Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/b7b4f3a4-e861-4466-ba22-89756cf72482/28b20b1c6377fe28c5e633a35276418c3bd39c1c.roa
File: 28b20b1c6377fe28c5e633a35276418c3bd39c1c.roa (raw, json)
Hash identifier: 1ncO5o7lZ8Km7eXGhqYYAjQNLaG9VGTG9RUO3L14L2k=
Subject key identifier: 2F:33:46:15:B7:59:08:D6:20:08:81:D6:04:8C:EC:E8:27:F7:EC:C4
Certificate issuer: /CN=639b361009f26cf93180d6f26a1524716c25477c
Certificate serial: 064037
Authority key identifier: 3B:1E:46:00:3B:4B:E1:AD:EB:B0:82:8F:B1:59:84:78:0B:8D:B1:B9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/639b361009f26cf93180d6f26a1524716c25477c.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/b7b4f3a4-e861-4466-ba22-89756cf72482/28b20b1c6377fe28c5e633a35276418c3bd39c1c.roa
Signing time: Wed 24 Mar 2021 14:30:31 +0000
ROA not before: Wed 24 Mar 2021 14:30:31 +0000
ROA not after: Tue 24 Mar 2026 14:30:31 +0000
asID: 269858
IP address blocks: 45.189.196.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409655 (0x64037)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=639b361009f26cf93180d6f26a1524716c25477c
Validity
Not Before: Mar 24 14:30:31 2021 GMT
Not After : Mar 24 14:30:31 2026 GMT
Subject: CN=28b20b1c6377fe28c5e633a35276418c3bd39c1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:93:83:49:1d:d6:b6:36:1c:4c:3e:42:94:9a:
db:67:8f:0b:56:3a:b1:c6:0c:5a:8b:3a:4b:32:0c:
eb:f9:11:be:ec:0c:ee:79:69:88:06:0b:b5:50:a0:
e0:ab:75:a3:36:23:a9:60:a7:63:a1:32:aa:35:6c:
34:0d:56:f5:e8:77:76:73:db:b8:31:47:9a:6a:f0:
6f:ed:54:a3:eb:e0:7f:f4:32:47:4b:9c:be:81:c5:
b8:f6:ff:b6:e3:53:ca:29:6a:40:97:a9:a8:50:24:
94:f9:b7:1a:69:e7:24:f8:62:d2:41:d1:18:0b:57:
9d:df:9d:85:35:b6:9c:88:da:91:f0:73:c2:c0:92:
f0:58:1f:12:9a:db:78:4b:af:87:94:fa:74:3a:ab:
8d:9f:66:fb:13:68:53:86:24:cf:92:6d:74:a5:dc:
f4:38:92:c0:11:5d:1a:6e:5c:eb:f2:95:eb:c5:dd:
5a:10:4f:99:90:2d:33:d6:4a:8c:16:07:26:30:8e:
97:39:20:ef:68:98:a0:de:ca:b5:18:3c:81:4f:33:
03:00:91:76:81:ea:58:25:7e:d8:61:14:51:d8:16:
26:a4:ec:0e:a3:89:0c:b4:42:77:a4:17:39:f3:6a:
1e:d1:d1:26:4d:a7:05:6e:60:19:a0:53:b5:19:4c:
69:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:33:46:15:B7:59:08:D6:20:08:81:D6:04:8C:EC:E8:27:F7:EC:C4
X509v3 Authority Key Identifier:
keyid:3B:1E:46:00:3B:4B:E1:AD:EB:B0:82:8F:B1:59:84:78:0B:8D:B1:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/639b361009f26cf93180d6f26a1524716c25477c.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/b7b4f3a4-e861-4466-ba22-89756cf72482/28b20b1c6377fe28c5e633a35276418c3bd39c1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/b7b4f3a4-e861-4466-ba22-89756cf72482/639b361009f26cf93180d6f26a1524716c25477c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.189.196.0/22
Signature Algorithm: sha256WithRSAEncryption
94:8f:11:e5:18:3b:68:50:8d:0c:fc:81:7d:36:27:ca:54:8a:
c4:4a:92:fd:f9:63:cb:40:10:b4:34:82:d4:02:9f:90:68:1d:
42:f5:bb:a7:2b:bb:2a:53:aa:2e:12:9c:16:a6:3e:ae:d6:f5:
b9:87:db:9b:6b:67:ac:4a:3c:92:ad:48:d7:37:fb:3c:ce:a0:
4a:d2:3b:8a:24:20:03:ba:1f:6e:1f:51:7e:db:34:81:1e:38:
34:d2:7c:ba:92:ae:ae:a6:d8:16:0d:6e:47:c2:57:6c:29:b1:
23:8e:9a:86:cc:c5:67:7f:94:c9:6f:cc:0b:5c:5c:9e:0d:9e:
80:d3:ab:1f:e7:f0:69:55:2e:fc:83:41:6a:65:d0:ac:40:4c:
61:4d:3a:8d:87:66:2d:1a:19:ca:11:f6:4d:d1:f7:0b:fd:19:
07:ff:5b:99:c8:00:18:10:a8:94:18:c4:61:68:27:fb:e2:8f:
9d:83:8d:42:d3:6d:e4:df:c2:e7:9e:d4:08:a6:e1:28:b1:44:
a7:56:07:37:dc:db:cd:80:22:be:b1:a3:05:93:9d:a7:e0:ae:
f3:86:17:db:78:15:92:e3:4a:ab:d7:09:2a:78:cf:4b:53:c3:
d3:4a:19:36:20:6e:aa:d8:5f:2e:40:2e:4d:70:9c:4f:b7:a8:
a3:c7:fd:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:25 2024 by rpki-client on console-ams.rpki-client.org