Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a73917d3-7581-4880-a4fe-1222139e4167/52a29cdafb4053e4ea2ac52f1a67cfc60cea1214.roa
File: 52a29cdafb4053e4ea2ac52f1a67cfc60cea1214.roa (raw, json)
Hash identifier: PTRcEH96vesHD7wrrhjqH+vjYJwLLPV087ucJ71/FfQ=
Subject key identifier: FE:0E:D2:40:54:10:EB:BD:9C:4A:9F:71:24:23:34:C9:DD:54:F3:D0
Certificate issuer: /CN=c1d902de4502f1d62715799d87d20d2fe6b20d52
Certificate serial: 1D9839
Authority key identifier: 5D:8A:17:7E:7B:71:01:03:1C:D2:0D:A5:C1:65:44:88:A4:D2:C1:78
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1d902de4502f1d62715799d87d20d2fe6b20d52.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a73917d3-7581-4880-a4fe-1222139e4167/52a29cdafb4053e4ea2ac52f1a67cfc60cea1214.roa
Signing time: Wed 25 Jan 2023 02:23:14 +0000
ROA not before: Fri 09 Apr 2021 03:00:00 +0000
ROA not after: Tue 11 Apr 2023 03:00:00 +0000
asID: 28458
IP address blocks: 138.122.96.0/22 maxlen: 22
138.122.96.0/24 maxlen: 24
138.122.97.0/24 maxlen: 24
138.122.98.0/24 maxlen: 24
138.122.99.0/24 maxlen: 24
170.239.148.0/22 maxlen: 22
170.239.148.0/24 maxlen: 24
170.239.149.0/24 maxlen: 24
170.239.150.0/24 maxlen: 24
170.239.151.0/24 maxlen: 24
2806:202::/32 maxlen: 32
2806:202:800::/37 maxlen: 37
2806:202:1::/48 maxlen: 48
2806:202:2::/48 maxlen: 48
2806:202:3::/48 maxlen: 48
2806:202:4::/48 maxlen: 48
2806:202:5::/48 maxlen: 48
2806:202:6::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1939513 (0x1d9839)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1d902de4502f1d62715799d87d20d2fe6b20d52
Validity
Not Before: Apr 9 03:00:00 2021 GMT
Not After : Apr 11 03:00:00 2023 GMT
Subject: CN=52a29cdafb4053e4ea2ac52f1a67cfc60cea1214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:0b:4a:88:e2:da:6c:db:21:6a:ff:ae:84:06:
34:f0:e4:13:2c:f8:c0:b7:56:52:10:0c:8b:e1:19:
5a:e5:b7:6a:ed:4f:0d:60:97:9c:f1:f3:c7:da:c4:
33:4c:6f:59:6d:c3:8a:d0:3f:1e:ee:32:76:35:02:
e4:be:bf:09:aa:04:6a:05:b1:ac:2f:ed:08:27:bd:
44:7e:eb:0c:e3:ee:92:35:26:44:bb:f2:34:34:75:
e9:0e:3c:c5:65:f0:45:0d:bc:4b:cc:06:42:99:7c:
ac:b3:f9:5d:90:c9:19:57:d9:89:75:0d:52:46:d1:
2f:ed:04:80:15:dd:e4:8f:45:0c:d6:d3:26:21:12:
85:55:12:55:db:e2:fa:5f:3c:29:11:b2:ad:5b:4a:
a8:78:e5:a3:e4:7a:fe:d0:8d:55:46:2a:ee:79:6b:
a6:0a:9f:9e:9f:3a:16:2b:a0:2e:f6:ed:f6:5d:56:
53:44:b8:e3:01:67:9b:0a:a1:26:2b:8f:ac:b2:66:
72:80:2f:c6:ca:a2:72:0c:2b:21:3b:54:d9:34:3e:
38:de:1d:c4:4a:e6:02:92:f2:40:64:cc:6a:d2:18:
60:7c:62:e2:e4:b4:dc:07:da:1d:40:a8:02:b0:d8:
ea:8c:56:c0:4a:c8:68:95:61:f9:38:a7:6a:c2:11:
14:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:0E:D2:40:54:10:EB:BD:9C:4A:9F:71:24:23:34:C9:DD:54:F3:D0
X509v3 Authority Key Identifier:
keyid:5D:8A:17:7E:7B:71:01:03:1C:D2:0D:A5:C1:65:44:88:A4:D2:C1:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/c1d902de4502f1d62715799d87d20d2fe6b20d52.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a73917d3-7581-4880-a4fe-1222139e4167/52a29cdafb4053e4ea2ac52f1a67cfc60cea1214.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a73917d3-7581-4880-a4fe-1222139e4167/c1d902de4502f1d62715799d87d20d2fe6b20d52.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
138.122.96.0/22
170.239.148.0/22
IPv6:
2806:202::/32
Signature Algorithm: sha256WithRSAEncryption
4c:01:2b:9b:66:75:38:20:a5:8d:a1:59:dc:2b:6b:8a:3d:25:
d1:69:d9:6a:91:36:6e:1c:65:9c:0d:8f:f4:b3:47:3b:a6:b9:
1d:be:5b:31:28:fb:2f:35:5e:f1:9b:d1:f4:11:75:a9:69:a9:
bd:6d:c8:b0:e8:34:ef:2c:db:83:20:14:ce:64:02:0d:ea:ad:
79:ea:0a:6e:04:bc:14:4f:dd:de:02:af:15:a0:af:f8:0b:50:
cd:42:be:16:59:40:c3:32:2a:6e:89:56:3d:30:9f:64:b5:b8:
52:c3:fb:72:fa:4b:b0:e8:fd:60:eb:fc:92:4e:b8:a7:13:5f:
8a:14:c9:c1:5a:5f:d0:2b:7d:be:1c:16:b6:e8:e2:de:de:83:
3b:30:21:f0:4a:b5:65:e3:d1:74:0c:94:88:bb:3e:83:43:aa:
e5:3c:b3:df:b9:30:b8:3d:54:ed:7b:9e:f4:92:2b:a9:ae:f4:
63:e9:e0:86:59:14:32:48:e3:2e:3a:54:98:90:ed:bd:43:d9:
84:ae:a5:a2:58:34:99:c3:36:f0:c4:a9:30:35:3a:2f:ee:03:
60:a6:e9:a0:ab:b8:27:8d:73:f8:fc:82:1d:60:14:a4:a4:71:
76:be:fe:41:af:49:a2:a0:15:75:8e:cc:e4:c8:5d:df:ae:07:
f8:8e:74:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:21 2024 by rpki-client on console-ams.rpki-client.org