Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/a82edb24-4759-49d7-b7ec-ae1ebc06d7bd/344b0c97359718fd19e487f5b99e3fe9304484c4.roa
File: 344b0c97359718fd19e487f5b99e3fe9304484c4.roa (raw, json)
Hash identifier: /+iEbVXycnyflJmFxcHj0siQ+shX+tCN+8jkjHDNzPo=
Subject key identifier: BC:09:C6:16:6C:29:4B:C7:D8:BF:53:00:BE:4F:01:4E:46:F8:C4:4D
Certificate issuer: /CN=ab57d54156e5b7a6448196353f5962b21f4afd05
Certificate serial: 0D16EC
Authority key identifier: 95:60:E8:2E:4B:52:84:17:18:9A:1E:05:2B:5D:2B:CF:7A:00:AE:11
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ab57d54156e5b7a6448196353f5962b21f4afd05.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/a82edb24-4759-49d7-b7ec-ae1ebc06d7bd/344b0c97359718fd19e487f5b99e3fe9304484c4.roa
Signing time: Wed 24 Mar 2021 14:33:44 +0000
ROA not before: Wed 24 Mar 2021 14:33:44 +0000
ROA not after: Tue 24 Mar 2026 14:33:44 +0000
asID: 264729
IP address blocks: 170.233.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 857836 (0xd16ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab57d54156e5b7a6448196353f5962b21f4afd05
Validity
Not Before: Mar 24 14:33:44 2021 GMT
Not After : Mar 24 14:33:44 2026 GMT
Subject: CN=344b0c97359718fd19e487f5b99e3fe9304484c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:33:d0:50:76:a0:88:ab:47:ae:8d:92:dd:eb:
29:f7:6b:ea:81:de:ee:7c:89:f0:84:26:e9:f6:60:
6a:b3:5a:97:d6:f8:97:a9:c9:70:ce:48:6d:8d:25:
41:20:51:09:5a:44:47:a5:11:97:b4:b0:02:fe:c3:
59:aa:d7:4d:93:e9:ba:35:44:d3:f7:13:93:60:9c:
23:49:77:54:98:23:e2:fc:8a:be:0b:e4:fa:53:91:
69:49:68:49:fb:37:81:bf:51:84:7f:f7:16:89:3f:
be:30:1e:32:bb:04:d8:89:e2:7d:4b:9c:f1:34:6c:
38:4d:a6:42:86:85:3e:9f:15:d9:fd:31:64:c9:26:
73:94:a9:ad:d9:12:61:67:09:c9:20:21:2a:f9:bc:
5f:84:0e:e9:1e:09:a2:97:83:21:f5:58:a1:ec:52:
e2:67:9d:b1:90:15:75:64:18:ed:39:9e:73:23:77:
fd:61:08:6e:1d:39:ab:64:ea:33:27:4a:e2:8f:98:
4b:f3:12:2b:e4:0a:0c:e8:bc:29:2b:20:56:df:7c:
9d:19:5b:44:c5:bd:b5:ff:76:45:58:66:f2:20:e5:
db:c8:4a:75:c7:f8:eb:7a:36:46:21:60:53:19:81:
6e:75:55:33:89:4a:79:38:ae:dc:01:a4:eb:fc:f0:
e1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:09:C6:16:6C:29:4B:C7:D8:BF:53:00:BE:4F:01:4E:46:F8:C4:4D
X509v3 Authority Key Identifier:
keyid:95:60:E8:2E:4B:52:84:17:18:9A:1E:05:2B:5D:2B:CF:7A:00:AE:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/ab57d54156e5b7a6448196353f5962b21f4afd05.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/a82edb24-4759-49d7-b7ec-ae1ebc06d7bd/344b0c97359718fd19e487f5b99e3fe9304484c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/a82edb24-4759-49d7-b7ec-ae1ebc06d7bd/ab57d54156e5b7a6448196353f5962b21f4afd05.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.233.152.0/24
Signature Algorithm: sha256WithRSAEncryption
32:13:e0:b4:2d:fb:bf:f0:8d:db:7f:e9:d3:38:65:72:7c:6e:
86:1c:04:1e:45:1d:36:fd:7d:a3:47:57:af:b2:3d:e0:d0:0e:
e0:b5:d0:f4:b9:4b:5b:7a:0a:48:6e:73:3d:73:8b:11:71:43:
e9:d6:11:c1:98:77:1c:70:14:4b:f5:f9:38:b9:67:8e:fa:c4:
79:61:1b:82:b9:9c:22:cc:fb:6c:0c:a4:23:f7:e8:83:ac:8d:
59:1b:67:51:cf:79:ae:11:0c:8e:11:47:89:da:19:a0:ab:e9:
63:75:07:ac:32:82:1e:07:c7:80:ce:d7:f8:6a:66:f0:c3:c9:
6b:4f:bb:1a:d8:af:28:b2:07:b6:b0:1a:84:5f:57:b0:30:f9:
1b:21:1a:e2:f1:23:12:2f:04:06:f6:83:0e:95:22:7d:14:00:
d4:bd:cc:ad:87:c8:95:1f:18:67:50:b8:51:06:04:f0:b2:c0:
51:ad:0e:0a:6c:0e:cf:9e:d4:b1:d9:f6:7a:8b:56:de:58:01:
c8:15:9d:25:5e:fc:ef:56:f7:50:72:e5:1c:de:ef:e1:99:a7:
0c:32:c0:66:3b:00:d8:0a:5f:45:11:17:3c:de:fe:5f:25:d4:
aa:71:f6:3d:68:d0:91:c6:1e:01:96:14:b7:06:3a:91:3d:ed:
bf:a3:eb:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:44 2024 by rpki-client on console-ams.rpki-client.org