Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/1a53cdebdd3468183aec6de41a7db3d5d30106f6.roa
File: 1a53cdebdd3468183aec6de41a7db3d5d30106f6.roa (raw, json)
Hash identifier: 2Gf8T9+Bh9mSfc9ltNOVtaIVq4Owxa2SGb9hjiFHHM0=
Subject key identifier: D7:C2:5D:AA:D8:AC:D0:24:C3:1D:41:E0:BB:B1:9D:BA:E2:07:E5:0A
Certificate issuer: /CN=8a34b88edc7711ba98c357c0cd7c26b4d31bbe13
Certificate serial: 27A57B
Authority key identifier: AC:7D:06:CC:8D:9C:83:2B:CF:18:0B:CB:6C:01:5E:C2:4A:6D:A7:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/1a53cdebdd3468183aec6de41a7db3d5d30106f6.roa
Signing time: Wed 03 Jan 2024 13:49:41 +0000
ROA not before: Wed 03 Jan 2024 13:49:41 +0000
ROA not after: Sat 03 Jan 2026 13:49:41 +0000
asID: 28027
IP address blocks: 192.188.59.0/24 maxlen: 24
200.9.176.0/24 maxlen: 24
200.10.147.0/24 maxlen: 24
2801:0:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2598267 (0x27a57b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a34b88edc7711ba98c357c0cd7c26b4d31bbe13
Validity
Not Before: Jan 3 13:49:41 2024 GMT
Not After : Jan 3 13:49:41 2026 GMT
Subject: CN=1a53cdebdd3468183aec6de41a7db3d5d30106f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:9e:c0:ea:23:2b:d5:f8:a8:c4:ba:83:c7:fc:
99:a9:4f:8c:34:2e:91:f5:bf:66:2a:7a:eb:b4:14:
aa:74:a9:bd:aa:65:60:0c:29:82:22:9b:44:c5:6d:
29:bd:49:60:1c:1f:74:f5:41:2b:e0:84:08:1a:6b:
bb:05:c0:cc:d9:ed:6b:13:22:c8:e0:6b:69:5b:90:
64:be:62:87:d7:91:6e:ca:9e:4b:98:81:82:73:49:
9b:27:d8:20:67:8d:3f:5e:12:fc:54:e9:38:78:41:
07:55:f1:d6:6e:32:f1:7b:0e:16:76:20:f4:b9:26:
9a:e8:0f:fa:ad:42:78:02:a5:fb:86:7b:bc:fe:ba:
9f:6a:1a:92:7d:16:8f:a3:7d:d2:ec:4a:e9:a5:f5:
e5:69:de:56:7f:d4:62:d9:3b:d1:c7:ea:73:a3:0f:
0e:93:8e:2e:01:10:f5:02:5b:ad:6a:85:18:04:76:
76:72:eb:f4:e2:f5:bc:c8:76:91:19:b1:e1:e1:e1:
69:0f:0e:71:e5:87:97:75:ff:11:0e:23:ea:6b:79:
5e:2e:88:a6:41:01:6c:5c:c3:3d:95:e7:a0:a0:39:
83:18:f7:eb:a6:93:9a:30:45:d5:7c:d4:d5:5a:71:
79:cc:ae:38:9e:ae:40:df:31:ce:e6:d2:68:a1:46:
b4:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C2:5D:AA:D8:AC:D0:24:C3:1D:41:E0:BB:B1:9D:BA:E2:07:E5:0A
X509v3 Authority Key Identifier:
keyid:AC:7D:06:CC:8D:9C:83:2B:CF:18:0B:CB:6C:01:5E:C2:4A:6D:A7:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/1a53cdebdd3468183aec6de41a7db3d5d30106f6.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.188.59.0/24
200.9.176.0/24
200.10.147.0/24
IPv6:
2801:0:20::/48
Signature Algorithm: sha256WithRSAEncryption
59:7c:c5:34:8c:9e:04:54:b8:d7:6c:11:80:7b:85:a5:a0:3a:
59:e5:29:ea:cf:31:59:71:aa:9c:a3:85:20:3e:31:2b:68:0a:
69:22:0e:d5:04:68:80:69:95:3a:c1:42:b3:62:96:76:0e:37:
05:51:61:ca:ff:c2:45:80:e1:a6:ef:bb:20:af:32:f9:1a:70:
0b:1e:d5:7e:39:ab:8e:c3:cf:b5:eb:06:1b:65:b2:60:57:33:
88:d9:89:29:ad:32:42:03:dc:8a:0a:a7:5f:b0:cb:35:0d:0e:
52:5d:f0:71:a8:36:9f:bd:45:33:88:6f:0b:82:ed:c1:56:3a:
50:00:2a:c1:4d:c0:1a:91:35:dd:5e:f4:e1:ae:b3:81:15:0e:
bb:ae:83:e4:49:83:2c:90:9d:d4:5d:c4:e1:61:c4:a6:82:88:
2f:cc:c9:63:da:14:4b:d2:99:fb:c3:a9:46:4b:87:af:a3:5a:
a2:01:88:ec:46:83:3f:c9:13:22:30:30:4a:57:cb:ca:96:d6:
85:11:8e:da:1b:71:fb:87:fc:72:a6:db:e7:0f:38:fd:07:1c:
8d:3c:2a:fa:2a:54:02:5c:b7:56:3c:a4:38:b5:28:8d:6a:31:
70:d8:9c:05:0e:a2:6b:3b:73:bd:d2:6f:2e:47:4d:ee:36:07:
bc:34:4f:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:56 2024 by rpki-client on console-ams.rpki-client.org