Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/48450b10-d61a-4251-a09c-4e42a7baf918/bfa2fecf83f41b7d6a8f0ebbc89626648b4b5e8c.roa
File: bfa2fecf83f41b7d6a8f0ebbc89626648b4b5e8c.roa (raw, json)
Hash identifier: VGs06NQZsrKK9SOhmnF7UoO2s6Cw5VAeEpapl3buSp0=
Subject key identifier: 74:BB:9B:9D:7A:86:C1:34:D9:3C:AD:B3:BB:E1:55:C0:D9:C2:82:CE
Certificate issuer: /CN=4256d043f0685eb4086d27801ca57dd4e1fc8876
Certificate serial: 273A67
Authority key identifier: 17:B5:19:33:05:4E:93:5C:93:B3:2E:C4:E7:53:D5:8E:BC:CB:AE:C3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4256d043f0685eb4086d27801ca57dd4e1fc8876.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/48450b10-d61a-4251-a09c-4e42a7baf918/bfa2fecf83f41b7d6a8f0ebbc89626648b4b5e8c.roa
Signing time: Sat 06 Apr 2024 15:52:49 +0000
ROA not before: Sat 06 Apr 2024 15:52:49 +0000
ROA not after: Mon 06 Apr 2026 15:52:49 +0000
asID: 264760
IP address blocks: 168.194.216.0/22 maxlen: 24
2803:20c0::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2570855 (0x273a67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4256d043f0685eb4086d27801ca57dd4e1fc8876
Validity
Not Before: Apr 6 15:52:49 2024 GMT
Not After : Apr 6 15:52:49 2026 GMT
Subject: CN=bfa2fecf83f41b7d6a8f0ebbc89626648b4b5e8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:29:60:20:96:e0:92:dd:2f:b1:fd:7f:96:90:
bd:70:2d:72:65:24:72:63:a4:6f:15:bb:fe:47:35:
58:e6:df:de:c9:09:03:a9:1a:72:2d:fb:8b:62:c0:
f9:83:68:9f:d4:64:8d:57:73:e8:7a:46:d4:84:41:
c2:14:59:75:eb:ba:20:77:7d:e2:d7:6b:51:b3:16:
62:01:97:a2:c2:9a:f2:e2:9b:d5:50:a4:2e:73:bf:
c1:e8:0c:cc:9a:b2:4d:2c:46:93:df:e6:c9:aa:01:
46:aa:ba:dd:4b:c8:79:88:f5:b1:ef:2c:b0:ab:21:
59:16:09:64:65:95:d7:86:e1:8f:ff:95:42:8e:c1:
27:9a:37:b7:a0:ae:ca:b2:0d:3c:fc:81:a5:ac:c3:
92:3a:11:10:e8:19:a6:2f:31:d0:be:a8:9a:82:29:
61:7f:77:f8:d5:d8:54:f2:81:a1:66:b6:f0:01:ea:
79:8d:d1:e6:5f:82:4f:84:a5:08:e0:e8:8f:9a:b9:
82:dd:59:39:05:e4:66:c4:79:02:8a:ec:c2:e6:de:
4e:d8:56:5f:62:71:60:f8:94:ba:a8:f4:35:82:17:
ff:38:ca:6c:d5:42:94:e5:84:9e:ca:6b:c7:d8:8d:
7a:f9:46:b2:2b:4a:0f:ec:f8:f7:d5:6c:d8:78:45:
da:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:BB:9B:9D:7A:86:C1:34:D9:3C:AD:B3:BB:E1:55:C0:D9:C2:82:CE
X509v3 Authority Key Identifier:
keyid:17:B5:19:33:05:4E:93:5C:93:B3:2E:C4:E7:53:D5:8E:BC:CB:AE:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/4256d043f0685eb4086d27801ca57dd4e1fc8876.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/48450b10-d61a-4251-a09c-4e42a7baf918/bfa2fecf83f41b7d6a8f0ebbc89626648b4b5e8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/48450b10-d61a-4251-a09c-4e42a7baf918/4256d043f0685eb4086d27801ca57dd4e1fc8876.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.194.216.0/22
IPv6:
2803:20c0::/32
Signature Algorithm: sha256WithRSAEncryption
17:4a:0a:b8:7c:ec:1c:7f:3c:0f:60:5f:98:ba:b3:d2:81:f4:
e7:ec:e2:fb:ee:db:56:61:e4:ca:a4:0b:69:93:a1:db:8c:d8:
94:bd:b2:f0:a4:50:b9:ba:b3:a0:36:46:80:20:bb:02:cd:9b:
26:8f:7d:83:ec:db:69:a0:76:12:5f:53:80:44:b4:9b:ec:bd:
2c:06:17:7d:ab:f0:99:00:2b:12:42:d1:34:4c:2d:61:8a:fd:
44:c9:6c:72:33:fd:2f:de:f4:a6:cb:b7:89:fa:72:71:7a:44:
74:9a:89:23:14:cb:34:2b:a3:77:28:df:48:52:af:4d:2e:e1:
fd:0e:a7:c4:e1:21:54:7a:69:7d:67:f2:d7:70:71:f6:b7:fd:
d9:8c:07:95:cb:49:a7:8a:96:82:72:ec:61:67:0d:d5:18:8e:
9d:5c:69:23:ec:f7:e2:e7:fd:ae:f0:b8:a8:30:d4:d3:c7:5c:
75:09:6f:61:da:e5:03:48:13:e1:93:50:08:82:d1:0c:06:f9:
4b:d3:24:12:6d:5b:c2:2a:82:ea:9e:12:e8:75:7d:79:7e:11:
50:78:70:28:ab:ce:62:5d:e5:f7:73:dc:9c:28:46:02:86:6e:
65:d2:97:de:6f:be:8e:05:bd:5d:d7:2e:9a:c9:94:9f:dd:bc:
9a:a3:12:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:05 2024 by rpki-client on console-fra.rpki-client.org