Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/948f5704-fd57-4b83-8a72-60596ce663f0/b256ffaed133985c713f15cabaafc88336edb1f8.roa
File: b256ffaed133985c713f15cabaafc88336edb1f8.roa (raw, json)
Hash identifier: xPi7Jg9daMZV5Kj4jgI0UZwOWCa9JN0+v1eTwYH+g/g=
Subject key identifier: 78:F7:6B:B1:46:3C:CC:6F:7D:9B:F6:F9:24:DD:7D:74:B3:4F:0F:85
Certificate issuer: /CN=ff66ce057bfc23ceec4ccae09b8a304bfc677e65
Certificate serial: 0C0F9B
Authority key identifier: 5C:A1:6A:8C:61:0B:6F:62:35:01:7E:7C:6A:1C:52:8C:CD:80:BF:1F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff66ce057bfc23ceec4ccae09b8a304bfc677e65.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/948f5704-fd57-4b83-8a72-60596ce663f0/b256ffaed133985c713f15cabaafc88336edb1f8.roa
Signing time: Wed 24 Mar 2021 14:33:19 +0000
ROA not before: Wed 24 Mar 2021 14:33:19 +0000
ROA not after: Tue 24 Mar 2026 14:33:19 +0000
asID: 267717
IP address blocks: 45.165.168.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 790427 (0xc0f9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff66ce057bfc23ceec4ccae09b8a304bfc677e65
Validity
Not Before: Mar 24 14:33:19 2021 GMT
Not After : Mar 24 14:33:19 2026 GMT
Subject: CN=b256ffaed133985c713f15cabaafc88336edb1f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4b:54:f9:1a:f7:3c:8b:82:3a:f3:66:0f:7d:
1a:5d:1b:12:7a:8b:17:3b:c5:51:3e:79:21:61:9e:
a7:7a:87:e3:b7:f4:82:be:64:55:ce:5b:6c:b0:f0:
86:fe:dd:ea:f6:99:a4:15:89:4f:49:2c:f5:9c:1e:
ab:b4:e3:77:e9:b7:58:bc:3f:73:d9:25:d9:22:19:
78:3f:a0:53:ae:4b:f8:55:d7:79:a0:7d:b5:84:37:
7c:07:78:b4:07:65:fc:30:4b:42:bc:fc:da:91:d3:
d4:4d:70:8d:fa:4b:9f:95:d1:50:55:94:83:a0:e1:
c8:34:6a:aa:40:89:98:05:ea:08:8c:b5:a0:b3:49:
ba:cc:14:06:6e:74:df:63:39:b1:e2:cf:1d:1b:ca:
58:6d:b2:0a:68:10:a6:94:91:75:80:74:df:a0:8a:
fe:9c:a4:fd:93:6f:66:63:9d:89:fc:0a:6d:50:5c:
2e:19:69:34:cb:01:5e:1c:8c:5c:13:ae:4e:17:c9:
7f:f4:c6:1c:fa:67:69:d1:60:12:04:59:39:bf:73:
f6:a6:f0:e6:e4:17:d2:a4:1b:8f:e6:b6:3d:1a:ac:
a0:60:c0:89:ee:da:64:73:c2:9f:05:46:91:82:e2:
88:cd:81:1c:38:1c:d4:e3:3b:54:10:d6:4e:21:d3:
3e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F7:6B:B1:46:3C:CC:6F:7D:9B:F6:F9:24:DD:7D:74:B3:4F:0F:85
X509v3 Authority Key Identifier:
keyid:5C:A1:6A:8C:61:0B:6F:62:35:01:7E:7C:6A:1C:52:8C:CD:80:BF:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ff66ce057bfc23ceec4ccae09b8a304bfc677e65.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/948f5704-fd57-4b83-8a72-60596ce663f0/b256ffaed133985c713f15cabaafc88336edb1f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/948f5704-fd57-4b83-8a72-60596ce663f0/ff66ce057bfc23ceec4ccae09b8a304bfc677e65.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.165.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1f:ee:29:72:7c:22:41:10:f4:ca:c7:71:52:40:72:89:84:55:
c9:b2:d7:68:21:98:b2:b7:44:80:27:4f:8d:7e:c6:3c:28:f4:
3f:fc:09:be:65:76:34:0f:03:0c:6b:e1:cb:2d:1d:4f:d8:72:
4c:98:84:f2:d6:e6:c7:8d:5d:bc:65:1c:14:f9:c2:b2:74:47:
87:f5:b1:34:4b:0e:73:d0:ea:3b:2f:59:3f:f0:de:d8:ae:e4:
45:c7:f9:0d:4f:ce:27:5b:61:06:31:a8:0e:1c:58:da:f7:d9:
5a:f5:de:a6:15:65:ae:67:18:49:29:bc:ce:2a:59:08:42:2e:
cf:a8:16:1c:5d:2d:08:92:dd:c9:70:66:5b:5e:48:cf:70:f9:
bd:07:42:5c:ef:3b:cc:3d:17:cf:ee:b0:57:ad:7f:b3:cd:71:
80:b4:6b:b2:97:1b:27:b6:22:ac:b6:ca:f9:f8:45:39:48:cb:
32:45:6d:b3:86:67:62:3d:59:d8:59:2e:80:2d:62:ef:b4:72:
91:dd:a4:76:90:f7:0f:aa:fd:8f:14:95:4a:6a:95:ad:4a:09:
79:26:43:5b:30:4e:30:00:43:47:8b:26:e5:11:72:96:5b:bc:
29:60:36:24:ec:a7:53:90:1c:b5:61:d7:6e:c9:c2:68:2f:bc:
40:e1:69:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:24 2024 by rpki-client on console-fra.rpki-client.org