Route Origin Authorization
$ rpki-client -vvf repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/996b1020e1f9916b835f62cda2eebf08e8f895f8.roa
File: 996b1020e1f9916b835f62cda2eebf08e8f895f8.roa (raw, json)
Hash identifier: xYVH+mFf74u3Jovisrd9NToNzXsOi7SEbc1bTn/nejE=
Subject key identifier: F1:D9:F6:DD:B0:B0:3E:28:3E:C3:03:35:FC:F6:EE:B3:23:4D:42:5A
Certificate issuer: /CN=07a3e63d1966870c34f83b79e6705d8dc3f9b809
Certificate serial: 0F1013
Authority key identifier: E7:4F:4B:4C:08:78:4E:1A:4E:22:4C:95:7A:B5:B7:5F:81:D9:24:95
Authority info access: rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/07a3e63d1966870c34f83b79e6705d8dc3f9b809.cer
Subject info access: rsync://repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/996b1020e1f9916b835f62cda2eebf08e8f895f8.roa
Signing time: Tue 04 May 2021 13:22:30 +0000
ROA not before: Wed 24 Mar 2021 03:00:00 +0000
ROA not after: Tue 24 Mar 2026 03:00:00 +0000
asID: 16732
IP address blocks: 200.59.192.0/20 maxlen: 20
200.59.200.0/22 maxlen: 22
200.59.200.0/24 maxlen: 24
200.59.201.0/24 maxlen: 24
200.59.202.0/24 maxlen: 24
200.59.203.0/24 maxlen: 24
200.59.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 987155 (0xf1013)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07a3e63d1966870c34f83b79e6705d8dc3f9b809
Validity
Not Before: Mar 24 03:00:00 2021 GMT
Not After : Mar 24 03:00:00 2026 GMT
Subject: CN=996b1020e1f9916b835f62cda2eebf08e8f895f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2b:9f:ea:60:17:f5:d1:cd:fa:41:64:53:f3:
5f:56:93:b3:5d:d8:77:92:4a:e2:80:f7:3d:bd:e8:
10:ad:b2:60:30:dc:3c:78:63:f4:af:10:a0:94:5e:
ef:cd:91:a8:16:31:3b:0b:95:c5:d1:b8:9c:b5:e9:
72:8b:22:c4:93:0a:3a:1c:e6:3a:30:b4:65:03:32:
05:69:c3:33:df:50:c3:32:4c:0d:b5:ec:79:06:cb:
4e:38:16:7a:4a:39:c5:07:d6:98:66:fc:e1:30:09:
21:5c:4f:3f:ec:7d:68:39:77:b2:c5:fc:d1:04:c8:
ba:c3:db:df:40:5d:18:6a:da:07:c0:c8:b2:5b:96:
4c:5e:74:bc:2f:d4:45:21:4b:9e:cd:18:89:b0:1b:
a0:1f:bd:43:5d:0f:a6:f1:e2:42:40:e4:38:3f:12:
d9:46:f0:46:8e:27:58:ab:be:0c:a7:7c:32:62:77:
8a:44:13:96:30:d1:d9:c5:09:0a:b6:95:a3:72:4d:
ae:44:ee:e9:ac:37:40:49:02:3b:a2:2f:fe:81:ff:
cd:9e:98:66:7e:1d:b3:27:e3:b9:10:b1:20:f2:1a:
cd:0d:c0:0d:32:2e:ad:14:90:ed:f0:10:a9:bc:df:
e9:23:1d:87:8b:93:66:88:b6:be:24:4e:67:40:47:
b9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:D9:F6:DD:B0:B0:3E:28:3E:C3:03:35:FC:F6:EE:B3:23:4D:42:5A
X509v3 Authority Key Identifier:
keyid:E7:4F:4B:4C:08:78:4E:1A:4E:22:4C:95:7A:B5:B7:5F:81:D9:24:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://repository.lacnic.net/rpki/lacnic/48f083bb-f603-4893-9990-0284c04ceb85/07a3e63d1966870c34f83b79e6705d8dc3f9b809.cer
Subject Information Access:
Signed Object - URI:rsync://repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/996b1020e1f9916b835f62cda2eebf08e8f895f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://repository.lacnic.net/rpki/lacnic/0cac3b82-f488-4df7-bc67-ad856a12aa43/07a3e63d1966870c34f83b79e6705d8dc3f9b809.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
200.59.192.0/20
Signature Algorithm: sha256WithRSAEncryption
92:2a:6c:df:04:96:7d:eb:cd:db:da:8a:08:11:58:88:8a:84:
c4:34:2c:df:04:03:93:41:c9:bb:05:cf:dc:76:cf:f4:89:ec:
06:51:97:f4:5e:97:61:4e:e2:23:3f:7a:6a:cf:23:c5:d3:04:
ca:fc:40:75:93:e9:27:b2:47:1e:15:0b:32:6d:b1:93:98:01:
ed:74:76:9a:ab:8f:5e:f0:b0:3d:1e:92:60:84:29:f1:90:49:
cd:2a:11:e5:6d:df:a9:b2:b1:78:97:09:47:c9:f0:cc:bb:3a:
93:2d:78:42:99:7c:c1:e9:5a:f5:9e:71:11:3f:34:6f:cc:9e:
77:4e:dd:d5:04:5f:14:0e:ce:a4:1f:db:37:16:8d:2d:25:cf:
ba:06:a5:0b:03:81:52:37:ac:3d:50:0a:90:55:eb:96:f0:49:
4c:52:75:a7:1b:49:b4:22:6c:a6:70:b6:ae:11:70:a6:2f:62:
ed:f3:e3:74:e7:4e:22:bd:db:f0:a7:c7:a0:e5:ab:0f:d5:52:
fa:54:aa:03:8e:86:96:ee:8c:0b:85:e7:f5:3b:eb:81:1d:c9:
e6:15:7d:21:99:7c:47:49:2b:b6:85:7f:37:13:9a:de:65:c8:
4f:67:0b:1e:fd:01:35:ec:69:9f:48:d3:4a:41:37:e7:39:d9:
fb:4d:96:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-ams.rpki-client.org