Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/2fc9674ff5f643253255da9c71a2c4f278e12667.roa
File: 2fc9674ff5f643253255da9c71a2c4f278e12667.roa (raw, json)
Hash identifier: sJabhk9sMsbx1CC7iPG5zpdU0cuabqDU+cOM+tA74nw=
Subject key identifier: A3:B9:C5:74:58:44:46:E6:A6:7F:18:75:F9:55:22:FA:0D:BD:2E:2C
Certificate issuer: /CN=529d28a5769af1e1987aada52d4d9ac3bec39b68
Certificate serial: 29E2D7
Authority key identifier: 43:76:7A:C8:B9:C4:46:E4:13:DD:A2:B5:C9:85:3A:17:68:A4:E1:C5
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/529d28a5769af1e1987aada52d4d9ac3bec39b68.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/2fc9674ff5f643253255da9c71a2c4f278e12667.roa
Signing time: Tue 30 Jan 2024 15:00:55 +0000
ROA not before: Tue 30 Jan 2024 15:00:49 +0000
ROA not after: Tue 30 Jan 2029 15:00:49 +0000
asID: 52444
IP address blocks: 200.123.56.0/23 maxlen: 24
200.123.56.0/23 maxlen: 24
200.123.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2745047 (0x29e2d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529d28a5769af1e1987aada52d4d9ac3bec39b68
Validity
Not Before: Jan 30 15:00:49 2024 GMT
Not After : Jan 30 15:00:49 2029 GMT
Subject: CN=2fc9674ff5f643253255da9c71a2c4f278e12667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:fa:39:29:52:51:7a:39:82:4e:39:e0:3c:03:
e5:a7:41:36:5c:73:04:1a:9f:99:be:43:46:8d:76:
22:45:03:5e:09:eb:42:15:93:66:21:f0:06:b9:c1:
0d:65:21:76:3d:d1:10:ea:a0:4f:56:9c:ee:0b:d1:
03:d8:8a:d5:d8:66:50:47:74:07:d4:d6:b8:12:b3:
3c:a8:05:9b:71:d5:3f:19:41:d7:e3:34:71:fe:7f:
b6:8d:f0:92:68:8d:30:f4:c6:4a:98:cb:ef:e0:e3:
d9:b6:b7:b1:16:e0:21:a0:d5:11:92:70:74:a3:74:
d2:e7:59:e2:00:6d:c8:a4:65:a0:b9:88:d9:ee:77:
88:f6:15:3e:15:1d:e0:3d:2a:b3:14:9d:75:25:56:
d0:6d:03:42:ae:8c:54:70:6c:ac:a9:ff:42:77:3e:
38:bf:7c:0b:f4:2c:2c:2d:ae:de:bf:35:c4:da:f8:
f2:31:3d:9c:b9:2c:30:e1:20:5b:dd:fd:c2:25:87:
8a:22:c5:55:34:6d:89:d2:f9:bd:22:03:e3:da:76:
45:04:3b:ac:06:f2:2a:bb:32:e7:5a:42:11:ef:3d:
9a:e0:c1:e7:1f:23:c9:88:36:71:80:5e:81:00:13:
bf:8c:63:72:48:ed:71:f6:a7:63:05:d0:f3:5d:2d:
00:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:B9:C5:74:58:44:46:E6:A6:7F:18:75:F9:55:22:FA:0D:BD:2E:2C
X509v3 Authority Key Identifier:
keyid:43:76:7A:C8:B9:C4:46:E4:13:DD:A2:B5:C9:85:3A:17:68:A4:E1:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/529d28a5769af1e1987aada52d4d9ac3bec39b68.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/2fc9674ff5f643253255da9c71a2c4f278e12667.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/38283047-8834-43d5-82f7-4d938e60571e/529d28a5769af1e1987aada52d4d9ac3bec39b68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.123.56.0-200.123.58.255
Signature Algorithm: sha256WithRSAEncryption
05:aa:c7:b5:71:4b:3d:00:8d:0c:58:ae:c2:5f:09:1c:2a:35:
38:1f:3f:5c:df:ad:75:84:ae:b0:91:b2:35:4b:81:29:ee:ca:
af:ad:48:b2:d3:28:89:34:48:b2:9a:38:10:f4:83:e8:95:df:
c5:79:23:c0:cd:2b:09:b1:4d:6f:e6:cb:fc:27:eb:7c:62:3a:
2b:61:50:fe:6c:e1:fb:d2:86:da:eb:d8:98:13:ef:3c:72:96:
22:1f:47:ba:27:ac:eb:86:33:73:0a:5e:dd:5f:cc:58:3d:b8:
36:7c:33:7d:42:8b:88:c5:78:76:ae:04:fb:f8:a0:84:cb:fd:
26:47:bb:8e:54:72:15:de:ab:93:a7:f2:2b:9c:f5:fb:f7:a9:
d8:03:33:bc:b8:87:8e:2c:77:b0:b2:0b:f1:5c:07:16:56:8f:
89:3a:c7:30:c9:2d:cf:fc:e8:12:8b:7a:8f:71:42:b2:7c:cd:
64:4f:02:08:00:8b:b1:88:5a:fc:97:6a:d3:9f:64:03:eb:00:
78:1e:e7:54:3d:87:68:bf:98:95:85:01:7a:4b:e3:bb:a0:35:
11:ae:cf:f8:95:ed:5f:c5:b9:56:60:fa:3a:d7:99:60:59:1c:
a8:e5:b2:8b:0a:22:16:2a:e1:42:6d:5e:66:47:02:75:c6:a0:
8e:c8:b8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 15 21:34:55 2024 by rpki-client on console-ams.rpki-client.org