Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/50ca7657-eafb-4624-a180-b6f1dd442960/79ea065fdc0cbcf6bb2201138b7ade323bf3ddcb.roa
File: 79ea065fdc0cbcf6bb2201138b7ade323bf3ddcb.roa (raw, json)
Hash identifier: WXpnPMcPfJTpRu8glgbmPJsKTvKGyYERhF1052F7IP8=
Subject key identifier: 78:63:A2:E7:9E:09:D6:A2:E4:A0:F2:88:34:0A:F3:99:5A:50:55:4E
Certificate issuer: /CN=d50c5ae3ec63b7e74bff21cdf59603cefcd04c73
Certificate serial: 10EF3E
Authority key identifier: 49:64:6F:B8:20:CE:AA:3B:B2:04:1E:D8:B0:16:A7:A7:5B:63:9D:18
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d50c5ae3ec63b7e74bff21cdf59603cefcd04c73.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/50ca7657-eafb-4624-a180-b6f1dd442960/79ea065fdc0cbcf6bb2201138b7ade323bf3ddcb.roa
Signing time: Fri 09 Sep 2022 00:01:12 +0000
ROA not before: Thu 08 Sep 2022 16:11:39 +0000
ROA not after: Sun 08 Sep 2024 16:11:39 +0000
asID: 52326
IP address blocks: 190.151.138.0/23 maxlen: 24
190.151.140.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1109822 (0x10ef3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d50c5ae3ec63b7e74bff21cdf59603cefcd04c73
Validity
Not Before: Sep 8 16:11:39 2022 GMT
Not After : Sep 8 16:11:39 2024 GMT
Subject: CN=79ea065fdc0cbcf6bb2201138b7ade323bf3ddcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c0:b3:3d:13:71:7e:16:c7:3d:ef:5a:40:0e:
af:35:70:d5:f3:ae:2a:cb:14:a7:e6:a4:2f:35:c7:
18:60:18:60:8a:a3:aa:7d:9c:a4:5d:fc:6b:a9:72:
60:78:30:50:e0:cf:a3:57:47:6f:89:6e:d1:83:22:
df:45:22:9e:8d:93:ae:53:6f:11:89:9c:bc:d0:a4:
59:2b:14:f3:fc:ad:52:a3:71:6e:15:e8:80:c0:15:
6b:31:52:2d:c9:ba:37:81:8f:9d:69:85:a8:e3:5d:
94:f5:5c:71:4f:7e:38:8d:4a:13:fe:d5:8e:fd:42:
f3:ac:59:05:0b:99:49:e1:d1:f4:46:98:95:00:6b:
fd:c8:fd:05:3a:13:94:56:0f:88:74:78:5a:2a:b4:
f1:71:89:3d:0f:af:43:5b:6b:02:71:38:28:b7:ce:
82:34:22:bc:53:09:02:cc:7e:bc:47:35:e8:c7:cf:
29:f1:2b:bc:5c:52:c2:5e:a6:b3:58:bf:10:93:9c:
ea:f2:8c:6a:1b:c8:a0:2f:bc:98:1f:fc:ba:b6:1a:
67:87:0d:07:a8:22:76:07:ba:15:17:ae:3c:b1:98:
8a:a7:ac:20:2c:7d:5c:3f:c8:96:f0:f2:39:0d:85:
5b:e4:54:83:ca:c5:77:65:10:5c:d7:6f:87:18:0f:
f1:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:63:A2:E7:9E:09:D6:A2:E4:A0:F2:88:34:0A:F3:99:5A:50:55:4E
X509v3 Authority Key Identifier:
keyid:49:64:6F:B8:20:CE:AA:3B:B2:04:1E:D8:B0:16:A7:A7:5B:63:9D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/d50c5ae3ec63b7e74bff21cdf59603cefcd04c73.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/50ca7657-eafb-4624-a180-b6f1dd442960/79ea065fdc0cbcf6bb2201138b7ade323bf3ddcb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/50ca7657-eafb-4624-a180-b6f1dd442960/d50c5ae3ec63b7e74bff21cdf59603cefcd04c73.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.151.138.0-190.151.143.255
Signature Algorithm: sha256WithRSAEncryption
5a:24:53:19:81:57:d3:dd:b5:f4:29:21:b6:d8:95:2b:59:90:
47:59:85:ba:49:bd:54:9d:a5:41:f8:5f:42:69:33:71:a9:c8:
f3:e9:a2:85:4c:68:bc:75:e0:bd:43:02:8b:4e:24:d5:87:50:
cc:83:63:51:aa:21:e5:55:14:92:5b:ef:6a:c7:8c:f7:71:f0:
74:5d:59:4e:1d:23:b5:81:fa:71:30:0d:c7:f8:40:ba:a0:2e:
4f:a4:b2:3f:d3:b2:96:d0:35:67:2e:9a:bf:4e:47:cc:70:47:
4a:9a:a4:6e:92:9a:f0:26:54:04:ca:b0:95:42:8f:7f:b6:8a:
1b:aa:8e:1b:e1:82:9b:00:e5:50:f2:02:c1:83:93:d2:48:12:
c6:e2:0a:36:d6:a4:d2:f8:d5:9e:69:70:50:47:75:dd:be:5a:
b9:5a:27:4c:69:63:ee:81:ff:82:82:63:5f:3c:e5:40:42:12:
0d:ec:1e:2d:cf:a3:8a:f4:ec:b5:ba:35:9e:8a:31:6f:29:a6:
ad:1a:56:00:8e:97:2f:f7:2c:5e:d0:ed:dd:21:37:76:e6:11:
57:7e:8f:3f:8e:6d:af:ed:a6:bb:a0:74:f0:5a:68:e8:5a:94:
5b:fc:6a:f6:14:5c:c0:22:a0:d7:ad:6d:4e:58:bc:b8:9a:e7:
f2:ef:6b:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:14:18 2023 by rpki-client on console-fra.rpki-client.org