Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/fb1df9aa-a9bc-4f3c-8e52-71146a6196f9/d0af110911f7bec04fd7ac9e9c12456f754b5a9c.roa
File: d0af110911f7bec04fd7ac9e9c12456f754b5a9c.roa (raw, json)
Hash identifier: bJa0v1fdfov1y1OUcrogvigOnTG/clOsU18913LpD5M=
Subject key identifier: E7:08:16:30:C6:3D:59:54:7A:31:32:FB:21:C9:DE:6E:73:20:56:36
Certificate issuer: /CN=88c828fbf7c4212619b24a7d12142f15f0f5ffea
Certificate serial: 02205A
Authority key identifier: 6A:15:80:3C:4B:16:44:9A:6C:C1:B1:2E:28:E8:2C:8F:E8:A7:6F:F6
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88c828fbf7c4212619b24a7d12142f15f0f5ffea.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/fb1df9aa-a9bc-4f3c-8e52-71146a6196f9/d0af110911f7bec04fd7ac9e9c12456f754b5a9c.roa
Signing time: Fri 05 May 2023 22:53:28 +0000
ROA not before: Thu 04 May 2023 22:53:28 +0000
ROA not after: Mon 05 May 2025 22:53:28 +0000
asID: 262589
IP address blocks: 170.0.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139354 (0x2205a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=88c828fbf7c4212619b24a7d12142f15f0f5ffea
Validity
Not Before: May 4 22:53:28 2023 GMT
Not After : May 5 22:53:28 2025 GMT
Subject: CN=d0af110911f7bec04fd7ac9e9c12456f754b5a9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2e:7e:04:33:e6:29:4e:8d:86:a5:c2:70:1f:
65:d0:ed:56:7a:7a:15:96:ed:d4:92:31:dc:b0:65:
5f:42:fc:d8:79:9a:d1:16:0a:d6:b6:50:26:0a:3d:
96:bf:4f:84:62:04:d1:ce:d5:2a:37:b8:7c:19:cd:
c8:cf:f3:7b:23:eb:09:4e:d7:7f:dc:5a:fe:9a:13:
f0:84:d4:6f:d9:4c:8a:41:9b:04:96:78:2c:99:2c:
a4:32:b8:29:8e:f2:2c:aa:3e:bf:5d:7f:89:f5:a2:
22:50:3c:75:92:2d:61:8c:06:5b:61:54:5f:84:29:
7f:e9:e1:5d:42:b4:3e:a9:f3:32:db:73:ba:a7:83:
75:c8:73:10:79:6b:a1:4e:24:8b:ea:ae:d7:1a:52:
cc:e4:28:c1:88:43:20:5f:83:bb:3c:f2:8e:fd:56:
63:11:86:94:4a:28:81:73:4b:b3:4f:7b:5a:6d:e1:
c8:99:14:7c:a7:df:18:fd:ef:9f:1e:d2:bd:d6:25:
ba:79:51:76:4b:c8:2b:f5:7e:76:77:cf:ae:1f:f3:
b6:e0:31:a2:dc:0c:ad:35:12:52:88:cf:bc:f6:7a:
0c:49:3c:ad:db:f3:2e:ac:d2:89:ea:a2:d5:6a:8b:
87:c9:4b:1c:a4:6d:80:bd:6c:1a:8b:01:3c:f7:22:
11:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:08:16:30:C6:3D:59:54:7A:31:32:FB:21:C9:DE:6E:73:20:56:36
X509v3 Authority Key Identifier:
keyid:6A:15:80:3C:4B:16:44:9A:6C:C1:B1:2E:28:E8:2C:8F:E8:A7:6F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/88c828fbf7c4212619b24a7d12142f15f0f5ffea.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/fb1df9aa-a9bc-4f3c-8e52-71146a6196f9/d0af110911f7bec04fd7ac9e9c12456f754b5a9c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/fb1df9aa-a9bc-4f3c-8e52-71146a6196f9/88c828fbf7c4212619b24a7d12142f15f0f5ffea.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.0.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:63:35:b1:e8:1f:db:36:24:25:93:68:28:ea:6a:05:1d:70:
93:67:46:7a:f3:23:1f:49:f2:f3:26:fb:d0:ce:54:eb:42:24:
b0:21:cd:e7:36:31:31:8b:2c:29:93:07:5c:1f:cd:1c:e6:7b:
22:b4:bf:85:33:9e:32:3e:6f:4e:3e:0d:ad:41:25:3f:3c:fc:
f4:94:55:74:ea:66:12:08:ad:6b:88:1d:a7:4d:07:2a:33:ad:
57:24:30:8e:9c:f7:75:11:f8:4b:2c:0b:e0:89:81:0f:a3:a4:
83:04:67:c2:7b:70:67:eb:84:01:5e:24:8f:43:17:ac:40:9c:
41:1d:54:98:e2:07:90:39:0b:ff:47:85:df:0b:c1:74:58:62:
60:2c:2a:ea:e6:21:a5:23:43:3b:34:a6:27:3f:0f:b9:6f:c0:
75:11:c8:a0:28:17:e2:d6:ec:93:b2:62:51:c1:af:4f:02:46:
e5:2a:e8:5a:22:e4:79:0e:b1:c9:e7:ee:c9:f2:5f:24:9c:66:
fe:86:06:9d:73:a3:89:2f:6a:3b:f1:38:a9:49:64:61:6c:49:
2f:ba:50:da:d7:63:e8:d5:9d:8a:6a:7d:ad:4a:7d:03:04:8e:
17:3e:29:73:c4:78:79:5b:4d:d9:ec:3a:81:d4:84:6b:be:90:
0f:9c:b8:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:38:15 2024 by rpki-client on console-fra.rpki-client.org