Route Origin Authorization
$ rpki-client -vvf repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36302e302f32332d3234203d3e20313337333633.roa
File: 3230322e31302e36302e302f32332d3234203d3e20313337333633.roa (raw, json)
Hash identifier: YF6A+dmIkS8twdJmFge6fIJnTxBfD0uI54+MoiY5PRA=
Subject key identifier: 9D:68:2D:77:4F:68:87:C6:45:F1:A2:73:C7:D4:C2:C6:C0:6C:06:80
Certificate issuer: /CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Certificate serial: 535C6F306BF70F2DFB6ECA0904FEE14796F23AC4
Authority key identifier: B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject info access: rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36302e302f32332d3234203d3e20313337333633.roa
Signing time: Wed 17 May 2023 09:38:10 +0000
ROA not before: Wed 17 May 2023 09:33:10 +0000
ROA not after: Wed 15 May 2024 09:38:10 +0000
asID: 137363
IP address blocks: 202.10.60.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
53:5c:6f:30:6b:f7:0f:2d:fb:6e:ca:09:04:fe:e1:47:96:f2:3a:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3
Validity
Not Before: May 17 09:33:10 2023 GMT
Not After : May 15 09:38:10 2024 GMT
Subject: CN=9D682D774F6887C645F1A273C7D4C2C6C06C0680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6b:f4:6b:4f:c3:34:2e:3b:07:3a:4e:fa:33:
f6:72:ec:a5:39:0e:06:74:95:a1:cb:48:f6:59:4f:
03:7b:eb:47:26:23:15:96:05:21:05:ca:8e:59:38:
97:99:57:26:f1:c1:60:ac:9a:ac:c9:a5:14:52:57:
db:75:15:a3:05:dc:38:ad:e3:fb:17:83:cb:d0:e4:
53:b5:bf:d4:13:a9:e9:eb:07:e6:b9:59:5e:3b:91:
60:3b:d4:d5:d5:6a:42:48:b3:f4:c8:4d:66:fc:05:
ea:a1:ad:64:87:c2:3e:80:d7:78:0d:47:f3:c0:c9:
3a:1f:c1:c0:4a:75:05:a0:4c:27:fb:c1:67:ca:19:
73:82:d0:2a:de:33:6a:35:6c:2d:1b:63:84:27:0c:
41:e9:89:08:fe:a3:b8:64:18:87:f9:e9:89:d9:12:
34:8f:9b:7e:44:6a:d2:49:65:01:b2:35:ff:fa:65:
1c:5a:45:e1:ee:0b:d7:ab:c0:17:d5:df:96:ca:6f:
5d:37:90:fc:d8:b9:59:7b:52:6d:88:11:af:e5:28:
9c:41:15:e5:8a:66:08:1a:71:8d:47:5f:40:bd:91:
cd:b7:0e:ed:20:61:ad:92:cb:41:85:9d:3c:11:6a:
d2:62:44:46:d1:1e:f2:27:8a:87:80:f9:9b:d2:c6:
59:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:68:2D:77:4F:68:87:C6:45:F1:A2:73:C7:D4:C2:C6:C0:6C:06:80
X509v3 Authority Key Identifier:
keyid:B6:EE:1F:61:D6:E8:E9:EE:C6:40:CC:C1:D7:91:DB:A1:24:99:3C:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.crl
Authority Information Access:
CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B6EE1F61D6E8E9EEC640CCC1D791DBA124993CA3.cer
Subject Information Access:
Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/3230322e31302e36302e302f32332d3234203d3e20313337333633.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.10.60.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:ce:0a:c7:ec:fc:1f:ad:26:80:a6:8a:5d:a5:ef:37:fd:58:
5d:5e:3f:89:d4:9c:cf:be:09:24:74:9a:a0:86:73:06:b5:63:
ed:fb:55:79:00:d3:2d:5d:7b:b9:93:bb:53:c7:cd:ba:86:77:
23:20:fd:6c:16:c8:15:a1:4d:bb:24:22:9a:91:9e:25:a3:7b:
73:e1:fd:80:d2:0b:26:da:af:8a:6c:62:b7:8f:d7:de:d4:0a:
7a:68:c7:78:d1:4d:f1:a1:cd:be:9d:c2:0a:69:c5:47:0c:7c:
c5:d9:6f:8d:07:f6:63:2f:d0:6f:46:87:e4:c1:0e:63:2d:40:
be:d1:c9:47:25:05:70:7b:e7:81:c4:26:fb:b9:88:e6:9b:73:
9d:2d:61:20:c5:d5:7e:64:1d:44:30:be:19:05:52:5a:56:63:
60:31:d4:e5:42:92:ba:f7:a6:2d:68:dc:72:6b:37:45:5d:60:
80:2f:59:97:0f:f1:a3:60:ff:90:16:90:e2:80:31:b3:d2:e4:
b9:17:f1:12:fe:fb:1d:03:40:44:14:82:bf:ad:fd:50:33:43:
7a:fe:f3:3b:96:20:c9:a7:1a:a9:ea:8b:08:e3:11:4e:e5:19:
e1:bc:f8:f7:e2:45:10:21:2c:1d:64:56:96:d8:b8:59:25:80:
f7:51:a2:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-ams.rpki-client.org