Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/27644c4f-083b-4264-a95f-89b13ee1dd66/d08fce8f4eb57b3c695d2b25318666b97baa13bc.roa
File: d08fce8f4eb57b3c695d2b25318666b97baa13bc.roa (raw, json)
Hash identifier: hEjhbpCKXb9j5aiFAaIn3seD8XFxSEEVOcyvB/mSdeU=
Subject key identifier: 83:85:5D:93:00:D1:28:20:19:82:3A:64:AA:C8:1E:70:87:06:CA:7D
Certificate issuer: /CN=2ee860d7ae057539e895d1293eae7aad56d34c53
Certificate serial: 27879A
Authority key identifier: 46:38:C8:83:DB:1C:FA:4A:03:22:D2:2B:65:57:8B:1B:34:5D:7A:91
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ee860d7ae057539e895d1293eae7aad56d34c53.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/27644c4f-083b-4264-a95f-89b13ee1dd66/d08fce8f4eb57b3c695d2b25318666b97baa13bc.roa
Signing time: Mon 26 Feb 2024 20:50:32 +0000
ROA not before: Mon 26 Feb 2024 20:50:32 +0000
ROA not after: Thu 26 Feb 2026 20:50:32 +0000
asID: 271949
IP address blocks: 128.201.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2590618 (0x27879a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee860d7ae057539e895d1293eae7aad56d34c53
Validity
Not Before: Feb 26 20:50:32 2024 GMT
Not After : Feb 26 20:50:32 2026 GMT
Subject: CN=d08fce8f4eb57b3c695d2b25318666b97baa13bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3b:b0:24:9b:a0:b3:a8:7d:4e:4b:4b:4e:32:
e6:d8:4f:cc:16:8c:5a:ab:f0:53:da:8f:3f:1e:50:
3e:02:88:02:57:8b:e5:50:bd:78:f3:48:b2:82:5f:
f3:24:9c:3b:29:ea:63:e4:0f:b5:e1:d4:10:cf:a6:
91:03:87:79:a1:e6:82:26:fa:63:49:33:59:cd:b9:
5c:cf:eb:a8:b9:a1:5d:88:ae:79:6b:d3:77:a3:9d:
e3:3f:f6:0a:34:70:d8:ff:b1:70:1a:28:21:12:d3:
21:5f:43:a2:26:51:be:c9:b3:6d:38:54:a4:e0:7b:
25:95:29:d5:71:fa:f4:25:d2:02:50:13:55:dd:40:
b1:53:73:38:41:9d:cd:b0:84:6a:bf:c6:72:85:4f:
0f:bc:72:41:b0:1a:8c:28:d7:c9:ef:5e:a8:96:26:
41:32:23:82:49:f5:46:d3:dd:56:e2:3c:0f:8d:f2:
09:80:d0:32:b6:61:64:c1:07:0a:82:cc:46:1c:eb:
5e:72:f0:90:e7:01:c0:76:b0:da:41:8c:57:28:6b:
61:55:a6:70:de:cf:e8:b5:c7:0b:48:53:9e:55:eb:
2f:64:85:00:40:0a:55:d4:97:ac:b3:e1:cf:dd:5c:
9c:89:b6:bd:01:d6:69:bb:11:f5:95:29:b4:6f:03:
5e:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:85:5D:93:00:D1:28:20:19:82:3A:64:AA:C8:1E:70:87:06:CA:7D
X509v3 Authority Key Identifier:
keyid:46:38:C8:83:DB:1C:FA:4A:03:22:D2:2B:65:57:8B:1B:34:5D:7A:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ee860d7ae057539e895d1293eae7aad56d34c53.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/27644c4f-083b-4264-a95f-89b13ee1dd66/d08fce8f4eb57b3c695d2b25318666b97baa13bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/27644c4f-083b-4264-a95f-89b13ee1dd66/2ee860d7ae057539e895d1293eae7aad56d34c53.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.201.171.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:86:17:94:71:32:b7:59:aa:1a:f0:b0:3d:9f:b0:24:e7:fb:
11:21:9e:e5:b9:39:49:aa:4e:22:7d:34:d8:e1:33:4e:89:c4:
b4:86:ea:8a:e0:fd:e5:c0:23:40:9a:7f:12:4d:cd:97:01:f3:
18:c5:27:09:b4:80:1b:0f:be:13:96:50:cb:d5:8d:a0:b5:37:
c3:00:a3:ae:36:eb:30:d7:7c:83:e7:d3:fb:3d:65:30:95:01:
21:3c:aa:1d:18:80:45:1f:97:21:05:d4:e1:48:5b:42:5f:1a:
df:ec:fd:3e:2a:0a:a6:ff:5a:aa:d4:d1:2c:ee:8e:b8:82:5a:
fc:7d:e5:13:f7:35:3f:c5:0a:46:01:69:4e:50:04:0c:d5:b8:
75:42:f0:19:25:76:40:1c:fd:d0:7e:2a:f3:83:80:2e:b5:be:
5f:fb:c4:4b:00:6b:55:0c:e3:56:dc:88:89:cd:95:77:7b:93:
49:aa:7c:01:9f:97:2a:a9:16:1b:17:74:88:f6:b8:9d:25:03:
4a:3c:bb:19:95:79:57:58:a8:21:b1:42:22:b3:e6:a8:e2:7c:
b4:96:b5:02:4d:6b:40:e3:f2:33:3e:86:1c:69:7e:87:e8:f3:
ac:1e:9e:49:28:e7:fb:46:6f:05:d4:0f:aa:0e:0a:a8:8c:21:
bc:47:06:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:03 2024 by rpki-client on console-fra.rpki-client.org