Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0DF82658CA230B353BC30F605C840DC17E411E9A57EB01DD637E15AF210D06F9/0/3230302e39312e32342e302f32322d3234203d3e2037303034.roa
File: 3230302e39312e32342e302f32322d3234203d3e2037303034.roa (raw, json)
Hash identifier: KXIHG2AdydE6JjpIXQjPcdpH3Bou5jMS2ZOcVovSxAQ=
Subject key identifier: EC:8A:F0:A9:C2:FF:88:1A:38:92:D4:68:09:B9:33:0C:D3:76:10:C2
Certificate issuer: /CN=08AECF1AD3B0E3076A995B8999E623DAE2819C1A
Certificate serial: 139137A9676A5F9CF63E1A925D357C5E86A3B21D
Authority key identifier: 08:AE:CF:1A:D3:B0:E3:07:6A:99:5B:89:99:E6:23:DA:E2:81:9C:1A
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AECF1AD3B0E3076A995B8999E623DAE2819C1A.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0DF82658CA230B353BC30F605C840DC17E411E9A57EB01DD637E15AF210D06F9/0/3230302e39312e32342e302f32322d3234203d3e2037303034.roa
Signing time: Tue 05 Mar 2024 17:44:25 +0000
ROA not before: Tue 05 Mar 2024 17:39:25 +0000
ROA not after: Tue 04 Mar 2025 17:44:25 +0000
asID: 7004
IP address blocks: 200.91.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
13:91:37:a9:67:6a:5f:9c:f6:3e:1a:92:5d:35:7c:5e:86:a3:b2:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08AECF1AD3B0E3076A995B8999E623DAE2819C1A
Validity
Not Before: Mar 5 17:39:25 2024 GMT
Not After : Mar 4 17:44:25 2025 GMT
Subject: CN=EC8AF0A9C2FF881A3892D46809B9330CD37610C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e1:7b:94:a5:a0:9f:b3:30:0c:60:0b:92:5a:
76:2d:b7:24:43:ea:27:0a:9b:b9:57:0c:2e:cf:ce:
eb:ec:7b:6f:9d:26:51:31:42:ba:2b:03:42:6d:e3:
cf:79:cd:7b:61:ae:84:50:b5:04:8e:b8:c0:fc:7d:
03:22:76:d2:3d:19:fa:b2:92:12:5a:6a:2e:a9:13:
ef:77:81:fe:f6:aa:99:6a:e3:32:68:02:91:4c:49:
6b:93:81:cf:b0:de:e9:72:44:85:03:fe:f7:8b:bb:
bf:38:97:37:2f:eb:b8:ad:bd:74:58:58:de:e1:4b:
73:2c:e1:34:f4:32:53:08:73:1f:f7:c2:d4:83:2b:
81:f8:d4:d9:9e:61:5e:e7:91:a6:2e:90:0e:8c:b6:
86:67:1f:1b:84:51:bb:9c:68:ce:d0:78:38:84:a9:
63:00:18:7a:8e:09:68:b9:e8:27:42:7d:c0:8e:22:
bb:b0:bc:1d:3e:15:e0:32:ad:f2:48:b5:58:8a:d1:
3f:b4:e2:8f:1b:f8:cf:16:d7:c2:5e:6d:50:1a:1f:
33:ec:2a:f6:c5:60:fd:24:00:5d:27:0f:56:3a:ca:
6a:9b:2b:ca:cf:d7:7f:fb:fc:b9:28:ef:96:80:c1:
51:8d:aa:24:8e:e7:8f:96:f1:c3:5b:16:58:8c:3b:
d8:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:8A:F0:A9:C2:FF:88:1A:38:92:D4:68:09:B9:33:0C:D3:76:10:C2
X509v3 Authority Key Identifier:
keyid:08:AE:CF:1A:D3:B0:E3:07:6A:99:5B:89:99:E6:23:DA:E2:81:9C:1A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0DF82658CA230B353BC30F605C840DC17E411E9A57EB01DD637E15AF210D06F9/0/08AECF1AD3B0E3076A995B8999E623DAE2819C1A.crl
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/FDC3594DD4E54BADE709AC0D255CF279C47716D2E8B3F4D45DC46355899B36D4/0/08AECF1AD3B0E3076A995B8999E623DAE2819C1A.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0DF82658CA230B353BC30F605C840DC17E411E9A57EB01DD637E15AF210D06F9/0/3230302e39312e32342e302f32322d3234203d3e2037303034.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.91.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:65:72:7b:3b:7a:e8:a8:46:52:2d:82:cc:71:0d:15:8f:f0:
6b:b9:0e:eb:3b:9a:30:02:7a:98:e7:40:b0:92:bb:ff:60:8e:
19:30:ce:d8:a7:37:94:8d:c8:1f:df:54:42:90:e0:27:13:b5:
25:1a:4d:88:46:ba:d2:b2:b2:2d:db:c4:ea:d4:30:37:21:f0:
40:17:0c:4e:b1:7a:c7:e1:b0:d3:e7:12:77:85:d2:71:40:e2:
8b:1d:85:87:12:db:ca:a4:d8:82:40:8c:b4:a9:1f:89:61:6f:
51:d2:30:ea:e3:df:e6:e0:35:e5:7e:58:6d:0d:8d:e8:85:ef:
91:72:04:f1:ef:58:64:19:f0:ea:60:e8:e3:db:c4:9d:e8:39:
be:ef:50:67:b2:cb:7e:8b:5e:b9:b4:e6:58:a8:46:6e:40:71:
28:ce:ca:ce:61:02:a5:bb:b6:91:1a:f1:46:02:05:45:e7:1d:
1e:2d:21:5c:eb:ad:39:01:02:36:84:d3:2f:7f:cc:80:ad:9e:
24:e4:0d:87:6d:0b:b8:e3:cc:b2:7d:b5:fc:03:35:e9:ea:51:
7e:6a:ae:93:b1:15:ac:ae:3b:f7:51:6e:4c:36:21:d5:d0:5b:
3e:81:18:34:84:e6:e4:bc:f4:4a:25:5d:e6:94:c1:c2:fe:55:
28:e8:c5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:24:15 2025 by rpki-client