Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/E836823D6693BDB4357836FFB06AAAF827FA7A4A5AACA8B5F1FF56C9645F6D72/0/323830313a31393a623830303a3a2f34382d3438203d3e203634313533.roa
File: 323830313a31393a623830303a3a2f34382d3438203d3e203634313533.roa (raw, json)
Hash identifier: 2dVIDZ1b0I56tiWgujqpF9fSHh5T8j/37o+2gqrKmus=
Subject key identifier: 0F:3E:CF:10:9E:AC:87:6B:ED:B4:3B:63:6D:22:2D:07:90:27:9A:1F
Certificate issuer: /CN=CDC77A42763441C41428797EE5B764FBCD7AF57E
Certificate serial: 4821E09024BC2F957CFD789F40F279D026ACB598
Authority key identifier: CD:C7:7A:42:76:34:41:C4:14:28:79:7E:E5:B7:64:FB:CD:7A:F5:7E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CDC77A42763441C41428797EE5B764FBCD7AF57E.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/E836823D6693BDB4357836FFB06AAAF827FA7A4A5AACA8B5F1FF56C9645F6D72/0/323830313a31393a623830303a3a2f34382d3438203d3e203634313533.roa
Signing time: Tue 05 Mar 2024 17:41:25 +0000
ROA not before: Tue 05 Mar 2024 17:36:25 +0000
ROA not after: Tue 04 Mar 2025 17:41:25 +0000
asID: 64153
IP address blocks: 2801:19:b800::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:21:e0:90:24:bc:2f:95:7c:fd:78:9f:40:f2:79:d0:26:ac:b5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CDC77A42763441C41428797EE5B764FBCD7AF57E
Validity
Not Before: Mar 5 17:36:25 2024 GMT
Not After : Mar 4 17:41:25 2025 GMT
Subject: CN=0F3ECF109EAC876BEDB43B636D222D0790279A1F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:23:c8:2b:11:6d:82:05:3c:fe:1e:53:43:d4:
2a:ad:11:0f:1a:f3:64:66:f5:84:48:ca:fe:6a:5f:
41:d3:00:2d:65:3f:5b:eb:4a:27:d7:2d:9e:be:4a:
b4:32:fa:c5:9b:9b:90:94:2e:e5:c2:48:7a:8a:2e:
8f:2a:65:d0:ac:31:c0:7b:cd:9e:78:df:8e:51:61:
2a:ab:77:70:e4:7a:9c:26:c1:be:02:91:33:1b:45:
0c:43:09:76:2d:f6:f6:1e:fc:cf:17:6a:b3:d7:f3:
77:2d:2e:31:22:d2:e2:60:83:05:e3:47:7a:b7:c5:
59:05:88:df:61:53:72:ef:3e:b6:19:d9:00:87:af:
3d:90:23:c8:44:f9:9f:c1:7a:dc:7f:ed:2f:70:9b:
b8:c6:1b:03:dd:bc:1b:63:7f:a8:90:6f:b3:2a:1b:
cf:e5:42:0e:54:c3:3a:ef:5c:36:b5:9e:7e:8a:d5:
0c:49:5d:0e:ce:61:82:43:f5:17:8a:90:d0:36:4b:
11:ff:e6:f0:82:ac:b7:ce:db:4d:d3:28:8d:76:27:
21:b7:60:8b:fc:ec:57:d8:c3:a2:d9:d1:4e:00:ce:
dd:1b:ce:ac:35:3b:27:7c:99:cd:c1:83:ed:4d:68:
6b:93:51:b3:80:13:69:42:e2:fd:fa:1a:db:6b:ea:
e9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:3E:CF:10:9E:AC:87:6B:ED:B4:3B:63:6D:22:2D:07:90:27:9A:1F
X509v3 Authority Key Identifier:
keyid:CD:C7:7A:42:76:34:41:C4:14:28:79:7E:E5:B7:64:FB:CD:7A:F5:7E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/E836823D6693BDB4357836FFB06AAAF827FA7A4A5AACA8B5F1FF56C9645F6D72/0/CDC77A42763441C41428797EE5B764FBCD7AF57E.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/CDC77A42763441C41428797EE5B764FBCD7AF57E.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/E836823D6693BDB4357836FFB06AAAF827FA7A4A5AACA8B5F1FF56C9645F6D72/0/323830313a31393a623830303a3a2f34382d3438203d3e203634313533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2801:19:b800::/48
Signature Algorithm: sha256WithRSAEncryption
40:4e:ba:5d:57:f7:8f:50:d2:62:a6:f8:6e:aa:01:ba:02:f5:
e6:8a:5a:79:8d:d1:04:30:45:3c:f9:82:17:e6:52:3b:f5:59:
22:c2:2e:6d:cc:49:0c:de:03:2e:d9:6c:62:9d:b2:23:99:1c:
2a:6a:02:15:1d:04:33:c7:fc:7e:73:7c:8c:3f:a9:17:fe:40:
3e:3a:a2:15:15:ea:6f:35:1e:b6:89:5c:10:f7:75:94:63:b2:
28:46:c8:f1:f8:b3:12:6a:a3:c3:7b:d2:ea:2d:6e:06:b8:5d:
9c:2d:33:a6:83:e5:ed:9d:19:f6:79:d6:f0:25:15:18:7a:26:
06:81:14:22:e1:57:0a:34:31:4d:0a:c1:87:54:bc:59:12:87:
2e:f2:1a:62:5b:1d:ec:a4:51:f8:a1:e8:c2:ba:c1:7e:08:21:
60:ae:0b:8e:e7:82:2d:d9:57:96:6b:49:e4:73:f3:be:7f:f6:
56:46:7e:39:cd:4a:e4:cd:3d:2b:8e:84:7f:a8:b6:4b:29:33:
49:74:26:d3:25:db:e9:fb:f7:c3:fe:fa:53:92:47:39:e8:3d:
1f:2d:3e:83:29:ea:14:6a:57:2e:7d:13:3c:f0:08:e5:bb:92:
55:4a:32:f5:0e:62:3d:51:07:4a:2f:e8:82:56:74:85:53:e2:
7b:86:47:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 1 23:14:03 2024 by rpki-client on console-fra.rpki-client.org