2a:0d:46:2e:70:7d:d3:73:4e:81:03:
69:ee:25:f1:63:16:0e:5f:82:26:ca:e1:5e:2f:31:65:12:8d:
f7:18:56:7a:85:3a:cb:5a:0d:b0:63:ab:50:19:fb:ff:f2:ef:
fb:31:1c:28:9e:f4:66:dd:b4:16:64:dd:df:4c:56:59:1a:41:
0e:de:a7:86:58:39:a5:8a:3b:d2:34:a0:00:dd:7d:ce:55:50:
29:10:ba:a7:10:6a:97:af:47:e0:0d:41:d6:89:43:68:3c:ad:
6a:80:51:21:41:0f:79:ec:f7:ec:65:ff:1e:27:31:1a:39:c4:
69:ed:f5:b2:5b:c4:5c:ab:a2:6c:2b:ec:03:87:79:d8:84:a9:
e6:b1:55:70:76:86:24:78:36:ad:db:93:26:c3:4e:20:ee:ce:
1a:6e:51:a4:1a:77:83:5d:2b:c6:84:f6:c8:82:71:5f:c6:00:
45:4d:3c:4b:97:f6:29:9f:28:a8:ba:40:43:9e:cd:b8:c5:e7:
0a:65:b0:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org