Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/03d0bb3721c32a079957596ccff5784f80915787.roa
File: 03d0bb3721c32a079957596ccff5784f80915787.roa (raw, json)
Hash identifier: v2EwUzJT/UbgYS58vjdmJnMGe+bHJjMUe6L/WpXDz6w=
Subject key identifier: B1:7D:C5:A8:8E:79:EB:FD:39:E4:D0:4E:FC:A5:C5:56:2D:FB:96:70
Certificate issuer: /CN=8a34b88edc7711ba98c357c0cd7c26b4d31bbe13
Certificate serial: 1AFE73
Authority key identifier: AC:7D:06:CC:8D:9C:83:2B:CF:18:0B:CB:6C:01:5E:C2:4A:6D:A7:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/03d0bb3721c32a079957596ccff5784f80915787.roa
Signing time: Mon 29 Aug 2022 20:46:58 +0000
ROA not before: Wed 24 Mar 2021 14:39:27 +0000
ROA not after: Tue 24 Mar 2026 14:39:27 +0000
asID: 28027
IP address blocks: 200.9.176.0/24 maxlen: 24
200.10.147.0/24 maxlen: 24
200.10.148.0/24 maxlen: 24
200.10.149.0/24 maxlen: 24
200.10.150.0/24 maxlen: 24
200.10.151.0/24 maxlen: 24
200.126.0.0/20 maxlen: 20
200.126.16.0/22 maxlen: 22
200.126.20.0/23 maxlen: 23
200.126.22.0/24 maxlen: 24
200.126.23.0/24 maxlen: 24
200.126.24.0/21 maxlen: 21
200.126.24.0/22 maxlen: 22
200.126.28.0/24 maxlen: 24
200.126.29.0/24 maxlen: 24
200.126.30.0/24 maxlen: 24
200.126.31.0/24 maxlen: 24
2801:0:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1769075 (0x1afe73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a34b88edc7711ba98c357c0cd7c26b4d31bbe13
Validity
Not Before: Mar 24 14:39:27 2021 GMT
Not After : Mar 24 14:39:27 2026 GMT
Subject: CN=03d0bb3721c32a079957596ccff5784f80915787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:29:5a:e0:e8:44:09:de:df:cc:e9:77:21:00:
93:3f:aa:2e:9a:04:cb:e9:9c:f2:f5:74:04:55:d3:
aa:9b:04:2a:24:d2:49:ac:bb:ab:4c:9c:2e:42:b0:
a0:90:ba:42:9d:0a:4c:f2:3e:bf:91:d2:af:78:2e:
24:2c:5e:26:6e:3e:4d:a3:b7:24:42:ed:bf:33:42:
ae:b2:66:66:d3:b3:4e:e4:f9:f0:6f:b9:03:a4:b2:
fa:42:a7:43:c6:55:4a:1e:6c:28:b2:1e:2c:b9:92:
a8:c8:22:5f:e3:5c:ef:8c:65:4e:ba:66:0a:1b:1d:
e3:89:85:62:f0:af:c7:05:14:05:18:09:c9:bc:1c:
09:97:58:d0:58:01:fb:88:65:8c:ce:ed:c6:60:3b:
ba:13:26:96:34:c5:4a:bd:20:1f:54:df:d2:b9:a0:
2d:74:82:27:c6:93:b7:56:f3:f6:b1:b7:36:c3:f3:
db:e9:99:aa:10:2e:3b:a6:e7:9a:c6:b8:90:5d:4c:
c8:d3:15:de:ba:dc:86:58:cd:8d:28:d6:f1:1a:d0:
44:20:80:69:31:ba:b3:64:c1:e3:bf:f3:c2:35:04:
e0:fb:92:16:ab:ac:d6:a2:37:9c:91:87:cc:a5:cf:
c8:ab:29:a4:dc:f9:4d:90:bd:e4:01:cf:a0:b3:65:
e7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:7D:C5:A8:8E:79:EB:FD:39:E4:D0:4E:FC:A5:C5:56:2D:FB:96:70
X509v3 Authority Key Identifier:
keyid:AC:7D:06:CC:8D:9C:83:2B:CF:18:0B:CB:6C:01:5E:C2:4A:6D:A7:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/03d0bb3721c32a079957596ccff5784f80915787.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.9.176.0/24
200.10.147.0-200.10.151.255
200.126.0.0/19
IPv6:
2801:0:20::/48
Signature Algorithm: sha256WithRSAEncryption
02:a0:ba:43:8e:49:16:58:d6:cd:3b:38:9e:26:ea:db:35:54:
49:32:4f:c9:84:32:29:a6:af:95:d1:81:1e:f6:25:ea:4c:b8:
c2:e7:9c:4d:7d:95:38:3c:50:c3:75:e0:64:e3:cd:72:2d:5c:
d6:51:93:8b:27:ce:10:b8:0d:45:a1:47:c4:e5:4a:12:3f:89:
ce:c1:35:d3:3d:12:c3:c5:5a:2f:fe:ef:aa:01:43:05:21:19:
b1:dd:23:34:ce:6d:c8:59:5d:53:38:38:ad:be:74:09:9a:b6:
4d:8d:62:16:95:36:d9:a6:8b:62:55:cc:33:38:d7:52:64:6c:
fa:4d:66:4a:6b:e1:37:80:20:38:44:19:26:5d:d2:5f:9c:1d:
67:aa:5e:71:dd:5e:93:ed:e0:cd:b1:b6:ae:aa:e2:ea:f6:c1:
33:41:9b:e4:ed:0f:d4:f3:8e:a4:3c:e4:b5:43:cb:0e:ef:91:
28:bd:5c:d7:7a:8e:fa:74:7d:90:89:a5:fe:79:55:b5:8a:20:
6f:21:5f:78:ba:69:09:2a:76:67:39:01:8b:72:e1:98:6c:25:
0e:35:06:f7:f7:b3:53:00:27:70:c1:d9:55:7c:7a:43:f2:b3:
d0:ae:7b:1e:31:cd:9b:26:75:0a:ee:59:c5:66:9c:5a:2f:01:
2b:77:20:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:56 2024 by rpki-client on console-ams.rpki-client.org