Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/b859d75d4f7cf7e1b3ecb4e621512770cebab713.roa
File: b859d75d4f7cf7e1b3ecb4e621512770cebab713.roa (raw, json)
Hash identifier: iPuTZM9VsQDlNjTuvRrNZnjoMpjFw4kYIY/KjWYNZ8o=
Subject key identifier: 8E:6D:43:F5:0B:AC:C2:7A:E8:0C:8C:B5:AD:05:A9:68:F4:18:33:54
Certificate issuer: /CN=65c204767f404590bc5cf1ab5b3449ef14940fd0
Certificate serial: 2B306F
Authority key identifier: 2B:02:56:AA:9A:85:82:6B:BE:11:87:5E:57:72:BB:0B:00:D5:70:84
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/65c204767f404590bc5cf1ab5b3449ef14940fd0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/b859d75d4f7cf7e1b3ecb4e621512770cebab713.roa
Signing time: Thu 15 Feb 2024 21:18:40 +0000
ROA not before: Thu 15 Feb 2024 21:18:29 +0000
ROA not after: Thu 15 Feb 2029 21:18:29 +0000
asID: 28000
IP address blocks: 168.121.184.0/22 maxlen: 24
170.247.168.0/22 maxlen: 24
200.10.61.0/24 maxlen: 24
200.10.62.0/23 maxlen: 24
200.7.84.0/23 maxlen: 24
179.0.156.0/22 maxlen: 24
200.7.87.0/24 maxlen: 24
2001:13c7:7010::/46 maxlen: 48
2801:1b8::/44 maxlen: 48
2001:13c7:7001::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2830447 (0x2b306f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65c204767f404590bc5cf1ab5b3449ef14940fd0
Validity
Not Before: Feb 15 21:18:29 2024 GMT
Not After : Feb 15 21:18:29 2029 GMT
Subject: CN=b859d75d4f7cf7e1b3ecb4e621512770cebab713
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ea:2e:8d:5f:3a:71:a6:4b:63:a6:17:c9:04:
9c:f8:0e:dc:17:6d:ee:d6:f1:f2:20:15:53:d7:c1:
ea:b3:eb:6c:40:fd:e2:a7:9c:c9:3c:03:17:36:b1:
59:15:a2:b4:73:f0:fc:26:2f:2d:c3:a3:72:15:bb:
3d:d7:78:75:f2:95:0d:69:f2:45:81:c7:01:d5:06:
c8:f5:01:a4:73:03:73:f9:c5:23:75:08:18:66:84:
e5:d0:fe:83:61:76:88:40:c8:d4:fc:27:fd:3e:be:
f4:53:62:f9:bf:e5:20:8f:61:08:c9:cd:70:52:24:
9c:41:d5:47:25:fd:be:9a:1d:fb:22:b6:b2:6c:cf:
72:41:6f:61:3d:e6:2d:7a:51:05:f1:28:63:00:9b:
4a:ac:52:d3:be:13:17:16:43:08:49:15:b3:f9:64:
83:76:b4:80:93:82:7f:a0:eb:96:36:9d:f2:22:a7:
71:7c:1c:e0:4b:2e:fd:7f:6b:f0:cb:b2:70:7e:b6:
42:5a:36:4a:d4:e9:49:c2:06:29:ca:f7:fc:9d:e2:
40:9f:c1:b2:b6:a6:ef:57:a3:9d:eb:5c:61:0b:22:
3d:5b:8c:b8:8b:7b:24:84:75:cd:86:c6:7a:bf:b3:
cb:68:de:77:cc:4f:c4:2b:a7:83:76:af:eb:9e:68:
38:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:6D:43:F5:0B:AC:C2:7A:E8:0C:8C:B5:AD:05:A9:68:F4:18:33:54
X509v3 Authority Key Identifier:
keyid:2B:02:56:AA:9A:85:82:6B:BE:11:87:5E:57:72:BB:0B:00:D5:70:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/65c204767f404590bc5cf1ab5b3449ef14940fd0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/b859d75d4f7cf7e1b3ecb4e621512770cebab713.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/622c0c28-cc7d-421d-b45b-9ac2b7ced209/65c204767f404590bc5cf1ab5b3449ef14940fd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.184.0/22
170.247.168.0/22
179.0.156.0/22
200.7.84.0/23
200.7.87.0/24
200.10.61.0-200.10.63.255
IPv6:
2001:13c7:7001::/48
2001:13c7:7010::/46
2801:1b8::/44
Signature Algorithm: sha256WithRSAEncryption
95:93:24:52:0d:4b:5f:56:76:dd:fb:ec:86:cf:89:92:e6:8c:
c4:af:2d:5c:d0:b1:d7:7f:cd:08:39:1f:bd:bf:90:49:38:de:
12:62:04:03:aa:57:fa:f7:4c:ac:6b:2a:87:3a:26:28:91:cc:
1a:8b:35:57:47:c9:10:08:76:31:94:10:0e:8a:c7:d4:d4:58:
d5:3d:a8:0d:e4:9d:e6:75:91:ab:33:b2:30:f6:7b:dd:2e:f7:
b7:ff:10:15:c1:12:f6:1a:c0:b4:79:bd:ad:fd:85:89:33:92:
22:24:ca:e4:57:23:cb:2a:7c:47:cd:33:10:66:7e:f0:fa:9a:
b8:18:87:df:f6:dc:18:d4:1d:55:a9:70:aa:64:85:c7:bb:26:
90:5b:23:d0:ca:7d:ca:05:36:5d:8a:d3:8b:98:88:b3:c8:7c:
ef:21:91:25:d7:5f:a5:52:2b:f2:f7:5c:fc:e0:d3:90:7b:bb:
ec:7c:79:62:5e:11:e1:0e:3b:91:4d:a1:b9:45:02:2e:16:6a:
ec:b5:2b:9e:eb:57:e7:66:59:f0:d7:1b:b8:c7:ca:1c:5a:52:
25:7f:a2:e8:94:16:c1:99:2f:45:d5:6b:8b:24:16:1e:52:57:
8a:3e:bb:97:71:e5:5b:c8:6f:fc:0f:8e:21:68:0e:dc:dd:b0:
ac:7e:38:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:21 2024 by rpki-client on console-fra.rpki-client.org