Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa
File: 00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa (raw, json)
Hash identifier: UDm0OyJQzaYTEdTANK5spmkSDXtB8vtUAJ6FyftS2K8=
Subject key identifier: 15:90:E4:10:B2:71:A0:8E:B2:D0:7D:25:84:1A:99:71:BB:2A:3E:F9
Certificate issuer: /CN=657d9dd95ecfd67113ddcd4cff4ced5d8177cf65
Certificate serial: 6865
Authority key identifier: 58:8B:D2:7A:78:D9:8D:63:93:83:95:E9:E1:80:7D:75:C6:13:D1:1D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/657d9dd95ecfd67113ddcd4cff4ced5d8177cf65.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa
Signing time: Tue 18 Jan 2022 18:54:29 +0000
ROA not before: Tue 18 Jan 2022 03:00:00 +0000
ROA not after: Thu 18 Jan 2024 03:00:00 +0000
asID: 22927
IP address blocks: 2800:380::/32 maxlen: 48
2802:8000::/24 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26725 (0x6865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=657d9dd95ecfd67113ddcd4cff4ced5d8177cf65
Validity
Not Before: Jan 18 03:00:00 2022 GMT
Not After : Jan 18 03:00:00 2024 GMT
Subject: CN=00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:28:a8:32:e1:50:f4:89:b1:ec:5c:ca:6f:70:
1a:02:74:54:d4:80:ac:91:4b:33:8e:47:86:a2:e0:
f0:98:a3:61:0f:56:b0:d5:e1:01:c5:10:90:3a:97:
06:ba:7c:8b:b8:aa:7f:cb:c0:e8:df:cc:fc:0e:00:
bc:3a:6a:f7:b9:ff:6f:29:92:9c:2b:7f:87:54:7d:
37:4b:0e:06:08:72:0f:37:a9:55:cf:ef:42:ac:b7:
db:53:52:4c:8b:8e:8d:cb:c7:eb:eb:5c:7f:00:1d:
4c:98:82:03:de:eb:93:e4:31:e7:e7:87:a7:2f:cd:
28:8f:bf:9f:fe:8e:90:1c:31:c1:66:8f:5b:0c:73:
da:1d:3d:9f:91:1b:8f:8d:24:dc:02:24:6b:78:87:
7d:cf:2a:0b:94:51:4f:d7:ca:fb:9c:a9:0d:3e:ae:
a0:bf:1e:36:e2:b2:31:83:35:92:2e:67:f4:f0:2f:
b4:54:2c:5b:8d:21:69:0f:9c:6d:fb:7b:0b:5f:a3:
06:15:eb:ca:a3:b1:2d:84:70:5e:9e:43:a1:24:1b:
ee:1a:e1:a6:b3:7d:c9:0a:b9:47:af:bb:f1:e8:79:
fc:fa:f5:b7:e2:aa:55:31:b7:0b:8b:22:50:f3:a4:
79:74:c9:cc:c3:85:10:96:dc:0b:48:cd:a1:69:d8:
01:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:90:E4:10:B2:71:A0:8E:B2:D0:7D:25:84:1A:99:71:BB:2A:3E:F9
X509v3 Authority Key Identifier:
keyid:58:8B:D2:7A:78:D9:8D:63:93:83:95:E9:E1:80:7D:75:C6:13:D1:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/657d9dd95ecfd67113ddcd4cff4ced5d8177cf65.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/00e4e95fa38878f1bd38d42d0a1a5ce95a79ae60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/5375bcfc-8b86-452e-850d-83cfe3b50f06/657d9dd95ecfd67113ddcd4cff4ced5d8177cf65.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2800:380::/32
2802:8000::/24
Signature Algorithm: sha256WithRSAEncryption
59:a1:1f:4d:80:58:a8:e9:8c:b0:0d:7a:f2:e8:55:4a:8a:55:
be:ac:f9:be:c7:47:0a:30:ca:a1:64:1a:9d:d0:b6:f9:ae:30:
87:df:10:ef:f4:83:2b:39:82:56:4f:fd:5a:36:11:ad:d1:d7:
19:00:09:c9:e0:38:cd:30:4b:8c:4f:6d:c1:07:e2:e1:89:e4:
6b:d5:ae:fa:1b:74:f3:04:0f:ed:ca:8c:ab:40:e1:65:4f:8c:
3e:30:c4:ac:96:77:f5:9e:50:bb:7e:c5:28:e1:fe:b2:48:61:
f4:ca:61:a5:2e:e1:51:19:ff:3e:d6:95:35:1d:0b:fa:35:d7:
14:d7:c9:92:99:ad:fd:bd:e3:f9:b4:f8:43:44:85:b6:42:10:
f8:f7:88:71:ee:72:61:56:68:9c:da:f9:90:35:cb:07:e8:df:
07:ac:84:6f:c3:c5:7e:44:bd:5c:37:62:01:8c:0b:85:a4:33:
e4:b1:56:20:5f:08:69:32:34:cf:40:bf:c2:dc:21:7b:cf:08:
d8:d2:27:32:94:d4:5a:eb:75:d4:20:ba:7b:3a:41:86:91:d2:
ac:8a:7a:50:e5:80:9e:47:3c:91:3d:4c:e7:d4:fe:e3:b4:56:
05:ad:9b:b9:d4:8d:3b:f3:ef:11:f9:61:ca:20:83:de:9f:84:
7c:a1:86:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 24 16:15:06 2023 by rpki-client on console-fra.rpki-client.org