Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/7c2964e68eac52aca2a6dc9d4650068f5c5b3588.roa
File: 7c2964e68eac52aca2a6dc9d4650068f5c5b3588.roa (raw, json)
Hash identifier: RYCmBbZAgtVZ7cN7ID8a137GU2peQYydBwSOsUbL7s8=
Subject key identifier: 39:4C:B2:A9:9F:63:01:C3:5B:8C:76:4D:21:87:F0:2B:7F:8C:FF:35
Certificate issuer: /CN=40bb0835e54e95f61d1b3f21a5df4b4b8f23450a
Certificate serial: 25260A
Authority key identifier: DC:DA:82:3A:0B:BC:C7:66:50:2B:14:89:E0:A3:8C:CD:4F:BE:51:C4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/40bb0835e54e95f61d1b3f21a5df4b4b8f23450a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/7c2964e68eac52aca2a6dc9d4650068f5c5b3588.roa
Signing time: Sun 22 Oct 2023 16:24:43 +0000
ROA not before: Sun 22 Oct 2023 16:24:42 +0000
ROA not after: Wed 22 Oct 2025 16:24:42 +0000
asID: 269918
IP address blocks: 131.72.168.0/24 maxlen: 24
131.72.169.0/24 maxlen: 24
131.72.170.0/24 maxlen: 24
131.72.171.0/24 maxlen: 24
2803:dd80::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2434570 (0x25260a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bb0835e54e95f61d1b3f21a5df4b4b8f23450a
Validity
Not Before: Oct 22 16:24:42 2023 GMT
Not After : Oct 22 16:24:42 2025 GMT
Subject: CN=7c2964e68eac52aca2a6dc9d4650068f5c5b3588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:92:b6:09:e1:0d:90:39:2e:8c:c5:ed:af:ef:
28:63:eb:8d:b0:c6:a1:7a:11:f1:f9:1d:70:1d:47:
38:30:a3:e0:9e:78:fb:a8:21:be:72:b7:a7:28:65:
dd:5a:25:89:ba:ee:ea:07:8b:89:92:75:1e:a2:98:
71:b8:c0:3e:f6:8b:53:ed:d7:d6:02:15:30:52:b6:
27:23:b2:e2:08:d6:90:63:33:43:79:45:a9:12:04:
cf:df:70:01:2a:28:1c:47:72:b7:8e:f6:42:6f:b8:
82:2b:0f:d9:57:13:55:2f:67:be:c8:7f:37:98:c1:
cb:00:91:3d:b9:0a:12:6c:5c:40:ce:c9:6b:ca:02:
0f:40:16:e4:38:03:57:7b:29:16:c3:0e:19:84:46:
a8:4c:3d:3f:5c:6e:e0:f5:5d:53:8c:d5:9f:ba:ae:
5b:87:d3:c5:c3:a5:e8:3a:5b:83:70:3f:05:f1:78:
b7:fb:95:c8:c6:7b:94:0b:c9:10:1d:8b:3e:34:13:
99:13:ed:95:79:be:68:a9:87:ea:e6:8b:80:7b:a6:
81:bf:2f:bc:a8:df:df:99:07:35:d2:0f:a8:18:db:
63:4f:d5:cf:f3:6e:98:e6:d8:b5:bf:31:08:75:55:
3e:13:9a:b9:04:98:50:f3:b6:2a:bd:02:a6:26:10:
b4:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:4C:B2:A9:9F:63:01:C3:5B:8C:76:4D:21:87:F0:2B:7F:8C:FF:35
X509v3 Authority Key Identifier:
keyid:DC:DA:82:3A:0B:BC:C7:66:50:2B:14:89:E0:A3:8C:CD:4F:BE:51:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/40bb0835e54e95f61d1b3f21a5df4b4b8f23450a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/7c2964e68eac52aca2a6dc9d4650068f5c5b3588.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/40bb0835e54e95f61d1b3f21a5df4b4b8f23450a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.168.0/22
IPv6:
2803:dd80::/32
Signature Algorithm: sha256WithRSAEncryption
1f:e7:45:09:fd:b5:ab:69:06:15:39:cf:39:f5:f9:65:d5:99:
88:ef:5b:d7:52:41:12:92:bc:33:30:08:ed:03:f3:97:99:db:
dd:68:e4:6d:f7:34:a4:eb:3e:bf:16:0e:44:cc:65:92:d6:05:
06:c1:71:3a:a5:39:fd:5e:99:33:ba:ad:2f:f0:ca:57:ac:00:
ba:f6:81:50:e7:83:b8:45:cb:f8:da:c9:ac:b3:2b:4a:9e:43:
a7:25:52:1b:3e:41:b1:52:1f:ff:29:44:05:e2:42:f4:b8:62:
de:e3:7c:d4:9c:cf:ac:33:95:65:c3:ea:70:eb:38:55:61:21:
a9:3a:32:4d:d6:f7:ca:6f:46:a4:75:33:12:1e:6e:ac:e0:cf:
65:d0:8e:e9:96:eb:e7:e2:0b:0b:9b:96:57:7a:f1:77:c8:82:
f1:36:5e:d3:e6:ce:b0:ce:80:43:0d:f7:50:2d:68:72:e7:a0:
36:d0:8e:cc:2a:b8:cf:a6:1f:b3:7c:bc:1f:ee:02:cf:99:05:
03:51:22:f6:f6:7e:b7:aa:ed:36:af:f2:71:c3:55:3b:fb:ab:
d9:bf:73:db:24:1e:ed:ec:59:62:3b:e0:b7:ed:c5:13:d8:0c:
27:f8:1b:26:b7:86:aa:fa:84:bb:9d:27:70:c3:32:d2:39:cc:
ac:ba:c8:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:18 2024 by rpki-client on console-ams.rpki-client.org