Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/1BC81E3C8BFC028EFACF08614951FD0DB9A86232CC25CF8B606BA7075D6063F5/0/3230302e3132332e35322e302f32332d3234203d3e203532333238.roa
File: 3230302e3132332e35322e302f32332d3234203d3e203532333238.roa (raw, json)
Hash identifier: B9qRfOx6si8tS7G8w2gt2gguqwEoDLOZ6nrBItAJPy8=
Subject key identifier: A1:CE:C4:EE:A5:3B:99:7A:80:68:32:B9:36:91:68:80:95:64:0A:85
Certificate issuer: /CN=ED05FF962C1240B2E8CC68B4EA41D187C5509591
Certificate serial: 6D495C473DAB559DE66B7DCC6DD1A2811B192DE9
Authority key identifier: ED:05:FF:96:2C:12:40:B2:E8:CC:68:B4:EA:41:D1:87:C5:50:95:91
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED05FF962C1240B2E8CC68B4EA41D187C5509591.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/1BC81E3C8BFC028EFACF08614951FD0DB9A86232CC25CF8B606BA7075D6063F5/0/3230302e3132332e35322e302f32332d3234203d3e203532333238.roa
Signing time: Tue 05 Mar 2024 18:21:56 +0000
ROA not before: Tue 05 Mar 2024 18:16:56 +0000
ROA not after: Tue 04 Mar 2025 18:21:56 +0000
asID: 52328
IP address blocks: 200.123.52.0/23 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:49:5c:47:3d:ab:55:9d:e6:6b:7d:cc:6d:d1:a2:81:1b:19:2d:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ED05FF962C1240B2E8CC68B4EA41D187C5509591
Validity
Not Before: Mar 5 18:16:56 2024 GMT
Not After : Mar 4 18:21:56 2025 GMT
Subject: CN=A1CEC4EEA53B997A806832B93691688095640A85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:be:c3:7a:22:e7:99:1e:b9:44:48:6b:1c:08:
76:e2:ba:36:ca:1c:65:9b:08:8d:71:ff:31:8f:e5:
11:5d:c4:6c:63:e8:3c:2d:a5:a9:9d:50:ed:0d:68:
2c:dc:33:82:86:67:7a:c4:c6:61:29:3c:b2:a4:01:
ee:51:9a:24:8f:49:b9:97:75:f5:ec:f0:48:7e:3b:
d9:9d:ad:ba:b2:5b:53:40:24:be:dc:1d:a1:8d:e7:
43:78:c7:46:97:6e:b5:1b:17:44:23:8e:1a:da:68:
65:4d:a7:d8:87:a5:3f:2b:4d:21:9e:14:ad:36:f5:
d1:d0:f6:8c:3b:9b:1b:05:75:83:80:0b:3d:e4:47:
82:e9:6e:8b:27:60:d2:63:3c:02:d0:64:06:7a:0f:
9d:0e:fe:91:b1:3a:cb:4d:bf:1c:3a:7a:28:43:78:
39:d8:6a:01:1e:1b:f8:34:0b:c5:e9:37:02:d4:64:
0f:04:09:db:f7:78:8e:22:b1:c9:6e:65:10:6f:7f:
3b:90:0c:4f:96:d8:0c:44:77:04:73:de:91:d9:83:
7f:55:94:7b:c1:56:2a:fa:b0:1c:0d:8b:86:02:2b:
f7:97:34:be:2b:1d:73:6b:51:fe:63:c3:03:19:d6:
7f:08:7a:3d:f0:ba:56:fb:af:8e:ad:42:ba:b1:7a:
24:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:CE:C4:EE:A5:3B:99:7A:80:68:32:B9:36:91:68:80:95:64:0A:85
X509v3 Authority Key Identifier:
keyid:ED:05:FF:96:2C:12:40:B2:E8:CC:68:B4:EA:41:D1:87:C5:50:95:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/1BC81E3C8BFC028EFACF08614951FD0DB9A86232CC25CF8B606BA7075D6063F5/0/ED05FF962C1240B2E8CC68B4EA41D187C5509591.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/ED05FF962C1240B2E8CC68B4EA41D187C5509591.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/1BC81E3C8BFC028EFACF08614951FD0DB9A86232CC25CF8B606BA7075D6063F5/0/3230302e3132332e35322e302f32332d3234203d3e203532333238.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.123.52.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:e7:06:df:62:9d:67:19:b7:a2:1c:5a:35:17:02:6c:bd:2f:
f3:a5:50:56:00:fe:fc:cb:07:48:f8:08:a2:04:96:c5:3f:fb:
37:e1:c0:d8:d2:c5:ff:03:c5:63:22:60:8f:a1:6f:e0:f5:d9:
60:a3:da:08:ab:00:a5:66:ed:d9:84:c4:16:2e:f0:f2:70:1c:
c6:47:43:01:26:f7:d5:28:09:39:c1:61:25:19:73:6b:74:6a:
c1:c5:14:20:fe:c9:30:15:4b:a3:f2:ec:27:f9:e7:16:81:d3:
b6:52:df:1c:f2:48:fc:fa:8c:fc:5a:de:3b:64:13:d4:b0:ac:
5b:81:69:f9:b9:5c:fe:3c:ed:4b:da:52:39:4d:62:87:06:99:
c7:f0:26:44:a0:64:db:84:79:28:cb:81:4f:3a:9f:2e:7c:46:
a1:b7:e1:2a:37:d5:ed:cb:86:7d:d2:2a:2f:53:f1:d0:a7:e6:
2f:6e:ba:cc:63:8f:57:29:0f:92:0d:3a:f8:80:fe:25:1e:42:
d6:15:88:98:c7:64:b8:d2:89:82:8d:78:2d:b9:0b:0f:cd:8d:
ab:9f:d8:59:d0:f5:0f:a2:09:64:a1:43:78:d3:35:1c:43:54:
24:73:61:4c:f3:61:de:54:ec:66:65:22:99:67:80:15:f2:9a:
6d:f7:66:a2
-----BEGIN CERTIFICATE-----
MIIFvjCCBKagAwIBAgIUbUlcRz2rVZ3ma33MbdGigRsZLekwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUQwNUZGOTYyQzEyNDBCMkU4Q0M2OEI0RUE0MUQxODdD
NTUwOTU5MTAeFw0yNDAzMDUxODE2NTZaFw0yNTAzMDQxODIxNTZaMDMxMTAvBgNV
BAMTKEExQ0VDNEVFQTUzQjk5N0E4MDY4MzJCOTM2OTE2ODgwOTU2NDBBODUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcvsN6IueZHrlESGscCHbiujbK
HGWbCI1x/zGP5RFdxGxj6DwtpamdUO0NaCzcM4KGZ3rExmEpPLKkAe5RmiSPSbmX
dfXs8Eh+O9mdrbqyW1NAJL7cHaGN50N4x0aXbrUbF0QjjhraaGVNp9iHpT8rTSGe
FK029dHQ9ow7mxsFdYOACz3kR4LpbosnYNJjPALQZAZ6D50O/pGxOstNvxw6eihD
eDnYagEeG/g0C8XpNwLUZA8ECdv3eI4iscluZRBvfzuQDE+W2AxEdwRz3pHZg39V
lHvBVir6sBwNi4YCK/eXNL4rHXNrUf5jwwMZ1n8Iej3wulb7r46tQrqxeiTlAgMB
AAGjggLIMIICxDAdBgNVHQ4EFgQUoc7E7qU7mXqAaDK5NpFogJVkCoUwHwYDVR0j
BBgwFoAU7QX/liwSQLLozGi06kHRh8VQlZEwDgYDVR0PAQH/BAQDAgeAMIGwBgNV
HR8EgagwgaUwgaKggZ+ggZyGgZlyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5l
dC9ycGtpL2xhY25pYy8xQkM4MUUzQzhCRkMwMjhFRkFDRjA4NjE0OTUxRkQwREI5
QTg2MjMyQ0MyNUNGOEI2MDZCQTcwNzVENjA2M0Y1LzAvRUQwNUZGOTYyQzEyNDBC
MkU4Q0M2OEI0RUE0MUQxODdDNTUwOTU5MS5jcmwwgbkGCCsGAQUFBwEBBIGsMIGp
MIGmBggrBgEFBQcwAoaBmXJzeW5jOi8vcmVwb3NpdG9yeS5sYWNuaWMubmV0L3Jw
a2kvbGFjbmljL0ZEQzM1OTRERDRFNTRCQURFNzA5QUMwRDI1NUNGMjc5QzQ3NzE2
RDJFOEIzRjRENDVEQzQ2MzU1ODk5QjM2RDQvMC9FRDA1RkY5NjJDMTI0MEIyRThD
QzY4QjRFQTQxRDE4N0M1NTA5NTkxLmNlcjCBxwYIKwYBBQUHAQsEgbowgbcwgbQG
CCsGAQUFBzALhoGncnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25pYy5uZXQvcnBraS9s
YWNuaWMvMUJDODFFM0M4QkZDMDI4RUZBQ0YwODYxNDk1MUZEMERCOUE4NjIzMkND
MjVDRjhCNjA2QkE3MDc1RDYwNjNGNS8wLzMyMzAzMDJlMzEzMjMzMmUzNTMyMmUz
MDJmMzIzMzJkMzIzNDIwM2QzZTIwMzUzMjMzMzIzOC5yb2EwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAch7NDAN
BgkqhkiG9w0BAQsFAAOCAQEALecG32KdZxm3ohxaNRcCbL0v86VQVgD+/MsHSPgI
ogSWxT/7N+HA2NLF/wPFYyJgj6Fv4PXZYKPaCKsApWbt2YTEFi7w8nAcxkdDASb3
1SgJOcFhJRlza3RqwcUUIP7JMBVLo/LsJ/nnFoHTtlLfHPJI/PqM/FreO2QT1LCs
W4Fp+blc/jztS9pSOU1ihwaZx/AmRKBk24R5KMuBTzqfLnxGobfhKjfV7cuGfdIq
L1Px0KfmL266zGOPVykPkg06+ID+JR5C1hWImMdkuNKJgo14LbkLD82Nq5/YWdD1
D6IJZKFDeNM1HENUJHNhTPNh3lTsZmUimWeAFfKabfdmog==
-----END CERTIFICATE-----
Generated at Fri Jun 28 00:03:40 2024 by rpki-client on console-ams.rpki-client.org