Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/7dd2c100-dc30-40ac-85d2-5182570ac2be/989bc0855f90047c563dace00742a29b3c5778bb.roa
File: 989bc0855f90047c563dace00742a29b3c5778bb.roa (raw, json)
Hash identifier: JrFHDrcMFMxIZggG7hHDNv2ThJUf47crg+zYAGv+pEU=
Subject key identifier: 42:7A:52:4E:DF:DC:C2:B2:6E:78:5E:45:4D:FF:70:26:BA:2B:01:28
Certificate issuer: /CN=89b05c9212d6b33b390c81f3fc8958af7050b896
Certificate serial: 231600
Authority key identifier: C5:61:39:2E:B1:6D:D9:6D:FB:14:BF:C3:26:82:38:A8:E9:81:83:1E
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/89b05c9212d6b33b390c81f3fc8958af7050b896.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/7dd2c100-dc30-40ac-85d2-5182570ac2be/989bc0855f90047c563dace00742a29b3c5778bb.roa
Signing time: Wed 02 Aug 2023 19:37:16 +0000
ROA not before: Tue 01 Aug 2023 19:37:16 +0000
ROA not after: Sat 02 Aug 2025 19:37:16 +0000
asID: 52423
IP address blocks: 160.223.203.0/24 maxlen: 24
199.60.215.0/24 maxlen: 24
168.197.96.0/24 maxlen: 24
168.197.98.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2299392 (0x231600)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89b05c9212d6b33b390c81f3fc8958af7050b896
Validity
Not Before: Aug 1 19:37:16 2023 GMT
Not After : Aug 2 19:37:16 2025 GMT
Subject: CN=989bc0855f90047c563dace00742a29b3c5778bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:11:04:fe:26:8f:95:4b:a6:b9:ca:b4:6f:b4:
68:8b:9a:40:f1:b3:bc:31:92:b4:ab:27:ab:9e:46:
f4:bb:0d:59:57:96:a8:de:a7:b2:93:e9:08:b5:a1:
41:4b:5b:0f:85:bf:27:2e:ab:fc:08:8d:74:fd:03:
66:bf:46:d6:60:f0:33:95:77:a2:ea:b7:d4:91:06:
38:8f:06:6f:63:f6:25:b6:73:f6:2c:6f:9b:be:7e:
e0:a8:53:1b:92:5b:f8:fc:fb:81:48:59:73:6b:43:
8c:51:dd:c9:98:21:d8:7a:fa:a6:5b:e0:3a:10:0c:
76:33:0e:f8:95:94:b3:77:c9:32:2f:ff:97:4d:0d:
b0:25:35:63:71:0b:b2:90:f1:8e:11:82:54:12:0c:
15:2d:40:ec:e4:b1:46:b5:05:52:2c:c9:c1:af:ad:
08:64:04:7d:57:f0:ce:04:65:f1:80:76:03:45:23:
5c:6d:35:a9:62:fb:03:f1:04:a0:f7:fc:70:ef:d6:
07:38:84:46:69:97:b8:b4:67:a6:68:33:f2:36:0f:
31:df:49:68:4b:ac:71:71:a3:85:23:54:1d:82:26:
6b:7d:79:c8:fb:59:62:10:f6:8b:3a:a9:7e:92:28:
b6:16:e4:78:e4:aa:4d:e4:2d:99:8a:94:6d:bc:65:
c6:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:7A:52:4E:DF:DC:C2:B2:6E:78:5E:45:4D:FF:70:26:BA:2B:01:28
X509v3 Authority Key Identifier:
keyid:C5:61:39:2E:B1:6D:D9:6D:FB:14:BF:C3:26:82:38:A8:E9:81:83:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/89b05c9212d6b33b390c81f3fc8958af7050b896.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/7dd2c100-dc30-40ac-85d2-5182570ac2be/989bc0855f90047c563dace00742a29b3c5778bb.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/7dd2c100-dc30-40ac-85d2-5182570ac2be/89b05c9212d6b33b390c81f3fc8958af7050b896.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.223.203.0/24
168.197.96.0/24
168.197.98.0/23
199.60.215.0/24
Signature Algorithm: sha256WithRSAEncryption
10:3d:29:c0:dc:69:9f:6e:99:d4:17:1d:44:68:9d:86:44:dc:
10:b0:d3:5e:46:23:5e:b5:9d:29:37:9c:81:22:ac:42:18:83:
33:15:12:cb:fd:55:d5:2c:49:22:b6:bf:4b:87:f5:5e:6b:8e:
01:2c:f0:b9:89:98:55:ae:1d:a9:2e:af:cc:b3:4c:7c:9a:5a:
f6:4c:69:4b:c9:22:1e:8f:70:11:07:35:b8:4f:1b:aa:7a:ff:
39:f8:37:1d:12:18:e7:9c:ad:5b:1e:08:47:51:e2:e3:32:3c:
10:f9:fb:25:f9:b2:41:df:c9:b3:05:bf:1a:1d:67:c9:c8:12:
18:9f:97:31:6c:a9:92:18:10:bc:75:a0:88:04:af:39:2f:92:
91:10:1b:d3:57:79:75:3e:14:5c:46:bc:d5:5f:57:5c:b3:29:
ae:7f:86:d9:84:23:e0:cf:1e:bb:19:e6:8d:3a:14:bf:cf:33:
35:64:2e:69:35:19:b0:72:6d:03:11:38:31:27:57:bb:ea:9e:
b7:fb:83:2d:ae:af:56:c8:b4:f0:90:57:07:2e:49:fd:7a:25:
de:8b:36:90:58:92:bc:48:cd:a7:28:c0:d6:a5:12:ca:fc:33:
f5:bc:76:37:ef:70:34:d0:f8:87:8a:84:f6:34:e9:35:89:60:
07:a7:ab:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:23 2024 by rpki-client on console-fra.rpki-client.org