Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/dba52d85-1545-481a-ad48-9243896fbe80/f23c1fafc05dca33723e210daf3a1c6ccc6ad6fd.roa
File: f23c1fafc05dca33723e210daf3a1c6ccc6ad6fd.roa (raw, json)
Hash identifier: feM7gXX13hakIpge48w9cLdg+M8HEucZV+8bGxLYQpw=
Subject key identifier: D0:E7:90:46:AA:F6:A8:ED:BE:04:47:97:D1:41:D3:7E:26:17:4A:57
Certificate issuer: /CN=419e23f1fa27160195e5e3ab407b2d1b2f418f98
Certificate serial: 2489FC
Authority key identifier: 2E:4A:34:D5:A8:74:62:61:36:DB:18:55:57:9C:12:AE:4F:1B:9C:1A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/419e23f1fa27160195e5e3ab407b2d1b2f418f98.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/dba52d85-1545-481a-ad48-9243896fbe80/f23c1fafc05dca33723e210daf3a1c6ccc6ad6fd.roa
Signing time: Thu 02 Nov 2023 11:47:58 +0000
ROA not before: Thu 02 Nov 2023 11:47:58 +0000
ROA not after: Sun 02 Nov 2025 11:47:58 +0000
asID: 27988
IP address blocks: 190.122.80.0/20 maxlen: 24
198.12.36.0/22 maxlen: 24
200.55.240.0/21 maxlen: 24
2803:8d00::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2394620 (0x2489fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=419e23f1fa27160195e5e3ab407b2d1b2f418f98
Validity
Not Before: Nov 2 11:47:58 2023 GMT
Not After : Nov 2 11:47:58 2025 GMT
Subject: CN=f23c1fafc05dca33723e210daf3a1c6ccc6ad6fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:dd:fe:46:62:54:c7:ed:5d:1d:3a:b9:9c:ed:
1e:b6:43:8c:10:fb:e0:10:af:ac:bc:a7:d8:3a:cb:
16:64:15:de:bd:ab:10:81:08:5c:29:92:0f:7f:fd:
1a:6e:09:06:f8:e1:41:90:de:88:f7:d5:78:b5:af:
07:e1:b4:30:c9:2f:21:18:ac:4d:4c:b1:a8:a5:e9:
0a:f2:ac:44:6c:ee:1a:66:11:ca:2c:e8:5c:8e:fc:
e3:d0:f6:bf:83:6e:d4:d3:00:f9:ac:8f:7a:50:f3:
a1:f6:c8:52:e8:53:21:a4:bc:04:ab:33:be:3f:10:
e4:48:d8:1a:75:e6:61:e4:34:25:15:22:58:16:15:
d1:76:cb:23:69:55:9e:0e:a8:97:62:36:5c:b6:74:
5e:76:c0:76:4c:be:e2:3c:3a:f3:40:de:36:5a:57:
35:ee:23:dc:fe:44:57:ce:5e:1c:28:79:89:6b:6e:
70:da:3d:e1:a9:88:05:67:bc:de:3e:ca:d6:4c:25:
bd:fe:eb:67:1c:cf:59:14:b9:56:e9:7b:ff:ed:90:
5a:59:c1:0d:c9:29:8b:43:ee:26:a1:59:48:d9:e3:
9f:8c:41:0f:91:08:b6:47:7a:de:ec:32:a4:12:f7:
1e:bc:68:5d:da:ce:ca:84:58:b2:fe:49:c1:bb:45:
9a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:E7:90:46:AA:F6:A8:ED:BE:04:47:97:D1:41:D3:7E:26:17:4A:57
X509v3 Authority Key Identifier:
keyid:2E:4A:34:D5:A8:74:62:61:36:DB:18:55:57:9C:12:AE:4F:1B:9C:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/419e23f1fa27160195e5e3ab407b2d1b2f418f98.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/dba52d85-1545-481a-ad48-9243896fbe80/f23c1fafc05dca33723e210daf3a1c6ccc6ad6fd.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/dba52d85-1545-481a-ad48-9243896fbe80/419e23f1fa27160195e5e3ab407b2d1b2f418f98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
190.122.80.0/20
198.12.36.0/22
200.55.240.0/21
IPv6:
2803:8d00::/32
Signature Algorithm: sha256WithRSAEncryption
06:f0:be:6a:f2:41:a3:05:5e:80:2e:f9:c1:41:3d:c3:33:10:
45:8d:a5:bb:b4:fd:37:20:ff:f1:07:6a:41:af:6a:18:7e:e0:
fd:e0:b5:e3:97:e3:a2:ee:37:6f:4d:49:80:dd:b6:f5:29:64:
d0:07:bd:1c:51:c4:6a:dd:8d:8d:33:22:ed:88:70:c0:4e:2e:
1d:3b:77:ab:38:20:cf:98:54:98:4c:cf:ab:6b:b5:9a:7f:c6:
ec:33:d0:02:de:0b:73:59:af:cb:da:4a:ea:d4:49:3b:ae:e8:
6b:e5:75:10:30:5a:80:54:4a:8e:85:f0:94:48:b2:e8:cb:64:
f1:dc:cf:5e:b0:66:57:36:9c:1e:27:92:1f:95:cc:b7:30:31:
e3:22:c9:80:41:24:96:0f:2c:39:ed:35:ce:78:27:ab:fd:34:
14:eb:d6:ce:f9:6c:a6:64:99:74:2c:47:bf:b2:b2:7d:62:4a:
e2:c5:7c:39:7e:01:a9:e9:4b:99:02:8b:ee:3b:b9:44:26:c4:
41:a1:af:71:d5:dd:0e:ae:f6:ec:93:c7:22:db:8c:e2:10:b3:
64:e0:dc:7c:26:0c:15:e4:84:6b:6b:13:f5:99:35:ec:1e:4c:
56:39:78:12:01:6a:67:6c:29:a7:c3:19:1c:b7:c2:96:e7:20:
b8:44:dd:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:09 2024 by rpki-client on console-fra.rpki-client.org