Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/C954A8464236F1BA8E61C7B6D67286A0093FFD409344653FF0D9A78691F4740F/0/3133312e302e3233362e302f32322d3234203d3e203136353331.roa
File: 3133312e302e3233362e302f32322d3234203d3e203136353331.roa (raw, json)
Hash identifier: 8VCP4Mn9bIFr9Dq5FmRwOILnG7VCaJ4JzorKGhXXXbY=
Subject key identifier: FB:68:F1:73:75:92:0C:57:B7:86:8A:C1:4B:F3:01:7B:94:62:A9:15
Certificate issuer: /CN=2FB06EBD28FE83A564FA3DFC83F4F98AC620C98A
Certificate serial: 0FBA313326C7ABC1C9CAA81CAE4F27C156C3AD7C
Authority key identifier: 2F:B0:6E:BD:28:FE:83:A5:64:FA:3D:FC:83:F4:F9:8A:C6:20:C9:8A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB06EBD28FE83A564FA3DFC83F4F98AC620C98A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/C954A8464236F1BA8E61C7B6D67286A0093FFD409344653FF0D9A78691F4740F/0/3133312e302e3233362e302f32322d3234203d3e203136353331.roa
Signing time: Tue 04 Feb 2025 18:29:35 +0000
ROA not before: Tue 04 Feb 2025 18:24:35 +0000
ROA not after: Tue 03 Feb 2026 18:29:35 +0000
asID: 16531
IP address blocks: 131.0.236.0/22 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:ba:31:33:26:c7:ab:c1:c9:ca:a8:1c:ae:4f:27:c1:56:c3:ad:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FB06EBD28FE83A564FA3DFC83F4F98AC620C98A
Validity
Not Before: Feb 4 18:24:35 2025 GMT
Not After : Feb 3 18:29:35 2026 GMT
Subject: CN=FB68F17375920C57B7868AC14BF3017B9462A915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:8e:a6:ef:f9:6d:c1:c8:f2:8e:eb:84:c6:76:
b2:4f:8a:25:c7:b9:e1:f5:12:22:62:cb:1e:df:74:
b5:cb:05:b6:0d:f2:12:03:ea:af:dd:6d:e3:d2:a9:
c7:d1:71:77:67:a7:c8:20:d2:17:f5:f8:a7:f3:31:
10:fb:2a:01:c3:23:d8:5b:8b:ef:9d:4a:69:0d:34:
a0:2e:13:b0:7f:70:1d:94:ef:fc:63:c4:29:6a:c0:
85:47:a2:4b:05:d5:5c:40:97:b0:cb:fa:6d:e3:c7:
a7:b6:e6:8d:2d:d3:4d:77:83:02:2a:18:95:16:0d:
a5:13:6b:81:64:53:7e:fc:62:65:bb:ae:d6:74:29:
72:7e:0c:38:fd:04:ab:26:02:34:80:05:b2:ca:08:
eb:6d:a2:e5:28:d6:e8:2a:89:76:93:f0:f6:a1:97:
3b:cb:9a:04:ac:de:be:ed:4d:64:91:a9:f3:42:7b:
e3:dd:61:c5:76:17:6c:f4:81:16:82:e3:03:5f:e4:
a1:7f:99:27:00:71:1c:cd:ed:3e:47:e9:c0:6c:3a:
ef:aa:f5:1c:31:b8:56:90:f8:ca:1f:45:24:4b:e7:
0b:9e:a8:17:22:d1:fa:ed:1d:1f:a3:f3:c5:1b:62:
6d:c1:f5:49:e1:06:c9:27:77:a2:a9:6a:f3:57:2b:
7a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:68:F1:73:75:92:0C:57:B7:86:8A:C1:4B:F3:01:7B:94:62:A9:15
X509v3 Authority Key Identifier:
keyid:2F:B0:6E:BD:28:FE:83:A5:64:FA:3D:FC:83:F4:F9:8A:C6:20:C9:8A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/C954A8464236F1BA8E61C7B6D67286A0093FFD409344653FF0D9A78691F4740F/0/2FB06EBD28FE83A564FA3DFC83F4F98AC620C98A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/2FB06EBD28FE83A564FA3DFC83F4F98AC620C98A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/C954A8464236F1BA8E61C7B6D67286A0093FFD409344653FF0D9A78691F4740F/0/3133312e302e3233362e302f32322d3234203d3e203136353331.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.0.236.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:1e:66:aa:61:67:79:ce:23:15:2c:25:27:82:81:2a:e2:30:
25:5e:43:1e:df:e4:5f:e7:b2:21:8c:79:f0:9c:19:44:db:03:
22:a3:28:34:bc:13:e3:89:3a:c8:2b:4e:14:55:18:72:b2:22:
99:f1:bf:6b:8e:7a:24:ba:6d:a5:01:c5:9d:8d:39:6a:15:d3:
1e:99:58:32:6c:41:1c:e6:ba:19:5e:e6:07:ac:d5:76:b3:b4:
82:bb:f8:24:33:d3:86:a8:ca:f4:db:16:4d:48:d3:a2:27:b1:
1c:81:66:f2:de:b1:76:02:12:6a:d8:2f:bd:c3:17:f5:4e:27:
51:73:ec:35:f5:57:eb:57:8e:fd:b1:b3:b7:22:76:66:e8:0f:
45:15:2b:43:df:e9:e5:4a:20:53:0f:76:b8:96:ca:5f:92:41:
12:c0:c3:53:31:38:1f:a9:8d:27:89:aa:c7:fa:c7:a2:26:b1:
96:32:39:b2:5f:ad:68:1f:81:11:14:01:9d:28:84:6d:7c:ca:
05:9b:a0:c5:f0:4e:cc:b2:25:b4:03:db:ed:cb:11:3e:2f:c4:
13:66:ab:32:96:ce:51:b1:7c:10:8f:04:6a:5e:ff:3b:41:34:
0e:a1:e1:81:3b:1c:8d:23:8b:82:ff:c7:5d:6d:5d:63:c4:81:
db:05:04:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 00:37:02 2025 by rpki-client