Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/9D61860C0604BA139BEB3D652902D018E6ED34FFB4002B4B34EBBF217B1F7776/0/34352e3137322e3137382e302f32332d3233203d3e20323637383130.roa
File: 34352e3137322e3137382e302f32332d3233203d3e20323637383130.roa (raw, json)
Hash identifier: 9SX+8rVUcl3eBBjmxckklsAnyAVIVTLBeUiYW33VRxw=
Subject key identifier: 39:E7:2C:29:32:FB:6E:AE:8E:1F:E2:BD:CA:75:26:9E:AE:9B:CD:F3
Certificate issuer: /CN=BD46A98D096AD8AE77F86DCA2F11E0BD0AB0F2E7
Certificate serial: 7741EAD7F611CEB1AF19B2E5C35BE51BC10E03A1
Authority key identifier: BD:46:A9:8D:09:6A:D8:AE:77:F8:6D:CA:2F:11:E0:BD:0A:B0:F2:E7
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD46A98D096AD8AE77F86DCA2F11E0BD0AB0F2E7.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/9D61860C0604BA139BEB3D652902D018E6ED34FFB4002B4B34EBBF217B1F7776/0/34352e3137322e3137382e302f32332d3233203d3e20323637383130.roa
Signing time: Tue 05 Mar 2024 18:16:10 +0000
ROA not before: Tue 05 Mar 2024 18:11:10 +0000
ROA not after: Tue 04 Mar 2025 18:16:10 +0000
asID: 267810
IP address blocks: 45.172.178.0/23 maxlen: 23
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:41:ea:d7:f6:11:ce:b1:af:19:b2:e5:c3:5b:e5:1b:c1:0e:03:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD46A98D096AD8AE77F86DCA2F11E0BD0AB0F2E7
Validity
Not Before: Mar 5 18:11:10 2024 GMT
Not After : Mar 4 18:16:10 2025 GMT
Subject: CN=39E72C2932FB6EAE8E1FE2BDCA75269EAE9BCDF3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:d1:19:0d:ac:39:0a:6f:c4:53:8c:0a:ff:
fc:49:cc:f4:14:e2:8f:07:f0:13:89:9f:57:f2:02:
a5:37:36:fd:f8:f1:f8:d2:ea:e1:23:9b:16:05:d0:
36:1f:49:42:be:52:2e:75:81:6b:b6:60:79:40:b1:
39:fb:89:08:a4:47:5b:d2:ed:0a:05:8b:7c:41:64:
5b:79:f3:33:2e:ea:8b:d3:f2:63:fa:ea:24:7c:d1:
a0:68:df:52:7b:99:d3:f1:2a:7f:2c:c8:38:d1:0b:
cb:70:54:de:f1:de:37:2a:c7:fd:fb:be:c5:47:11:
64:45:5f:d5:dc:f5:e8:2a:ed:b8:df:5c:2a:0d:83:
8b:05:2e:68:b9:e7:17:88:9b:c6:ce:d9:1f:9d:c2:
e6:d1:9c:59:bd:89:b1:1a:5e:79:9b:36:95:72:fb:
fb:dd:b7:45:1f:a2:83:5c:56:55:73:3e:9e:20:a7:
6e:7b:9f:4e:89:f4:2f:4f:31:d4:40:27:d1:8a:7d:
f0:44:13:b3:db:05:35:1b:bb:04:f4:4e:0b:48:ee:
c3:bc:12:e0:c2:d8:c4:1c:fd:eb:de:83:23:5a:ea:
0e:bc:19:1d:03:42:c9:5a:3f:07:74:fa:da:84:b5:
ba:9b:48:f3:5c:af:cb:0c:27:f7:d3:92:4c:d0:c2:
02:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E7:2C:29:32:FB:6E:AE:8E:1F:E2:BD:CA:75:26:9E:AE:9B:CD:F3
X509v3 Authority Key Identifier:
keyid:BD:46:A9:8D:09:6A:D8:AE:77:F8:6D:CA:2F:11:E0:BD:0A:B0:F2:E7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/9D61860C0604BA139BEB3D652902D018E6ED34FFB4002B4B34EBBF217B1F7776/0/BD46A98D096AD8AE77F86DCA2F11E0BD0AB0F2E7.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/BD46A98D096AD8AE77F86DCA2F11E0BD0AB0F2E7.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/9D61860C0604BA139BEB3D652902D018E6ED34FFB4002B4B34EBBF217B1F7776/0/34352e3137322e3137382e302f32332d3233203d3e20323637383130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.172.178.0/23
Signature Algorithm: sha256WithRSAEncryption
86:34:2f:c9:94:5a:7e:18:44:dc:38:92:67:05:76:0f:1a:d7:
70:54:06:27:30:f0:da:4f:80:85:80:cc:21:fd:07:8c:81:58:
2d:a9:b8:9e:80:2f:42:fd:3e:ca:69:dc:a2:1c:5b:cd:e4:6e:
7a:ff:8a:4c:9d:63:93:74:aa:3b:88:b5:aa:e3:64:1e:da:03:
48:a3:6a:68:ac:7f:0b:60:79:4b:c0:f7:2e:87:99:87:ba:c5:
c4:05:bb:cf:aa:9a:f9:3c:72:c3:47:4f:06:8f:16:26:a0:72:
c1:33:5a:25:7e:42:94:d1:05:2b:99:73:f6:a7:45:9d:f2:98:
a0:25:aa:98:e4:9f:2d:bc:67:90:ec:a8:3e:2a:8f:1b:35:d2:
e3:85:41:a8:fb:c6:ce:a2:99:a6:b0:f3:85:09:8d:a1:37:ba:
59:fc:6b:8a:69:a6:99:5d:48:44:15:77:81:c9:4f:4d:74:e0:
ae:05:7d:fa:96:29:ff:cd:72:7d:f7:3c:ae:60:ee:19:ed:75:
67:be:35:5d:f5:0a:3e:29:13:41:f4:77:01:dc:93:97:58:e4:
55:56:97:80:86:2a:d6:0a:1b:ac:a5:87:9b:2d:55:31:e3:41:
83:f2:7e:c6:ee:34:8a:4c:c0:88:3b:b0:43:be:a4:1d:e0:c8:
55:4a:70:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 19:24:48 2024 by rpki-client on console-fra.rpki-client.org