Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/04d0b1e3-b3fb-4263-8248-a07e67e9f793/bf6be8d99aeeb57a5c4be87a25000146a9aea4fd.roa
File: bf6be8d99aeeb57a5c4be87a25000146a9aea4fd.roa (raw, json)
Hash identifier: nid6qIxjuqHFJVuAx7Cu5qY4XGyWQdzO8oBEQl7jJo4=
Subject key identifier: 70:B2:88:1C:E5:9C:CE:83:A6:E1:DD:32:47:21:4B:B9:57:55:E8:03
Certificate issuer: /CN=b13d071b46d68829a9388770c45592a3ff309e4d
Certificate serial: 12E4AE
Authority key identifier: 53:06:7D:1B:30:6C:8B:4B:9C:94:07:FA:69:06:D8:74:8F:A6:DF:86
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b13d071b46d68829a9388770c45592a3ff309e4d.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/04d0b1e3-b3fb-4263-8248-a07e67e9f793/bf6be8d99aeeb57a5c4be87a25000146a9aea4fd.roa
Signing time: Tue 29 Mar 2022 01:27:02 +0000
ROA not before: Mon 28 Mar 2022 03:00:00 +0000
ROA not after: Thu 28 Mar 2024 03:00:00 +0000
asID: 52409
IP address blocks: 45.191.84.0/22 maxlen: 24
2803:ece0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1238190 (0x12e4ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b13d071b46d68829a9388770c45592a3ff309e4d
Validity
Not Before: Mar 28 03:00:00 2022 GMT
Not After : Mar 28 03:00:00 2024 GMT
Subject: CN=bf6be8d99aeeb57a5c4be87a25000146a9aea4fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:be:d6:77:c4:9e:3d:4b:b9:62:ff:a1:19:3b:
71:0d:f1:7d:ed:16:bb:83:8c:69:98:01:87:10:2f:
bd:d6:1c:5e:6c:df:52:a0:4b:10:3e:0b:ad:83:19:
34:5d:87:67:64:b6:a0:ed:8d:3c:d5:bd:7c:b6:d0:
af:18:09:45:b7:2b:86:4d:e7:a6:26:49:31:7e:c9:
62:30:c2:26:64:aa:21:1a:38:ef:ff:9b:57:bf:c0:
a0:cd:b6:89:84:d3:40:65:1b:5b:ef:ad:1e:f2:ff:
e1:0a:14:ac:57:25:29:c1:11:3e:c5:5e:f1:73:7a:
56:86:bc:6b:20:59:26:b0:5d:09:56:9f:24:33:07:
73:2e:a7:74:34:71:a8:89:7f:ae:c9:da:2d:67:53:
91:b2:0f:a6:1c:83:de:14:e2:1b:00:b3:11:e5:e0:
b5:25:b3:c6:83:2a:37:77:17:df:a4:8f:70:5d:88:
36:fe:1f:60:7b:9f:b3:d9:19:51:d6:76:b6:f9:d7:
cb:e4:2d:5a:41:72:9c:d1:95:39:79:45:4b:58:3f:
00:0a:a4:cb:91:e9:38:ee:75:62:be:68:11:17:fb:
83:7a:f1:65:ff:74:ec:b0:2f:2e:80:ff:51:74:93:
38:04:5c:a0:ea:3e:51:12:fa:c4:83:ce:75:34:7e:
d3:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B2:88:1C:E5:9C:CE:83:A6:E1:DD:32:47:21:4B:B9:57:55:E8:03
X509v3 Authority Key Identifier:
keyid:53:06:7D:1B:30:6C:8B:4B:9C:94:07:FA:69:06:D8:74:8F:A6:DF:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/b13d071b46d68829a9388770c45592a3ff309e4d.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/04d0b1e3-b3fb-4263-8248-a07e67e9f793/bf6be8d99aeeb57a5c4be87a25000146a9aea4fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/04d0b1e3-b3fb-4263-8248-a07e67e9f793/b13d071b46d68829a9388770c45592a3ff309e4d.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.191.84.0/22
IPv6:
2803:ece0::/32
Signature Algorithm: sha256WithRSAEncryption
72:76:09:ad:9c:c5:47:63:e1:da:38:77:47:d1:33:4e:eb:4e:
8e:0a:8c:67:bf:2e:bd:d9:30:b1:e4:b6:1e:90:e4:57:39:f2:
cf:50:4a:6d:53:16:5a:04:16:c4:01:aa:44:8e:76:c2:ac:f0:
f2:d8:8a:9d:bb:b9:b8:4d:61:0b:69:cc:c7:92:dc:46:07:9d:
37:e3:3f:6c:fc:9e:92:d6:72:45:f9:97:64:f6:47:1b:59:12:
93:95:fb:99:54:33:74:2f:c4:29:0a:e6:36:79:c7:b0:02:55:
49:43:4b:08:b2:c8:35:de:d9:13:7b:85:5b:fe:94:c1:32:6d:
e2:ad:7f:f4:28:0d:bc:cf:d9:dd:df:d0:eb:1c:10:e5:73:25:
cb:a5:1e:ee:84:31:3a:d3:a9:e0:3e:93:78:91:5a:41:a1:73:
be:d8:e8:58:f8:5a:ba:df:da:00:ea:36:63:e1:05:1a:f0:18:
84:70:fa:a4:97:a9:7e:3a:ce:d3:4d:ad:b4:d1:30:a7:d7:87:
d1:db:fa:63:01:e6:c0:30:4c:50:0c:f6:44:1d:dc:f3:da:d7:
43:4e:23:73:aa:9f:bb:fa:0e:9a:f4:a8:ae:62:ee:af:24:c2:
07:75:ed:a0:11:56:d0:48:b2:68:da:0a:ae:3d:97:a2:07:52:
d7:3d:32:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:55 2024 by rpki-client on console-ams.rpki-client.org