Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/f80cb3d1-8335-49f8-b600-49f350103b02/5299bde06861644d8a47529c925b5dc975eae8dc.roa
File: 5299bde06861644d8a47529c925b5dc975eae8dc.roa (raw, json)
Hash identifier: 9P/kPlIUx9iQBPsEHTpIROcOmxeL656vh/9c53jlfWs=
Subject key identifier: 74:73:02:6A:E7:EA:1F:45:D5:FB:CA:D4:0E:50:B3:1C:0A:DB:BB:F2
Certificate issuer: /CN=bc60fae2b8b5d118366d0ffb0d7ecacf0167aed0
Certificate serial: 0FFD45
Authority key identifier: 0A:26:3B:CE:B9:F7:4D:A9:83:42:09:5A:07:6F:E6:16:8D:F5:83:E3
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bc60fae2b8b5d118366d0ffb0d7ecacf0167aed0.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/f80cb3d1-8335-49f8-b600-49f350103b02/5299bde06861644d8a47529c925b5dc975eae8dc.roa
Signing time: Fri 11 Jun 2021 01:10:13 +0000
ROA not before: Wed 09 Jun 2021 03:00:00 +0000
ROA not after: Fri 09 Jun 2023 03:00:00 +0000
asID: 27843
IP address blocks: 168.121.44.0/22 maxlen: 24
168.121.236.0/22 maxlen: 24
168.205.132.0/22 maxlen: 24
170.0.232.0/22 maxlen: 24
170.254.232.0/22 maxlen: 24
170.0.232.0/22 maxlen: 23
170.254.232.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1047877 (0xffd45)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc60fae2b8b5d118366d0ffb0d7ecacf0167aed0
Validity
Not Before: Jun 9 03:00:00 2021 GMT
Not After : Jun 9 03:00:00 2023 GMT
Subject: CN=5299bde06861644d8a47529c925b5dc975eae8dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1b:6a:b7:2b:e9:a4:25:d1:a1:9b:bb:ab:ba:
1f:e8:b9:da:6b:f3:96:61:09:e6:d7:4e:28:7f:21:
1a:94:19:d7:d0:f4:c3:bd:ca:13:fa:aa:9a:be:ed:
09:f0:14:37:ee:b3:22:a9:10:d9:58:88:40:36:0d:
3f:a5:e1:a0:61:b8:78:95:de:32:a6:e6:7b:fa:28:
3a:ca:6c:ae:7a:1c:e5:29:36:36:9f:ea:d7:ef:b1:
05:a3:c1:fa:79:5f:93:ea:2f:8a:82:a6:37:da:aa:
19:d1:da:ec:2b:f3:3d:e1:6a:e2:aa:76:44:55:d9:
28:ae:85:0e:32:c6:37:08:ea:6a:d7:c3:3c:a6:76:
5a:ce:3a:d2:d0:dd:9f:74:3c:5c:23:4a:50:e0:3f:
d7:ca:dc:56:72:a4:f8:5f:53:29:7c:e2:b1:4e:4d:
34:a7:d8:0d:40:0c:20:73:3d:a7:87:b6:a9:d3:15:
1a:ca:a0:07:f9:3d:89:8c:7a:ed:cb:18:4c:4b:21:
e3:b1:cb:42:6d:25:48:b4:b8:54:3c:8f:59:ec:bf:
ed:c0:61:8b:ab:1b:a6:d5:3e:d7:4a:8f:78:74:42:
1b:b7:e3:a1:8c:e6:cb:99:86:d3:8b:a9:2d:06:93:
c7:db:71:7f:53:44:fc:23:d2:d4:60:5f:c9:77:e0:
ae:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:73:02:6A:E7:EA:1F:45:D5:FB:CA:D4:0E:50:B3:1C:0A:DB:BB:F2
X509v3 Authority Key Identifier:
keyid:0A:26:3B:CE:B9:F7:4D:A9:83:42:09:5A:07:6F:E6:16:8D:F5:83:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/bc60fae2b8b5d118366d0ffb0d7ecacf0167aed0.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/f80cb3d1-8335-49f8-b600-49f350103b02/5299bde06861644d8a47529c925b5dc975eae8dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/f80cb3d1-8335-49f8-b600-49f350103b02/bc60fae2b8b5d118366d0ffb0d7ecacf0167aed0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
168.121.44.0/22
168.121.236.0/22
168.205.132.0/22
170.0.232.0/22
170.254.232.0/22
Signature Algorithm: sha256WithRSAEncryption
93:5d:79:92:59:98:98:94:dc:42:b3:7e:8e:5f:b5:73:c7:b3:
80:dc:2d:27:fe:6c:64:a6:67:2d:72:8c:4b:d7:02:eb:cf:53:
c4:69:83:d2:90:46:bf:78:e6:12:f5:c2:7b:33:18:65:3f:35:
68:4c:36:02:7f:5b:e2:da:00:13:94:83:57:0b:2a:d3:ee:c8:
02:1c:0c:0f:06:57:d7:b2:23:09:0c:a9:47:76:67:83:7b:87:
63:8b:da:74:2d:56:a1:8b:9a:35:95:bb:95:80:97:09:fa:45:
97:50:a7:52:69:7a:c3:08:1c:1d:3f:3e:37:67:38:d1:00:7a:
89:6e:47:3e:4c:50:70:b8:e8:d9:16:7c:bf:64:bd:49:93:1a:
0f:94:af:0a:76:e3:6e:08:d6:2a:f7:83:17:e6:1a:c3:fa:e3:
99:ee:83:3b:63:82:45:54:2f:c2:1d:ce:51:f8:22:a0:44:53:
8c:ff:33:99:0a:a5:ed:98:80:4c:18:3b:a3:00:6d:01:d1:43:
c2:53:27:8b:aa:7b:94:a3:04:ff:44:f8:b4:c4:42:48:f0:92:
ae:eb:56:f7:91:93:35:70:9a:1b:d8:ca:75:c5:6e:9d:a2:68:
38:b8:2b:6d:d9:05:da:02:d1:98:c5:e9:13:68:40:5c:c4:2b:
c4:54:36:47
-----BEGIN CERTIFICATE-----
MIIFWDCCBECgAwIBAgIDD/1FMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGJj
NjBmYWUyYjhiNWQxMTgzNjZkMGZmYjBkN2VjYWNmMDE2N2FlZDAwHhcNMjEwNjA5
MDMwMDAwWhcNMjMwNjA5MDMwMDAwWjAzMTEwLwYDVQQDEyg1Mjk5YmRlMDY4NjE2
NDRkOGE0NzUyOWM5MjViNWRjOTc1ZWFlOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAhRtqtyvppCXRoZu7q7of6Lnaa/OWYQnm104ofyEalBnX0PTD
vcoT+qqavu0J8BQ37rMiqRDZWIhANg0/peGgYbh4ld4ypuZ7+ig6ymyuehzlKTY2
n+rX77EFo8H6eV+T6i+KgqY32qoZ0drsK/M94WriqnZEVdkoroUOMsY3COpq18M8
pnZazjrS0N2fdDxcI0pQ4D/XytxWcqT4X1MpfOKxTk00p9gNQAwgcz2nh7ap0xUa
yqAH+T2JjHrtyxhMSyHjsctCbSVItLhUPI9Z7L/twGGLqxum1T7XSo94dEIbt+Oh
jObLmYbTi6ktBpPH23F/U0T8I9LUYF/Jd+CujwIDAQABo4ICczCCAm8wHQYDVR0O
BBYEFHRzAmrn6h9F1fvK1A5QsxwK27vyMB8GA1UdIwQYMBaAFAomO865902pg0IJ
Wgdv5haN9YPjMA4GA1UdDwEB/wQEAwIHgDCBmgYIKwYBBQUHAQEEgY0wgYowgYcG
CCsGAQUFBzAChntyc3luYzovL3JlcG9zaXRvcnkubGFjbmljLm5ldC9ycGtpL2xh
Y25pYy80OGYwODNiYi1mNjAzLTQ4OTMtOTk5MC0wMjg0YzA0Y2ViODUvYmM2MGZh
ZTJiOGI1ZDExODM2NmQwZmZiMGQ3ZWNhY2YwMTY3YWVkMC5jZXIwgZoGCCsGAQUF
BwELBIGNMIGKMIGHBggrBgEFBQcwC4Z7cnN5bmM6Ly9yZXBvc2l0b3J5LmxhY25p
Yy5uZXQvcnBraS9sYWNuaWMvZjgwY2IzZDEtODMzNS00OWY4LWI2MDAtNDlmMzUw
MTAzYjAyLzUyOTliZGUwNjg2MTY0NGQ4YTQ3NTI5YzkyNWI1ZGM5NzVlYWU4ZGMu
cm9hMIGPBgNVHR8EgYcwgYQwgYGgf6B9hntyc3luYzovL3JlcG9zaXRvcnkubGFj
bmljLm5ldC9ycGtpL2xhY25pYy9mODBjYjNkMS04MzM1LTQ5ZjgtYjYwMC00OWYz
NTAxMDNiMDIvYmM2MGZhZTJiOGI1ZDExODM2NmQwZmZiMGQ3ZWNhY2YwMTY3YWVk
MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3BggrBgEFBQcBBwEB/wQo
MCYwJAQCAAEwHgMEAqh5LAMEAqh57AMEAqjNhAMEAqoA6AMEAqr+6DANBgkqhkiG
9w0BAQsFAAOCAQEAk115klmYmJTcQrN+jl+1c8ezgNwtJ/5sZKZnLXKMS9cC689T
xGmD0pBGv3jmEvXCezMYZT81aEw2An9b4toAE5SDVwsq0+7IAhwMDwZX17IjCQyp
R3Zng3uHY4vadC1WoYuaNZW7lYCXCfpFl1CnUml6wwgcHT8+N2c40QB6iW5HPkxQ
cLjo2RZ8v2S9SZMaD5SvCnbjbgjWKveDF+Yaw/rjme6DO2OCRVQvwh3OUfgioERT
jP8zmQql7ZiATBg7owBtAdFDwlMni6p7lKME/0T4tMRCSPCSrutW95GTNXCaG9jK
dcVunaJoOLgrbdkF2gLRmMXpE2hAXMQrxFQ2Rw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:56 2024 by rpki-client on console-ams.rpki-client.org