Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/b801fcb69d3b79a1b4a927f5a5722617b8cc528d.roa
File: b801fcb69d3b79a1b4a927f5a5722617b8cc528d.roa (raw, json)
Hash identifier: 94JcM0tLo+u6k/7hMHPYNzExPCVDPfqwMX4kKYruN3g=
Subject key identifier: 16:1E:5C:EA:7F:DF:A5:79:CF:52:69:8B:6C:07:92:5F:F9:EA:C4:BE
Certificate issuer: /CN=8a34b88edc7711ba98c357c0cd7c26b4d31bbe13
Certificate serial: 0DAA25
Authority key identifier: AC:7D:06:CC:8D:9C:83:2B:CF:18:0B:CB:6C:01:5E:C2:4A:6D:A7:8F
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/b801fcb69d3b79a1b4a927f5a5722617b8cc528d.roa
Signing time: Wed 24 Mar 2021 14:39:28 +0000
ROA not before: Wed 24 Mar 2021 14:39:27 +0000
ROA not after: Tue 24 Mar 2026 14:39:27 +0000
asID: 28027
IP address blocks: 200.9.176.0/24 maxlen: 24
200.10.147.0/24 maxlen: 24
200.10.148.0/24 maxlen: 24
200.10.149.0/24 maxlen: 24
200.10.150.0/24 maxlen: 24
200.10.151.0/24 maxlen: 24
200.126.0.0/20 maxlen: 20
200.126.16.0/22 maxlen: 22
200.126.20.0/23 maxlen: 23
200.126.22.0/24 maxlen: 24
200.126.23.0/24 maxlen: 24
200.126.24.0/22 maxlen: 22
200.126.28.0/24 maxlen: 24
200.126.29.0/24 maxlen: 24
200.126.30.0/24 maxlen: 24
200.126.31.0/24 maxlen: 24
2801:0:20::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 895525 (0xdaa25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a34b88edc7711ba98c357c0cd7c26b4d31bbe13
Validity
Not Before: Mar 24 14:39:27 2021 GMT
Not After : Mar 24 14:39:27 2026 GMT
Subject: CN=b801fcb69d3b79a1b4a927f5a5722617b8cc528d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:f1:35:7b:60:b7:11:c6:e0:ed:66:90:bf:6c:
e2:ea:c8:4d:67:24:a0:51:41:6b:91:a9:ac:0f:d9:
30:7c:6a:08:16:d9:43:a7:25:86:cd:25:05:c3:f6:
5a:61:e1:a5:92:b6:a7:da:c3:d4:49:6e:2f:6b:c7:
95:1b:b7:5c:73:1d:f4:b6:08:e7:bd:48:06:23:6a:
86:d6:75:62:ad:26:63:7b:16:e1:71:7b:a8:8b:78:
e8:03:08:29:41:8f:78:81:bd:d0:22:59:d5:ae:85:
74:71:16:38:49:1e:a2:8e:de:21:1a:35:70:68:5b:
f8:39:36:f4:5d:04:26:d9:64:f3:e7:d3:a7:57:7b:
07:03:f0:e2:82:43:02:61:8d:0d:9e:23:ba:16:f9:
a8:23:cb:d9:3b:cd:2e:d7:8a:34:5e:83:5a:f8:99:
03:d2:d4:9a:a4:12:1d:92:f9:eb:a9:25:ec:a5:2a:
b8:b1:34:f0:31:42:aa:06:64:fa:1e:cd:86:1b:7d:
3b:74:6f:3e:f6:39:d0:90:62:3f:1c:fc:6e:3b:ad:
69:b5:e9:f9:6a:f0:99:96:e6:24:ad:9e:78:1b:c2:
db:55:ad:e3:a7:ab:fb:b5:1e:11:63:e8:f6:4a:b3:
df:4c:28:d1:06:44:50:8f:e3:0f:63:5d:86:7a:1f:
c0:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:1E:5C:EA:7F:DF:A5:79:CF:52:69:8B:6C:07:92:5F:F9:EA:C4:BE
X509v3 Authority Key Identifier:
keyid:AC:7D:06:CC:8D:9C:83:2B:CF:18:0B:CB:6C:01:5E:C2:4A:6D:A7:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/b801fcb69d3b79a1b4a927f5a5722617b8cc528d.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/09a9b685-397d-4d4f-8734-6e8fb9651f21/8a34b88edc7711ba98c357c0cd7c26b4d31bbe13.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.9.176.0/24
200.10.147.0-200.10.151.255
200.126.0.0/19
IPv6:
2801:0:20::/48
Signature Algorithm: sha256WithRSAEncryption
85:df:38:86:c3:42:09:ba:bb:59:30:4d:4d:fd:d1:29:ed:61:
8d:18:32:3f:ae:b7:ae:0d:39:f1:92:6b:cf:0c:e1:71:1e:3b:
fb:d3:ce:79:52:32:97:98:bb:7d:8b:b1:7e:9e:83:52:3d:ae:
58:0d:94:cf:f6:ef:6a:b8:08:cd:cf:73:7d:c5:79:2e:3d:dd:
80:9a:8b:8a:d4:c1:94:ba:a6:ad:79:3d:4a:2b:da:6d:05:71:
d1:73:d4:c1:2e:a4:d2:8a:b1:03:d6:e3:6b:2c:44:6e:52:a2:
cc:68:28:c9:87:33:04:8c:07:a6:a1:bc:a0:d2:3f:22:dc:80:
e4:9c:f2:61:a6:b4:51:aa:94:1f:a5:55:1f:f5:a6:7a:32:85:
af:ab:f7:1a:86:fe:23:88:06:bf:47:98:49:2d:ce:e6:f2:7d:
13:31:60:fc:49:60:c2:50:a8:06:97:0b:d8:81:50:ff:ba:1d:
3b:65:2d:c4:fa:0b:4c:22:3e:b3:52:6b:0e:75:2a:1d:ae:94:
bf:a0:06:3c:b6:d8:21:ac:39:d8:34:68:7e:b0:ff:dd:16:2e:
bf:4e:48:ec:5a:fa:5a:e2:8d:fc:9f:cb:61:45:19:7b:0b:c7:
86:e7:84:56:2f:4e:bb:82:99:7e:4b:8f:4d:e9:7b:f3:d0:70:
d8:1e:ea:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:56 2024 by rpki-client on console-ams.rpki-client.org