Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/c8430589798dc76bcb07342412c84017d0b7841f.roa
File: c8430589798dc76bcb07342412c84017d0b7841f.roa (raw, json)
Hash identifier: aufGyB+t1GA43UtjJn0YwYSIQLs02Nu3t0Ram9hzy/s=
Subject key identifier: 08:4B:4E:84:09:99:C5:E1:9F:A8:C2:EC:57:B4:86:F4:64:11:32:8D
Certificate issuer: /CN=40bb0835e54e95f61d1b3f21a5df4b4b8f23450a
Certificate serial: 25723F
Authority key identifier: DC:DA:82:3A:0B:BC:C7:66:50:2B:14:89:E0:A3:8C:CD:4F:BE:51:C4
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/40bb0835e54e95f61d1b3f21a5df4b4b8f23450a.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/c8430589798dc76bcb07342412c84017d0b7841f.roa
Signing time: Fri 03 Nov 2023 15:32:00 +0000
ROA not before: Fri 03 Nov 2023 15:32:00 +0000
ROA not after: Mon 03 Nov 2025 15:32:00 +0000
asID: 269918
IP address blocks: 131.72.168.0/22 maxlen: 24
131.72.168.0/24 maxlen: 24
131.72.169.0/24 maxlen: 24
131.72.170.0/24 maxlen: 24
131.72.171.0/24 maxlen: 24
2803:dd80::/32 maxlen: 32
2803:dd80:fffe::/48 maxlen: 48
2803:dd80:ffff::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2454079 (0x25723f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40bb0835e54e95f61d1b3f21a5df4b4b8f23450a
Validity
Not Before: Nov 3 15:32:00 2023 GMT
Not After : Nov 3 15:32:00 2025 GMT
Subject: CN=c8430589798dc76bcb07342412c84017d0b7841f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:35:bd:82:a0:fd:c1:1e:a7:5d:3f:0a:c3:57:
ed:0b:fe:b4:00:68:fe:1c:b4:69:15:1c:58:05:75:
ee:83:39:86:a5:f4:34:af:2f:fe:cd:46:77:0c:9a:
c4:3f:f4:1d:5b:3f:0f:41:34:98:2c:78:2e:ea:70:
bc:3b:a8:19:4f:d4:76:67:49:04:b2:6e:06:c1:84:
3f:88:cc:78:a7:d6:a3:c4:18:ad:4c:e6:75:37:fc:
4e:15:76:9f:6e:cf:f3:b6:a7:b3:62:41:2d:46:f5:
b0:44:c1:4c:d3:7a:53:37:7e:3f:3d:c1:91:0f:59:
11:2b:87:b2:f8:4a:34:a9:d4:55:22:64:1d:b8:0a:
1e:1a:b0:50:c1:70:e0:e5:43:8d:88:ed:b4:e9:e7:
4d:b1:fd:15:2e:26:c6:11:05:cb:6b:ec:67:94:c1:
d9:e3:ff:36:44:4f:1a:f9:52:b5:f1:c0:83:19:4f:
4f:67:12:d0:2c:30:2e:57:05:5a:ff:c0:ff:32:1b:
09:0c:ce:9f:c6:10:8e:93:1e:a8:95:7c:5d:ed:dc:
3b:bb:cd:02:a5:d4:97:33:12:55:16:63:74:c6:da:
32:c0:71:32:15:7b:b3:88:70:e3:25:e3:c2:3a:74:
a7:fb:c0:4f:cf:ad:37:36:07:df:09:c1:a5:51:ce:
21:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:4B:4E:84:09:99:C5:E1:9F:A8:C2:EC:57:B4:86:F4:64:11:32:8D
X509v3 Authority Key Identifier:
keyid:DC:DA:82:3A:0B:BC:C7:66:50:2B:14:89:E0:A3:8C:CD:4F:BE:51:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/40bb0835e54e95f61d1b3f21a5df4b4b8f23450a.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/c8430589798dc76bcb07342412c84017d0b7841f.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a0134565-9f3c-49b1-aaf6-dff2ea3146fe/40bb0835e54e95f61d1b3f21a5df4b4b8f23450a.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
131.72.168.0/22
IPv6:
2803:dd80::/32
Signature Algorithm: sha256WithRSAEncryption
35:ca:32:f6:4c:a1:69:5c:76:d0:15:2b:16:c6:5b:25:59:b4:
e8:8b:7f:02:65:38:8b:e0:89:7e:a1:51:7a:2d:f7:fe:88:63:
d0:ee:f8:f7:75:e2:b6:7a:89:b4:22:35:b1:cb:d3:07:2b:13:
1c:8e:28:9c:f3:c6:72:fb:07:9f:f1:ac:09:a4:fd:28:3e:63:
e2:43:8c:5c:9b:72:c7:2d:94:18:52:b5:44:06:c4:44:ea:71:
34:cd:ee:93:cf:37:51:69:ca:94:02:a4:3a:fb:f5:35:49:8b:
c9:50:70:b3:df:10:8b:a5:88:0c:29:68:9e:a1:3d:59:f3:6a:
e9:65:ae:44:0b:e2:28:97:6c:d8:ec:2f:2c:48:a8:df:3f:5e:
6a:70:9e:71:48:97:62:b6:61:a7:b0:f1:47:ee:54:7a:c1:47:
ea:06:b7:71:1b:8e:4c:55:1d:ae:12:4f:53:8b:b8:e3:c6:91:
ad:f0:66:12:d0:cc:8e:80:5e:f7:46:bb:d1:ed:a3:f7:cf:6e:
bd:53:3c:cb:2d:0b:f3:c9:57:37:7c:57:0f:8e:f4:a7:20:87:
90:62:97:99:d0:cf:27:26:0e:13:12:a3:a1:b9:1c:52:a1:12:
3a:d2:72:27:60:49:ea:de:99:29:91:2d:a1:28:fa:11:b1:fc:
9b:ed:02:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:18 2024 by rpki-client on console-ams.rpki-client.org