Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f5b845df-b445-4e9a-9b7e-341ec4f69453/dd5f509fdeea995e8daf1b10bb1aad0e970a010e.roa
File: dd5f509fdeea995e8daf1b10bb1aad0e970a010e.roa (raw, json)
Hash identifier: M6MZuA2DWuygxrjL3TUbcwMrYFlI95acON1DeyhRukc=
Subject key identifier: FF:B2:52:9F:BE:56:2C:8F:0E:10:38:50:F5:50:6A:BF:94:68:50:0C
Certificate issuer: /CN=37a0740e0b462b36fd227b220aff33538b932a72
Certificate serial: 20620E
Authority key identifier: CE:E1:D8:CC:6B:33:71:C1:99:C8:70:4C:44:F4:42:4E:E0:23:D2:BE
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/37a0740e0b462b36fd227b220aff33538b932a72.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f5b845df-b445-4e9a-9b7e-341ec4f69453/dd5f509fdeea995e8daf1b10bb1aad0e970a010e.roa
Signing time: Tue 16 May 2023 21:16:11 +0000
ROA not before: Mon 15 May 2023 21:16:11 +0000
ROA not after: Fri 16 May 2025 21:16:11 +0000
asID: 262166
IP address blocks: 168.234.182.0/23 maxlen: 24
168.234.184.0/22 maxlen: 24
168.234.188.0/23 maxlen: 24
168.234.199.0/24 maxlen: 24
168.234.203.0/24 maxlen: 24
168.234.205.0/24 maxlen: 24
168.234.206.0/24 maxlen: 24
168.234.208.0/21 maxlen: 24
168.234.216.0/23 maxlen: 24
168.234.218.0/24 maxlen: 24
168.234.221.0/24 maxlen: 24
168.234.222.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2122254 (0x20620e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37a0740e0b462b36fd227b220aff33538b932a72
Validity
Not Before: May 15 21:16:11 2023 GMT
Not After : May 16 21:16:11 2025 GMT
Subject: CN=dd5f509fdeea995e8daf1b10bb1aad0e970a010e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:19:1d:50:3d:d8:64:ad:f9:22:db:ea:f2:bb:
a9:77:0a:ee:79:f8:fd:13:cf:ec:8c:97:aa:de:f9:
ec:ed:a8:93:ab:8e:c4:8a:77:48:51:ff:56:52:a6:
a9:cd:69:fd:f0:80:5a:74:1e:02:f0:a7:40:db:c3:
33:7e:16:44:a4:4f:69:2d:3f:1b:54:d5:4b:dc:a5:
6c:0a:e5:fd:ba:c4:09:d1:c8:01:cf:40:08:32:d3:
bf:b3:db:6a:04:fb:92:4a:0c:0b:72:60:45:6e:20:
c1:a1:43:ca:f4:39:a0:18:c0:31:36:10:4f:ce:1a:
20:ff:97:59:84:5c:31:d5:90:4e:2b:1e:c0:3b:8b:
fa:dc:7a:41:4a:c1:6b:33:fa:9b:7e:0c:ec:d7:c8:
3d:bb:e0:c1:38:c3:c7:82:4e:76:04:53:26:b6:1a:
23:7a:67:16:89:00:41:17:8d:c6:fa:a7:f5:75:31:
e0:b5:dc:d5:9b:71:e4:dd:71:6a:9d:c8:eb:5d:4d:
f2:0e:af:7b:41:2b:fa:ce:51:3d:5f:bf:61:b8:d3:
20:54:e3:df:76:25:50:f4:77:a4:0d:0d:2e:70:56:
9b:1c:5e:1b:87:83:a6:94:6b:ea:88:b0:5e:8e:19:
35:b9:f0:cd:71:5b:74:30:e0:f0:4e:3a:d2:c1:02:
32:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:B2:52:9F:BE:56:2C:8F:0E:10:38:50:F5:50:6A:BF:94:68:50:0C
X509v3 Authority Key Identifier:
keyid:CE:E1:D8:CC:6B:33:71:C1:99:C8:70:4C:44:F4:42:4E:E0:23:D2:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/37a0740e0b462b36fd227b220aff33538b932a72.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f5b845df-b445-4e9a-9b7e-341ec4f69453/dd5f509fdeea995e8daf1b10bb1aad0e970a010e.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f5b845df-b445-4e9a-9b7e-341ec4f69453/37a0740e0b462b36fd227b220aff33538b932a72.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.234.182.0-168.234.189.255
168.234.199.0/24
168.234.203.0/24
168.234.205.0-168.234.206.255
168.234.208.0-168.234.218.255
168.234.221.0-168.234.223.255
Signature Algorithm: sha256WithRSAEncryption
64:f8:59:52:ee:66:79:67:fc:53:4e:55:0f:fd:c9:28:97:f8:
0d:56:42:ee:12:9b:65:47:1b:31:f0:e1:1a:f4:9f:c4:33:d2:
5f:a3:23:2d:60:4e:15:b1:02:c2:55:53:ab:0c:f1:95:8a:40:
5c:5a:27:ee:f4:0b:96:1e:80:2f:aa:53:74:4f:ac:bb:60:1a:
80:9b:78:04:66:be:e1:74:b4:8c:b8:f6:d6:1d:cb:d3:63:e6:
9c:0e:0d:c5:be:20:3c:45:54:be:a1:ab:7e:c3:e3:61:2e:9d:
54:b2:7d:c3:cc:73:b0:f3:e4:48:dd:fb:02:6f:48:a7:d8:b6:
a1:8c:04:4c:71:7f:8c:ab:e3:3a:bb:01:ea:a2:5e:be:69:a1:
71:22:bf:ff:37:ec:46:25:70:eb:64:2a:39:2c:d7:15:35:c7:
d3:07:d4:50:1d:9d:80:bc:74:42:05:36:5f:2d:1f:17:07:55:
da:75:ec:f5:8b:53:ac:7b:24:ee:81:55:55:18:20:ed:68:8b:
29:d4:9f:5f:5b:0a:1f:b0:f4:4b:a1:ba:5e:2f:7c:da:e1:40:
91:73:80:9d:94:67:e6:c1:93:24:dc:b2:49:27:38:bc:b1:3c:
27:3e:8c:e3:f0:a0:b5:59:12:8d:c6:88:8c:40:bc:ec:c9:60:
a6:36:c3:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 15 17:25:53 2024 by rpki-client on console-ams.rpki-client.org