Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/bcafe5b398916599343a83b48e862a2f73f9c9cf.roa
File: bcafe5b398916599343a83b48e862a2f73f9c9cf.roa (raw, json)
Hash identifier: 44/Tik7fhP6HUqjz0eQEduwZ8n/WplGqK0eiihva5RE=
Subject key identifier: C3:E3:7B:B5:96:EB:FF:BF:0D:EA:97:59:7C:F7:BB:79:A8:0D:C7:D2
Certificate issuer: /CN=2ea1715958333398146179fdbf2e485fe6525742
Certificate serial: 1C3377
Authority key identifier: 60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/bcafe5b398916599343a83b48e862a2f73f9c9cf.roa
Signing time: Wed 29 Nov 2023 15:26:39 +0000
ROA not before: Wed 29 Nov 2023 15:26:39 +0000
ROA not after: Sat 29 Nov 2025 15:26:39 +0000
asID: 264845
IP address blocks: 201.219.252.0/23 maxlen: 23
201.219.254.0/23 maxlen: 24
2800:700::/32 maxlen: 34
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1848183 (0x1c3377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ea1715958333398146179fdbf2e485fe6525742
Validity
Not Before: Nov 29 15:26:39 2023 GMT
Not After : Nov 29 15:26:39 2025 GMT
Subject: CN=bcafe5b398916599343a83b48e862a2f73f9c9cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ee:6a:cc:ea:ee:6e:39:95:ba:06:09:b7:4f:
b3:22:49:cd:e9:67:86:aa:f7:4e:18:10:e8:92:32:
64:bb:4a:cc:8c:e7:56:d8:0f:44:f8:14:2a:56:b1:
c3:11:87:4a:47:60:9e:67:c8:9c:f5:1a:00:44:ed:
01:dd:a6:3d:9b:61:6f:5e:91:bb:f1:b0:2c:bf:bc:
b5:10:51:df:a1:b0:3c:6c:b4:a4:c4:8f:7f:19:f3:
67:61:0a:8c:f7:d5:c0:36:f0:bf:96:d5:1a:0e:75:
77:56:52:bd:ff:4e:99:ac:62:ad:f4:98:66:f7:63:
6d:ab:59:59:5c:ed:30:1f:e2:66:01:f9:73:d3:20:
8c:f6:b1:88:14:65:7c:2b:88:74:2f:2e:be:e8:1e:
87:13:b8:18:05:0b:27:60:0b:07:56:54:73:5e:6b:
72:20:b3:43:0b:bf:bc:96:4b:e0:8d:f1:74:1d:36:
a9:dc:a9:48:63:38:8f:d2:e4:9d:84:ad:3f:4d:28:
df:89:ba:3a:27:45:de:6f:d6:63:3f:6b:40:3d:e2:
70:6d:e4:ea:08:ca:0a:30:e6:c3:7f:94:fe:f2:5f:
12:e6:b8:53:93:10:30:25:7d:cc:0d:cc:95:9c:93:
70:cc:99:ec:c6:94:46:d0:4a:cb:b4:82:e6:76:a4:
ce:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:E3:7B:B5:96:EB:FF:BF:0D:EA:97:59:7C:F7:BB:79:A8:0D:C7:D2
X509v3 Authority Key Identifier:
keyid:60:84:61:48:7C:36:64:D8:97:0A:C3:A9:A1:74:66:80:8B:AD:C8:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/2ea1715958333398146179fdbf2e485fe6525742.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/bcafe5b398916599343a83b48e862a2f73f9c9cf.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/d9b6c5f5-2fb2-4744-b6e1-99d95892d377/2ea1715958333398146179fdbf2e485fe6525742.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
201.219.252.0/22
IPv6:
2800:700::/32
Signature Algorithm: sha256WithRSAEncryption
43:c8:02:d2:8f:61:e3:27:73:8d:b4:43:69:31:14:00:61:d7:
62:4f:c8:78:ca:09:87:51:e5:23:a3:67:d2:a5:c4:4e:7d:c0:
c1:ad:7d:bf:6e:d7:fb:ac:d3:97:02:db:1f:fd:fc:4c:51:13:
53:8d:fb:66:12:a8:52:94:99:51:6b:8f:9a:74:2e:60:17:05:
4d:a9:5d:54:9a:bc:de:4c:d9:9f:ca:8e:ef:1d:f3:6a:b7:d3:
ba:f2:ad:a5:fe:ea:9e:0a:cb:bd:d9:64:25:3d:d8:a3:4a:f2:
62:ad:b3:e2:94:3c:72:3a:e3:91:9d:1b:7c:65:62:08:f8:b5:
4f:7b:b5:10:e9:cf:a1:60:19:d6:f6:35:c6:b7:6c:1b:8c:8b:
a9:d0:e1:44:7b:c4:41:37:0b:d7:81:22:ac:98:f0:b4:a6:98:
7a:89:ac:93:f6:e9:c1:ce:bc:af:32:b7:d4:e3:41:d6:1c:21:
af:e0:ad:af:22:f4:4c:cf:0f:37:6b:7e:d7:13:80:3c:02:92:
0f:77:02:eb:d6:c6:94:46:e9:a8:d7:c5:29:76:ba:3f:ef:86:
d7:8a:da:96:4b:28:ee:f4:07:38:61:05:ea:27:46:07:49:9a:
84:15:4a:a5:f5:8d:1d:c0:7e:3f:19:2f:20:b7:cc:9b:13:ee:
44:62:ad:eb
-----BEGIN CERTIFICATE-----
MIIFTzCCBDegAwIBAgIDHDN3MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDJl
YTE3MTU5NTgzMzMzOTgxNDYxNzlmZGJmMmU0ODVmZTY1MjU3NDIwHhcNMjMxMTI5
MTUyNjM5WhcNMjUxMTI5MTUyNjM5WjAzMTEwLwYDVQQDEyhiY2FmZTViMzk4OTE2
NTk5MzQzYTgzYjQ4ZTg2MmEyZjczZjljOWNmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAj+5qzOrubjmVugYJt0+zIknN6WeGqvdOGBDokjJku0rMjOdW
2A9E+BQqVrHDEYdKR2CeZ8ic9RoARO0B3aY9m2FvXpG78bAsv7y1EFHfobA8bLSk
xI9/GfNnYQqM99XANvC/ltUaDnV3VlK9/06ZrGKt9Jhm92Ntq1lZXO0wH+JmAflz
0yCM9rGIFGV8K4h0Ly6+6B6HE7gYBQsnYAsHVlRzXmtyILNDC7+8lkvgjfF0HTap
3KlIYziP0uSdhK0/TSjfibo6J0Xeb9ZjP2tAPeJwbeTqCMoKMObDf5T+8l8S5rhT
kxAwJX3MDcyVnJNwzJnsxpRG0ErLtILmdqTO9QIDAQABo4ICajCCAmYwHQYDVR0O
BBYEFMPje7WW6/+/DeqXWXz3u3moDcfSMB8GA1UdIwQYMBaAFGCEYUh8NmTYlwrD
qaF0ZoCLrci/MA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvMmVhMTcx
NTk1ODMzMzM5ODE0NjE3OWZkYmYyZTQ4NWZlNjUyNTc0Mi5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZDliNmM1ZjUtMmZiMi00NzQ0LWI2ZTEtOTlkOTU4
OTJkMzc3L2JjYWZlNWIzOTg5MTY1OTkzNDNhODNiNDhlODYyYTJmNzNmOWM5Y2Yu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9kOWI2YzVmNS0yZmIyLTQ3NDQtYjZlMS05OWQ5
NTg5MmQzNzcvMmVhMTcxNTk1ODMzMzM5ODE0NjE3OWZkYmYyZTQ4NWZlNjUyNTc0
Mi5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEFBQcBBwEB/wQf
MB0wDAQCAAEwBgMEAsnb/DANBAIAAjAHAwUAKAAHADANBgkqhkiG9w0BAQsFAAOC
AQEAQ8gC0o9h4ydzjbRDaTEUAGHXYk/IeMoJh1HlI6Nn0qXETn3Awa19v27X+6zT
lwLbH/38TFETU437ZhKoUpSZUWuPmnQuYBcFTaldVJq83kzZn8qO7x3zarfTuvKt
pf7qngrLvdlkJT3Yo0ryYq2z4pQ8cjrjkZ0bfGViCPi1T3u1EOnPoWAZ1vY1xrds
G4yLqdDhRHvEQTcL14EirJjwtKaYeomsk/bpwc68rzK31ONB1hwhr+CtryL0TM8P
N2t+1xOAPAKSD3cC69bGlEbpqNfFKXa6P++G14ralkso7vQHOGEF6idGB0mahBVK
pfWNHcB+PxkvILfMmxPuRGKt6w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:08 2024 by rpki-client on console-fra.rpki-client.org