Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f282fffa-5eaa-464c-9040-795032354533/9a8439c0c1c7f0c89b3f3212f98360e6104def8a.roa
File: 9a8439c0c1c7f0c89b3f3212f98360e6104def8a.roa (raw, json)
Hash identifier: 5PTtgfwX2cbx0ZiXAcf//2g7u4hzEQAq6mNNWYIjIGY=
Subject key identifier: A9:83:AB:5D:79:EB:12:87:24:92:B1:44:2E:40:32:32:E9:CB:D9:EB
Certificate issuer: /CN=3443505eddac7b5aa6eddaedee91340561a130ec
Certificate serial: 159A09
Authority key identifier: D5:D4:C7:13:9B:11:47:DC:25:7C:2F:DF:A7:B0:B2:78:CA:FE:A8:6D
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3443505eddac7b5aa6eddaedee91340561a130ec.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f282fffa-5eaa-464c-9040-795032354533/9a8439c0c1c7f0c89b3f3212f98360e6104def8a.roa
Signing time: Thu 02 Nov 2023 15:31:11 +0000
ROA not before: Thu 02 Nov 2023 15:31:10 +0000
ROA not after: Sun 02 Nov 2025 15:31:10 +0000
asID: 52393
IP address blocks: 168.0.212.0/22 maxlen: 22
186.179.0.0/18 maxlen: 18
190.185.108.0/22 maxlen: 22
2803:8200::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1415689 (0x159a09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3443505eddac7b5aa6eddaedee91340561a130ec
Validity
Not Before: Nov 2 15:31:10 2023 GMT
Not After : Nov 2 15:31:10 2025 GMT
Subject: CN=9a8439c0c1c7f0c89b3f3212f98360e6104def8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cb:bf:23:c8:10:77:08:cd:28:65:22:bd:5a:
95:0c:45:7a:15:0e:6c:75:7f:68:69:09:81:ee:a0:
76:1f:d2:3b:e6:d2:08:89:65:70:33:31:f2:55:ae:
d5:2e:cd:2a:fe:73:83:42:53:a4:62:d4:6e:4e:98:
5a:5b:36:16:56:10:e6:0e:20:9e:ed:ba:7b:a3:b9:
2c:5b:f2:8d:67:62:77:7a:fc:b9:ce:20:48:db:aa:
48:5e:2e:a9:aa:91:62:3e:f6:84:7e:be:e3:bd:1e:
10:20:be:cc:c0:0e:e8:ce:98:ae:e9:03:49:86:b5:
9b:e9:a4:4d:2d:fd:66:b2:d9:9b:e3:9b:15:68:f7:
f4:7a:92:3c:7d:77:09:e8:64:89:e2:d0:b9:6a:84:
29:72:89:06:ba:75:ce:ce:50:56:83:47:01:5e:8c:
5d:40:78:8b:6c:ce:ad:f0:ad:1c:29:4d:49:91:85:
c8:b8:ed:85:9a:cd:a5:b0:34:6e:de:76:6f:d3:b7:
ca:5e:47:b2:92:33:b0:58:4e:04:7b:06:c1:21:c2:
6c:09:db:92:49:aa:c6:6c:06:f8:43:4d:4f:9b:1d:
dc:24:10:a1:c6:1a:f6:c8:4e:fb:d3:f8:01:95:c8:
b1:c4:95:7d:e0:23:6b:d5:7f:75:57:fd:a9:4f:d4:
31:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:83:AB:5D:79:EB:12:87:24:92:B1:44:2E:40:32:32:E9:CB:D9:EB
X509v3 Authority Key Identifier:
keyid:D5:D4:C7:13:9B:11:47:DC:25:7C:2F:DF:A7:B0:B2:78:CA:FE:A8:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/3443505eddac7b5aa6eddaedee91340561a130ec.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f282fffa-5eaa-464c-9040-795032354533/9a8439c0c1c7f0c89b3f3212f98360e6104def8a.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f282fffa-5eaa-464c-9040-795032354533/3443505eddac7b5aa6eddaedee91340561a130ec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.0.212.0/22
186.179.0.0/18
190.185.108.0/22
IPv6:
2803:8200::/32
Signature Algorithm: sha256WithRSAEncryption
41:43:fc:4d:dd:15:80:89:8d:48:f0:83:17:51:61:51:63:dd:
cc:e8:63:b2:1a:1b:44:60:35:98:25:aa:6c:d2:43:22:d6:fe:
48:3a:c2:25:ef:b9:01:7c:d8:71:b7:c8:f5:fd:76:bd:c9:e5:
78:fe:a1:be:9b:f6:ba:f5:b0:5a:4e:98:53:86:1e:4b:8a:31:
af:43:de:21:e9:67:0e:78:18:fc:5e:b5:c8:e0:18:e9:c5:ae:
2e:ab:b7:08:77:3f:ab:63:4e:05:15:62:f2:f7:b5:1b:8e:ed:
a5:d9:c1:43:3e:7c:ec:35:2f:e4:02:bf:25:9d:94:1a:64:d5:
e6:1c:a5:bf:a2:92:bd:a8:89:e8:b0:fe:d0:38:d7:04:61:4e:
78:5f:8e:f5:d7:99:65:4e:f2:d4:3d:fb:4f:0e:10:76:06:9a:
ab:ba:cb:aa:fd:48:0a:6d:f3:53:df:8b:b8:02:17:cd:c2:26:
8f:17:11:f4:d4:51:43:ba:92:d6:6d:78:d1:67:d4:89:33:7b:
10:db:92:4e:58:e0:2f:c9:c9:43:55:65:46:b4:41:57:15:77:
cb:38:db:20:91:38:5e:dc:cd:a8:60:85:c3:3f:4d:29:65:29:
3b:ed:fe:a9:f1:29:72:e3:f5:91:f5:57:92:65:09:1a:13:a1:
a9:c0:26:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:43 2024 by rpki-client on console-ams.rpki-client.org