Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/ebb71da9-3808-4d00-a943-589240d78385/be23c2bcebbb6bf96bdbb000a6044f95129d52ec.roa
File: be23c2bcebbb6bf96bdbb000a6044f95129d52ec.roa (raw, json)
Hash identifier: QDg9y9iYuyf60KoyWyI8DyOZiUZjpsy5a/YVr+JYZsM=
Subject key identifier: 96:F5:82:F0:8B:3B:BF:76:75:2D:E0:C5:C6:61:35:7A:3A:80:80:5F
Certificate issuer: /CN=5f073dc50d388f5e4b8416173329e5c9fb55bacc
Certificate serial: 1BA3AB
Authority key identifier: EF:AB:01:33:53:10:96:46:AD:AC:A4:AD:C5:98:DC:A7:44:43:45:C9
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5f073dc50d388f5e4b8416173329e5c9fb55bacc.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/ebb71da9-3808-4d00-a943-589240d78385/be23c2bcebbb6bf96bdbb000a6044f95129d52ec.roa
Signing time: Tue 30 Jan 2024 21:53:11 +0000
ROA not before: Tue 30 Jan 2024 21:53:11 +0000
ROA not after: Fri 30 Jan 2026 21:53:11 +0000
asID: 27775
IP address blocks: 190.98.0.0/17 maxlen: 24
200.1.156.0/22 maxlen: 24
200.2.160.0/19 maxlen: 24
186.179.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1811371 (0x1ba3ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f073dc50d388f5e4b8416173329e5c9fb55bacc
Validity
Not Before: Jan 30 21:53:11 2024 GMT
Not After : Jan 30 21:53:11 2026 GMT
Subject: CN=be23c2bcebbb6bf96bdbb000a6044f95129d52ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b1:69:4f:b0:d7:d9:95:29:bc:4b:40:19:eb:
0c:3a:b7:73:5e:35:39:9e:b5:9c:8c:89:1a:6a:d0:
de:86:cb:51:10:da:9b:8b:f7:ba:0a:a2:e6:4d:18:
bc:58:7a:5a:39:01:cb:e4:43:31:41:a3:e9:b7:61:
89:a8:13:11:ea:2a:bd:04:54:e1:e4:07:36:a5:2f:
64:03:a0:1f:3b:76:86:ce:6a:77:df:c9:72:36:b4:
16:b8:5f:21:74:2a:b3:78:65:38:01:b3:c6:d2:5c:
ff:00:78:61:aa:f7:9f:90:7a:84:1b:da:a1:89:9a:
65:82:9a:ce:54:92:b4:46:81:21:e5:89:4b:88:f6:
ce:a6:ba:2c:a5:09:f2:d5:d8:50:67:15:e8:41:9a:
a7:3d:07:08:24:d9:cd:9d:b4:15:e1:e9:42:49:40:
8f:7f:70:b4:66:ad:f6:8a:84:da:cd:5e:4d:4e:96:
77:02:90:89:d2:ab:13:3c:11:7c:e2:e8:e4:d7:74:
bd:09:99:a2:27:aa:e0:0d:8e:7a:0c:d1:cc:7c:61:
21:27:6f:f0:d1:69:49:1a:a5:41:45:15:68:9b:22:
9b:62:03:9d:d4:98:40:ed:ce:df:98:de:dd:be:30:
72:68:7b:61:1a:3c:86:d2:d9:18:60:c9:96:a1:96:
14:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:F5:82:F0:8B:3B:BF:76:75:2D:E0:C5:C6:61:35:7A:3A:80:80:5F
X509v3 Authority Key Identifier:
keyid:EF:AB:01:33:53:10:96:46:AD:AC:A4:AD:C5:98:DC:A7:44:43:45:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/5f073dc50d388f5e4b8416173329e5c9fb55bacc.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/ebb71da9-3808-4d00-a943-589240d78385/be23c2bcebbb6bf96bdbb000a6044f95129d52ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/ebb71da9-3808-4d00-a943-589240d78385/5f073dc50d388f5e4b8416173329e5c9fb55bacc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
186.179.128.0/17
190.98.0.0/17
200.1.156.0/22
200.2.160.0/19
Signature Algorithm: sha256WithRSAEncryption
c3:41:47:10:26:13:31:06:37:59:9b:08:e9:6f:f3:a8:fc:8f:
a1:b3:05:21:96:28:de:86:5c:84:b3:e8:d6:57:a3:d9:29:e9:
fc:a2:a2:c7:41:08:17:61:fb:39:c2:fe:3e:45:62:5f:eb:c4:
26:cd:27:d4:69:c0:e9:cb:7b:7e:ff:d4:44:fd:f2:e5:1c:cb:
c8:7b:3a:1a:8d:26:6f:76:f1:74:cd:b3:d3:70:81:57:ec:bb:
50:a4:a3:eb:23:e4:bf:c7:07:60:4c:55:07:19:0b:aa:5b:bd:
e8:af:70:63:69:a6:7b:38:d6:91:f6:b5:e4:e7:bd:e3:8e:bb:
6a:30:66:aa:bb:8e:6a:6e:8b:b3:7a:19:9d:d3:25:7c:b9:68:
33:1a:25:b6:49:d6:38:7f:b3:ac:6a:3c:a2:46:de:7d:10:6d:
38:70:37:04:9e:d5:65:83:b7:29:ab:9d:b4:2a:32:c7:3c:90:
25:86:a3:1c:52:4b:57:26:02:0b:6f:9f:af:6a:94:74:d1:f4:
b5:73:16:f8:53:58:2d:df:58:59:64:64:cf:f5:a1:31:b0:05:
00:f5:c2:a4:f4:18:84:c1:57:14:21:fc:6b:8a:87:e5:82:7e:
f6:a5:75:e1:5e:48:6c:79:df:1a:9b:26:c2:2c:82:59:33:aa:
83:67:59:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:51 2024 by rpki-client on console-ams.rpki-client.org