Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35362e302f32342d3234203d3e20313337333633.roa
File: 3230322e31302e35362e302f32342d3234203d3e20313337333633.roa (raw, json)
Hash identifier: TMsM/3tAiaC/2OVzfqNcI4da9llq2J1X8eeo1czA/5E=
Subject key identifier: 82:75:E8:32:35:E5:37:4C:B1:E2:35:CC:E4:FC:3D:C4:1A:A3:5A:6B
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 78C9B21B96ABE24591133BB22661DA1EC5C4BB51
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35362e302f32342d3234203d3e20313337333633.roa
Signing time: Wed 17 May 2023 09:37:16 +0000
ROA not before: Wed 17 May 2023 09:32:16 +0000
ROA not after: Wed 15 May 2024 09:37:16 +0000
asID: 137363
IP address blocks: 202.10.56.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:c9:b2:1b:96:ab:e2:45:91:13:3b:b2:26:61:da:1e:c5:c4:bb:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: May 17 09:32:16 2023 GMT
Not After : May 15 09:37:16 2024 GMT
Subject: CN=8275E83235E5374CB1E235CCE4FC3DC41AA35A6B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:99:d2:ff:ef:6c:dd:9b:11:e3:b3:ff:47:38:
d5:32:91:11:e6:1b:ad:37:ec:12:8f:72:b5:f8:04:
04:87:81:16:20:12:b5:17:bc:65:82:06:3b:2a:0e:
0c:c9:c5:c0:af:2a:ee:74:d0:b4:f4:eb:dd:84:b3:
c5:0c:76:4d:ed:55:f3:20:d6:c2:a3:1f:85:b9:61:
85:56:8f:3c:13:6f:96:f5:e5:c1:0d:4f:cd:41:8e:
16:5b:3b:cf:ca:8c:58:32:37:82:d1:44:e4:58:d1:
00:1c:42:58:58:2d:ff:00:c7:8c:04:9a:81:f1:c3:
01:ea:b3:dc:d2:1e:f4:4b:19:32:e7:b8:19:40:2b:
71:f1:f8:15:96:6d:eb:f6:a5:37:4d:b0:cf:38:15:
e1:01:6c:4c:2e:ca:32:49:2f:43:e3:e0:0f:49:1b:
a6:5d:be:a5:d3:c3:e8:ef:86:5a:99:b2:c8:96:45:
89:f1:e1:a3:82:97:db:42:bc:83:4d:59:e4:50:2c:
f1:40:f7:98:40:62:f8:59:57:0a:3e:56:bf:89:1b:
1b:c0:4d:07:4d:c9:72:e0:c2:7b:9b:1f:53:0e:a8:
86:16:d4:0e:fe:30:be:aa:62:50:7f:9b:ce:b6:6b:
e3:7c:ad:fb:35:af:35:af:fe:b5:d3:15:8b:fe:7c:
d7:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:75:E8:32:35:E5:37:4C:B1:E2:35:CC:E4:FC:3D:C4:1A:A3:5A:6B
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e35362e302f32342d3234203d3e20313337333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.56.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:23:e5:17:1d:eb:6c:53:3c:27:49:d0:ec:d9:c6:bf:a5:bc:
1f:6c:1f:fd:21:00:e0:98:56:30:3c:5d:91:1e:45:53:58:ba:
9d:e3:a6:7a:1b:22:58:04:c0:03:39:7f:19:7f:9e:2d:5d:0c:
26:e2:f1:8b:a0:ad:bc:19:68:5e:91:7c:7e:46:6a:45:c5:32:
66:35:a1:ee:69:42:a1:7b:31:d3:f6:43:b9:25:4a:9b:23:61:
8b:66:26:70:e7:12:54:73:d2:e1:6d:9e:e6:3a:28:8e:b5:38:
84:44:73:4d:66:39:6e:86:e2:47:58:ab:9e:e5:55:7d:16:79:
74:33:11:57:db:7b:46:88:12:ef:af:96:b5:dc:e3:10:a1:72:
54:1b:17:50:b9:7f:6e:94:7c:e8:39:ed:af:82:1b:42:28:43:
fe:d3:44:2a:7b:af:7b:04:c4:d3:28:df:b5:23:a6:1f:7e:ff:
41:de:5b:50:53:96:cd:88:cb:e6:b1:31:66:e4:57:c1:a8:40:
c6:f4:7e:2a:2b:aa:21:33:61:d1:4c:7d:3e:d2:ce:48:fc:82:
fb:52:61:bf:db:22:aa:e4:57:69:6f:9d:f5:40:12:fe:e1:33:
b9:b2:d1:1c:37:02:a7:d3:67:c4:03:72:e8:a6:35:81:1c:58:
9b:88:07:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:37:16 2024 by rpki-client on console-fra.rpki-client.org