Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/df8db7d6-1d2d-47c2-b5c1-f05f60e27deb/2c02ddef4c538d8e3915922f41edce30ded7c1ba.roa
File: 2c02ddef4c538d8e3915922f41edce30ded7c1ba.roa (raw, json)
Hash identifier: lgUtzbz6BK+8Qh1Yj3Gm5CDLA1UumPJ2xF6G6Bj8w/A=
Subject key identifier: 54:DC:A8:07:95:29:1D:75:9A:EC:0D:96:1F:9D:50:E0:41:6D:71:EE
Certificate issuer: /CN=08e5d5ba16af3e37e19c92b3d1d2702ab69929f4
Certificate serial: 0B95C5
Authority key identifier: 77:F1:84:AE:EC:1F:E7:98:9F:6D:2F:63:52:97:45:EB:69:13:D6:76
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/08e5d5ba16af3e37e19c92b3d1d2702ab69929f4.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/df8db7d6-1d2d-47c2-b5c1-f05f60e27deb/2c02ddef4c538d8e3915922f41edce30ded7c1ba.roa
Signing time: Wed 24 Mar 2021 14:36:19 +0000
ROA not before: Wed 24 Mar 2021 14:36:18 +0000
ROA not after: Tue 24 Mar 2026 14:36:18 +0000
asID: 267788
IP address blocks: 45.167.248.0/22 maxlen: 24
2803:cda0::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 759237 (0xb95c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08e5d5ba16af3e37e19c92b3d1d2702ab69929f4
Validity
Not Before: Mar 24 14:36:18 2021 GMT
Not After : Mar 24 14:36:18 2026 GMT
Subject: CN=2c02ddef4c538d8e3915922f41edce30ded7c1ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d3:0a:4c:71:ce:a8:ea:49:c0:b3:70:9c:16:
3a:e2:e3:8c:53:32:aa:69:b2:fa:2f:91:d1:8c:55:
7f:08:62:8c:66:4c:44:cf:54:69:5c:6c:25:e5:af:
fd:cb:70:b2:24:34:3d:b8:31:6d:3f:60:c8:04:e4:
9e:29:b4:70:b1:91:e2:01:04:5e:e1:96:32:75:c8:
9e:2a:c5:8f:95:d1:ad:13:70:2c:e9:0e:a7:6f:d7:
54:85:52:d9:90:62:7c:0e:b7:58:5d:e1:70:91:f9:
98:26:a2:9a:62:51:84:fe:76:e0:5f:91:36:5e:bf:
2a:27:de:39:7d:94:99:03:b3:1f:cb:f5:fe:4f:09:
c4:8e:05:44:7f:7e:df:12:e8:8d:54:e9:07:dc:0a:
ce:a6:4a:83:56:10:ab:89:ca:27:23:1f:fe:80:ce:
f3:01:e2:77:31:ea:62:57:1c:42:5a:81:ac:1b:7d:
a6:0e:07:10:dd:dc:63:6f:d7:a9:ee:24:6d:3a:ac:
25:83:47:f0:74:aa:fd:5f:04:d5:a4:8d:52:43:ca:
06:c7:96:94:42:f7:74:85:23:e1:e2:0b:0c:4e:14:
28:45:02:f2:e3:b4:f1:7c:8f:45:6e:14:02:b3:59:
f9:23:7f:05:8a:6d:dc:17:55:de:81:c8:58:dd:77:
2d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:DC:A8:07:95:29:1D:75:9A:EC:0D:96:1F:9D:50:E0:41:6D:71:EE
X509v3 Authority Key Identifier:
keyid:77:F1:84:AE:EC:1F:E7:98:9F:6D:2F:63:52:97:45:EB:69:13:D6:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/08e5d5ba16af3e37e19c92b3d1d2702ab69929f4.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/df8db7d6-1d2d-47c2-b5c1-f05f60e27deb/2c02ddef4c538d8e3915922f41edce30ded7c1ba.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/df8db7d6-1d2d-47c2-b5c1-f05f60e27deb/08e5d5ba16af3e37e19c92b3d1d2702ab69929f4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.167.248.0/22
IPv6:
2803:cda0::/32
Signature Algorithm: sha256WithRSAEncryption
15:97:e2:c4:a4:56:5f:a9:44:9d:71:6a:7a:08:b0:05:83:4c:
7d:a9:c5:77:cd:8f:b7:3c:e4:40:9b:e1:ad:04:d2:51:99:33:
63:14:ae:54:e8:ab:24:3e:c8:fe:b8:6a:62:5d:84:8e:34:87:
88:b0:ac:3c:67:ec:76:9a:8b:9a:55:90:9e:94:49:35:33:a8:
8d:f9:73:de:fa:90:95:ff:49:07:cd:71:b4:32:3c:c5:4e:a2:
1c:62:fd:1b:04:f5:9f:86:78:b2:ac:c7:09:4e:83:87:6b:57:
0c:0e:22:83:e5:ed:7a:08:28:8c:75:e0:d5:d4:70:5b:de:5f:
1a:88:2c:4a:f0:2d:83:f4:68:e3:57:ea:37:63:f1:14:c1:7c:
4e:ef:9b:aa:a7:11:fd:7e:bc:b2:8f:45:71:f4:98:29:ed:47:
8e:7f:f0:3b:b3:bc:10:72:36:f9:d4:59:7b:33:a6:a5:73:6c:
b0:c5:06:bd:11:2c:f4:4c:60:38:a2:b7:ea:5a:5d:c8:ab:d8:
29:02:80:86:37:dd:19:ee:87:21:e1:b4:d1:91:13:ee:91:0f:
cc:d4:33:03:4d:de:5d:8b:68:0c:16:58:03:75:08:c8:38:1d:
c8:ac:1f:4b:8d:9a:87:49:66:89:eb:f8:81:62:36:db:04:20:
8b:16:76:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 15:27:32 2024 by rpki-client on console-fra.rpki-client.org